This article will cover how to use WP OAuth Server and OAuth2 to make authenticated requests to WP REST API.
Things You Need to Authenticate
The first thing to do is download WP OAuth Server from your account. If you do not have WP OAuth Server, you will need to download it by visiting https://wp-oauth.com/downloads/wp-oauth-server/.
Create a Client
With WP OAuth Server installed we will see a link in the main navigation label “OAuth Server”. By hovering over this link we will be presented the link to create a new client. Let’s give our client a name and select the grant type “User Credentials”. Once we have created our client, we will need to make a copy of the “Client ID” and “Client Secret“. We will need to use this information to gain an access token later.
Obtaining an Access Token
How we obtain an access token is dependent on our project. In this article, we will be obtaining an access token using the “User Credentials” grant type. You will need to download “POSTMAN“. Once you have Postman installed, we will need to start configuring it.
Using the Access Token
Now that we have an access token, we can use this token to make authorized calls to the WP REST API. There are two ways that we can pass an access token to the API.
- In the URL
- Using a Bearer Token
For simplicity of this article lets use the URL method to send our access token. Below is a simple call to the REST API to retrieve post revisions.
HTTP 1.1 GET
If you receive an error about not being authorized to make the call, ensure that you are logged out of WordPress.
If you have any questions, please submit a support request.