Title: REST API
Last modified: February 8, 2023

---

# REST API

 *  Resolved [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [3 years, 4 months ago](https://wordpress.org/support/topic/resp-api/)
 * Hi, we have several incident logged for LOGGED IN users like this:
 * HIGH – xxx.xxx.xxx.xxx GET /index.php – User enumeration scan (WP REST API) –[/
   wp-json/wp/v2/users/me?context=edit&_locale=user]
 * because of enumeration protection via rest api. Could that option EXCLUDE logged
   in users?
 * We had to disable that specific option and use an other plugin that does exactly
   that.
 * I think this comes from a plugin, wpForo. Not 100% sure.
 * Thanks
    -  This topic was modified 3 years, 4 months ago by [dimal](https://wordpress.org/support/users/dimalifragis/).
      Reason: typo

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [3 years, 4 months ago](https://wordpress.org/support/topic/resp-api/#post-16456688)
 * It’s not possible to exclude logged in users, I’m afraid.
 *  Thread Starter [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [3 years, 3 months ago](https://wordpress.org/support/topic/resp-api/#post-16499094)
 * Hi,
 * Why is that? I have found several snippets that block non authenticated users.
   And it seems they work just fine.
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [3 years, 3 months ago](https://wordpress.org/support/topic/resp-api/#post-16508595)
 * It’s possible to do, but it’s not available in NinjaFirewall. We’ll see if we
   can implement it in a future version.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘REST API’ is closed to new replies.

 * ![](https://ps.w.org/ninjafirewall/assets/icon-256x256.png?rev=976137)
 * [NinjaFirewall (WP Edition) - Advanced Security Plugin and Firewall](https://wordpress.org/plugins/ninjafirewall/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/ninjafirewall/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/ninjafirewall/)
 * [Active Topics](https://wordpress.org/support/plugin/ninjafirewall/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/ninjafirewall/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/ninjafirewall/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * Last activity: [3 years, 3 months ago](https://wordpress.org/support/topic/resp-api/#post-16508595)
 * Status: resolved