Learn about the key principles of authentication, and how to authenticate your WordPress REST API using cookies, OAuth, and JWT.
- [Instructor] Hello and welcome to WordPress REST API: Authentication. My name is Morten Rand-Hendriksen, and I'll be your guide as we explore authentication methods for the WordPress REST API in this second course in the WordPress REST API series. To take full advantage of the WordPress REST API, you need to be able to create, read, edit, and delete content, and this is only possible with the right authorization and secure authentication. In this course, we'll explore several authentication methods both within the context of WordPress itself and for stand-alone client applications.
We'll start by exploring what authentication is and how it works. Next, we'll take a look at cookie authentication and how we can piggyback off the built-in authentication system in WordPress when we use the REST API and plugins and themes. And from there, we'll shift focus to stand-alone client applications and take a deep dive into several authentication methods that ensure secure communication between WordPress, the client and the user, while allowing us to take full advantage of all the features of the REST API. Authentication is the key to unlocking the full potential of the WordPress REST API, and I'm here to show you how to get it right.
So, let's get cracking with WordPress REST API: Authentication.
- What is authentication and when do you need it?
- Cookie authentication
- Creating a plugin for front-end editing
- Adding the front-end editing functionality using jQuery
- Limiting front-end editing to authorized users
- What is JWT authentication?
- Adding editing capability using Ajax
- OAuth 2 authentication
- Configuring JSO
- Making login and log out states meaningful