MaxtDesign

Installation

Requirements

  • WordPress 6.4 or higher
  • PHP 8.2 or higher (strict types required)
  • No other dependencies

    • Automatic Installation

  • 1.Go to Plugins → Add New in your WordPress admin
  • 2.Search for "MaxtDesign Disable REST API"
  • 3.Click Install Now then Activate
  • 4.Go to Settings → REST API Control to configure

    • Manual Installation

  • 1.Upload the maxtdesign-disable-rest-api folder to /wp-content/plugins/
  • 2.Activate through the Plugins menu
  • 3.Go to Settings → REST API Control

    • What Happens on Activation

    The plugin sets these defaults automatically:

  • REST API disabled for unauthenticated users (enabled by default)
  • All logged-in users have full REST API access
  • Smart detection: If Contact Form 7 is active, its endpoints are whitelisted
  • Smart detection: If WooCommerce is active, Store API endpoints (wc/store, wc/store/v1) are whitelisted

    • Quick Verification

    After activation, test that your REST API is properly restricted:

  • 1.Open a private/incognito browser window (not logged in)
  • 2.Visit yoursite.com/wp-json/wp/v2/users
  • 3.You should see the error message: "REST API access restricted."
  • 4.Log in to WordPress admin — the block editor and all admin functions work normally
    • Configuration