Restrict /wp-json/wp/v2/users

  • Resolved lt1961

    (@lt1961)


    8 months, 3 weeks ago

    Hello

    We are using the CleanTalk WordPress anti-spam features.

    I’m considering your website security product. Does it prevent the public enumeration of user data via use of the REST API /wp-json/wp/v2/users endpoint? If yes, where can I find more information about that feature?

    Some of the plugins we use on our site use the REST API. So we would need to allow exceptions for their name-spaces. If your security features include selectively blocking access to the REST API do they include configuration to allow access for whitelisted plugin name spaces?

    Kind regards,

    Larry

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support sergecleantalk

    (@sergecleantalk)

    8 months, 3 weeks ago

    Hello Larry,

    I will ask our developers for details. We will contact you within 1-3 business days.

    Thread Starter lt1961

    (@lt1961)

    8 months, 3 weeks ago

    Hello Serge,

    Thank you for checking into this. I’ll look forward to hearing from you gain.

    Kind regards,

    Larry

    SergeM

    (@serge00)

    8 months, 3 weeks ago

    Hello @lt1961,

    To troubleshoot the issue properly we need the list of your active plugins that make such requests and where such requests come from — from the website to itself or from an external source?

    Plugin Support amagsumov

    (@amagsumov)

    8 months, 2 weeks ago

    Hello,

    We haven’t heard back from you in a few days, so I’m going to mark this topic as “resolved”.If you have any further questions, you can start a new topic or contact us via our private Ticket System: https://cleantalk.org/my/support/open.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Restrict /wp-json/wp/v2/users’ is closed to new replies.