Wordfence blogging REST API

Resolved phil10239124
(@phil10239124)

4 years, 4 months ago

Hi,

We create posts in several websites from a central location using the v2 REST API.

With Wordfence, the API POSTS are blocked.

Deactive Wordfence, change nothing else, the API posts work.

Wordfence is reporting my home office IP address and identifying it as a bot, despite the API user logging in with an application password.

I don’t want to enable my home IP address as several people can use this central location to post to our websites.

How can I continue to use the good things of Wordfence and allow this authenticated API user to make POSTs?

Thanks

Viewing 8 replies - 1 through 8 (of 8 total)

Plugin Support wfphil
(@wfphil)

4 years, 4 months ago

Hi @phil10239124

On the Tools >> Live Traffic page enable the Expand All Results switch.

Please provide a link to an image-sharing service with a screenshot of a blocked API post request so that we can see all of the details.

Thread Starter phil10239124
(@phil10239124)

4 years, 4 months ago

Hi, its here

https://www.dropbox.com/s/aqlgzdx7n3gcwq0/Screenshot%202022-01-18%20at%2012.53.21.png?dl=0

Plugin Support wfphil
(@wfphil)

4 years, 4 months ago

Hi @phil10239124

Thank you for the update.

Unfortunately, that screenshot does not show a blocked request as there isn’t a block reason listed in red.

Please replicate the blocking again and provide a new screenshot.

Thread Starter phil10239124
(@phil10239124)

4 years, 4 months ago

Thanks. However it absolutely does block. The timestamp corresponds to the block POST v2 API each time I tried (there are 2 that correspond), it is my IP address, it is me. And seconds after deactivating Wordfence I retry the same procedure faultlessly. What further diagnostics can I offer?

Thread Starter phil10239124
(@phil10239124)

4 years, 4 months ago

If it helps, I would be happy to pay $99 for premium support as I really do need this resolved, thanks.

Plugin Support wfphil
(@wfphil)

4 years, 4 months ago

Hi @phil10239124

Thank you for the update. Do you have the option Disable WordPress application passwords enabled in the Brute Force Protection section on the All Options page?
Thread Starter phil10239124
(@phil10239124)

4 years, 4 months ago
Thanks, that was a perfect answer. It is now all working. Thanks again.
- This reply was modified 4 years, 4 months ago by phil10239124.
Plugin Support wfphil
(@wfphil)

4 years, 4 months ago

Hi @phil10239124

Thank you for the good news!

Viewing 8 replies - 1 through 8 (of 8 total)

The topic ‘Wordfence blogging REST API’ is closed to new replies.

Tags