OAuth1
OAuth1 copied to clipboard
WP-API
OAuth server implementation for WP API
From Dominik Schilling: I got a “500 Internal Server Error” error when the callback URL was invalid.
From [Dominik Schilling](https://make.wordpress.org/core/2016/10/08/rest-api-merge-proposal-part-2-content-api/#comment-31308): Adding Applications as a sub menu of Users doesn’t feel right to me. I just can’t imagine that 80% of our users really need this there. Twitter...
Before adding the "oauth1_access_..." token, revoke any existing tokens for the user/consumer pair so the user's profile isn't flooded with old access tokens that are no longer applicable. Related to...
The best example of this is the oauth_callback. If you set a URI, JSON, or something else that is already encoded as a parameter to your oauth_callback, then you have...
``` $mu_blogs = wp_get_sites(); foreach ( $mu_blogs as $mu_blog ) { switch_to_blog( $mu_blog['blog_id'] ); json_oauth_server_register_rewrites(); flush_rewrite_rules(); } restore_current_blog(); ``` [This line](https://github.com/WP-API/OAuth1/blob/master/oauth-server.php#L164) will (may?) result in each site on the network...
I tried to setup a callback but it's never called. The oauth documentation says that I must provide `oauth_callback` parameters but I get an error saying that the callback is...
Hi there, Firstly, great work on the API ! Very much appreciated! This version of API allows me to work a lot faster, thank you very much. I was checking...
Usually, Apache doesn't pass the Authorization header by default to fgci. We should look into if we can add it to the WordPress rules for .htaccess, or somethign like that....
This project should have substantial integration tests, as it's important to make sure WordPress sites using the project are truly secure.
The OAuth 1.0a spec doesn't mention how to handle authorization requests when the end-user denies access, but the OAuth 2.0 spec is pretty clear that the user should be returned...
