Auth codes are optional, but you can enable them for:
- Register User
- Delete user
- Reset and Change Password
The Auth Codes can have any format and this feature allows you to add a layer of protection to your API routes.
For security reasons, please make sure you set complex string for the AUTH CODES values.
The Auth codes contain 3 parts:
- Authentication Key: This is the actual code that you have to add to the request.
- WordPress new User Role: can be used when you want to create multiple user types with the create user endpoint. If you leave it blank, the value configured in the ‘Register Settings’ will be used.
- Expiration Date: This allows you to set an expiration date for your auth codes. The format is
Y-M-D H:m:s. Example :
Please note that, if you leave the expiration date blank, it will never expire.