The best plugin for WP REST APIs security
  Unlimited WP API authentication with utmost security
WordPress Rest API Authentication

Key Features

Role based access to WP REST APIs

Based on user's WordPress roles/capabilities users can get access to his WordPress Dashboard and other REST APIs for that site.

Signature Validation

Provide the Signature Verification and Validation along with JWT Token Validation. also, an option to select the Signing Algorithm to validate the JWT token.

Custom Token Expiry

Default token expiry time provided is 1 hour. Using this feature admin can change the token expiry date as per his requirement.

Exclude REST APIs

Default all the WordPress REST APIs will be protected. Using this feature admin can make some APIs to publicly accessible with out authentication.

Custom Header

Default Authorization Header will be used to authenticate the requests. Using this feature admin can change Authorization header to any other header accordingly.

HMAC Encryption

Provides features to encrypt the token passed in the header in Basic Authentication method using the HMAC encryption method which makes your header token much secure and users credentials can’t be exposed.

User Based API Key(Token)

This feature is present in the API Key Authentication method in which the token(key) is generated based on the WordPress users and that will help in accessing those APIs that require WordPress user credentials.

Third Party JWT Token support

This feature allows to authenticate the API based on the JWT token, which provides the facility to authenticate the APIs based on the JWT token received from the external Providers.

WordPress User Login API

This plugin provides you with the WordPress login API, such that you can use this API endpoint to authenticate your users logging into other applications using their WordPress credentials.

Rest API Authentication Methods

wordpress single sign-on sso login form add-on integration

Basic Authentication


Basic Authentication allows you to authenticate the WordPress REST API endpoints access using a basic token obtained in an encoded format using the user’s WordPress login credentials or client credentials provided by the plugin.




wordpress single sign-on sso media restriction add-on integration
Most Secure

OAuth 2.0 Authentication


It involves the security token generated using the most secure OAuth 2.0 Authentication protocol. The plugin both as an OAuth/Identity Provider to provide a Bearer token (access token/JWT token) on successful validation and an API Authenticator for allowing API access accordingly based on the token validation.


wordpress single sign-on sso login form add-on integration

JWT Authentication


JWT authentication allows you to authenticate the WordPress REST API endpoint access using a valid JWT token (JSON Web Token). The plugin provides an endpoint to generate a Bearer JWT using the valid user’s WordPress login credentials. The generated token can be used to authenticate the WordPress REST API endpoints.


wordpress single sign-on sso login form add-on integration

API Key Authentication


API Key Authentication allows you to authenticate the WordPress REST API endpoint access using an API key provided by the plugin. This method eliminates the need for using the user’s WordPress login credentials for generating the Bearer API key (secret token).




wordpress single sign-on sso discord role mapping

Third Party Provider Authentication


Third-party Authentication allows you to authenticate the WordPress REST API endpoints using an external token provided by External providers like Firebase, Azure, Amazon Cognito, Keycloak, Google, Facebook, Okta, ADFS, Apple etc. The plugin validates these external tokens directly from its provider and allows APIs access on successful validation.


Plans For Everyone

The plugin's licensing is linked to the domain of the WordPress instance, thus if you have a dev-staging-prod environment, you will need three licenses (with discounts applicable on pre-production environments). If you are facing any difficulty in choosing the suitable plan or have any custom requirements regarding API integration in your WordPress site, do contact us at apisupport@xecurify.com.

$149

API Key Authentication Method

$149

Basic Authentication Method

$199

JWT Authentication Method

$249

OAuth 2.0 Authentication Method

$349

Authentication from External OAuth Providers

$399

Protecting 3rd Party Plugins or Custom APIs

$449

All Inclusive Plan

Frequently Asked Questions

Are the licenses perpetual?

The plugin licenses are perpetual and the Support Plan includes 12 months of maintenance (support and version updates). You can renew maintenance after 12 months at 50% of the current license cost.

What is the refund policy?

At miniOrange, we want to ensure you are 100% happy with your purchase. If the premium plugin you purchased is not working as advertised and you've attempted to resolve any issues with our support team, which couldn't get resolved. We will refund the whole amount within 10 days of the purchase. Please email us at apisupport@xecurify.com for any queries regarding the return policy or contact us here.

Does miniOrange offer technical support?

Yes, we provide 24*7 support for all and any issues you might face while using the plugin, which includes technical support from our developers. You can get prioritized support based on the Support Plan you have opted. You can check out the different Support Plans from here.

Does miniOrange store any user data?

miniOrange does not store or transfer any data related to the user’s security token and keys generated by the plugin. All the data remains within your premises/server. We do not provide the developer license for our paid plugins and the source code is protected. It is strictly prohibited to make any changes in the code without having written permission from miniOrange. There are hooks provided in the plugin which can be used by the developers to extend the plugin's functionality.

Third Party Integrations

WordPress Single Sign-On SSO login form add-on integration

WordPress Custom APIs


This integration provides the feature to authenticate custom-built REST API endpoints in WordPress. The Custom APIs endpoints in WordPress can be generated using our completely GUI based plugin - Custom API for WordPress. This plugin involves no code and APIs can be generated to interact with the WordPress database.... READ MORE

WordPress Single Sign-On SSO login form add-on integration

WooCommerce APIs Authentication


This integration provides the facility for authentication of WooCommerce REST API, so all the Woocommerce will be authenticated against the security key (token) rather than Woocommerce default authentication which has the chance for exposing sensitive consumer secrets. Hence, eliminates the need for using Woocommerce default authentication.

WordPress Single Sign-On SSO login form add-on integration

Learndash APIs Authentication


This integration allows you to authenticate the Learndash REST API endpoints by validating against the security token (key). It provides you with secure access to Learndash user profiles, courses, groups & many more REST APIs provided by the Learndash plugin in WordPress.


WordPress Single Sign-On SSO login form add-on integration

Gravity Form APIs Authentication


The plugin supports interaction with Gravity Forms from external client applications via its WordPress REST API endpoints. This integration allows you to authenticate the Gravity Form REST endpoints by validating against the security token (key).



wordpress single sign-on sso login form add-on integration

BuddyPress APIs Authentication


This integration allows you to authenticate the Buddypress REST API endpoints by validating against the security token (key). You can access BuddyPress REST API endpoints and also authenticate those from different authentication methods within the plugin. The BuddyPress profile and other information can be securely accessed and modified using the plugin.

wordpress single sign-on sso login form add-on integration

External APIs Integration


We provide the support for integrating External/Custom APIs in WordPress, it will provide the facility to perform fetch/update operations on the data through the External API call. The external APIs can be integrated with 3rd party WordPress plugins like Woocommerce, Alidropship etc and external applications like Google Merchant, Zoho, Paypal, Woocommerce, WPForms etc.

WHAT OUR CUSTOMERS SAY

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com