Screenshot COVID-19 Update We have changed are structure to better support our employees and customers through these hard times.
See Updates

OAuth 2.0 Endpoints

Published: October 2, 2018 | Updated: January 2nd, 2020
  1. Home
  2. Docs
  3. General
  4. OAuth 2.0 Endpoints

WP OAuth Server has multiple endpoints built into the plugin. Thes endpoints are developed using the most common techniques and best practices in OAuth 2.0 and WordPress.

  • /oauth/authorize/
  • /oauth/token/
  • /oauth/me/
  • /oauth/destroy/
  • /.well-known/keys/
  • /oauth/introspection/
  • /.well-known/openid-configuration/

With WP OAuth Server installed you can view the full list of endpoint and server settings by visiting the /.well-known/openid-configuration/ endpoint. It will return JSON configurations setting providing you with all supported endpoints.

Endpoints Descriptions


This endpoint is mostly used by the client to request an Authorization code that can then be exchanged for an access token.


The token endpoint is used to most often to exchange an auth code for an access token. This endpoint is also used when using the user credential and client credentials grant types.


This endpoint is used solely to return data about a user assigned to any given access token.