The WordPress JSON REST API can be useful for developers building apps using WordPress. Other site owners may find it unusable – and it could also potentially expose your website to DDoS attacks that can be resource-intensive, hence slowing down the site.

The following code snippet will render the WordPress REST API disabled by returning an instance of WP_Error when it hits the authentication process,

Instructions
Add the this snippet to your functions.php file

<?php
 add_filter( 'rest_authentication_errors', 'wp_snippet_disable_rest_api' );
   function wp_snippet_disable_rest_api( $access ) {
      return new WP_Error( 'rest_disabled', __('The WordPress REST API has been disabled.'), array( 'status' => rest_authorization_required_code()));
   }
?>

*Make sure to test that your site works as intended after disabling the WordPress JSON REST API.

Related links:
https://make.wordpress.org/core/features-as-plugins/
https://stackoverflow.com/questions/31518090/jetpack-json-rest-api-and-wp-api

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Contact Us

This could be the beginning of something great 🙌

Name
Hidden
Hidden

By submitting this form: You agree to the processing of the submitted data in accordance with WP Dynamics Privacy Policy.

Contact Information
You can also write us an email or contact us by telephone.
Telephone +45 71 74 71 21

Support For support inquiries, please refer to our support section.

Recent Articles

Faust.js – A Headless Framework for WordPress

Faust.js is a Headless WordPress Framework that provides a set of tools for building front-end applications based on WordPress ...

How to Load (Enqueue) and Handle Assets and Dependencies in WordPress

In WordPress, instead of adding assets such as styles and JavaScript to the header, you can and should use ...

An Introduction to Google Tag Manager Server-side Tagging

WordPress has come a long way since its launch in 2003 - from a blogging tool to a full-fledge ...