Get full access to Wordpress Web Application Development - Third Edition and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Start your free trial

REST API authentication and access tokens

As we discussed earlier, all POST and DELETE REST API operations require authentication. In some scenarios, we may have to use authentication even for the GET requests in providing private data. So, authentication becomes the most important and must use aspect in REST API operations in web applications. We identified that Basic Auth is not a secure or recommended way of authenticating your API operations. In this section, we are going to look at the possible ways of integrating REST API authentication:

Basic authentication: We used this technique while testing the API requests with Postman app. In this technique, we pass the username and password in a base 64-encoded string within the request header. ...

Get Wordpress Web Application Development - Third Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now