Completely Disabling User REST API

Prady · May 19, 2025, 7:17am

Hey

We are using HivePress on our platform, and we are exploring options to enhance user privacy and security. Specifically, we are considering completely disabling the User REST API (/wp-json/wp/v2/users) on our site.

Could you please clarify the following:

Does HivePress or any of its extensions rely on the WordPress User REST API (/wp-json/wp/v2/users) for any core functionality?
Will completely disabling this API affect any of HivePress’s features, such as user profiles, user management, listings, reviews, or any other functionality?
If HivePress relies on the User API, is there a recommended way to securely disable or restrict it without disrupting the platform’s core features?

Thank You

andrii · May 20, 2025, 9:31am

Hi,

Yes, HivePress does not use this endpoint, so you can disable it. However, we recommend that you additionally check whether WordPress itself uses this endpoint, for example, in the Dashboard.

I hope it helps

Prady · May 23, 2025, 1:26pm

Great, thank you

system · June 22, 2025, 1:26pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.