外掛說明
Sekura REST Bridge for ACF securely exposes Advanced Custom Fields in the WordPress REST API. Based on ACF to REST API by Aires Goncalves, rebuilt with security as a first-class concern.
The original ACF to REST API plugin exposes all ACF field data to unauthenticated requests, including options pages (which often contain API keys and secrets), user profile fields, and fields on private/draft posts. This plugin fixes that with proper WordPress capability checks on every endpoint.
Features
- Proper permission checks on every endpoint
- Per-field Show in REST API / Edit in REST API toggles
- Works alongside ACF Pro’s native REST support
- Drop-in replacement for ACF to REST API (same acf/v3 namespace)
- Filterable permissions for custom access control
Endpoints
GET /wp-json/acf/v3/{post_type}/{id}– Get ACF fields for a postGET /wp-json/acf/v3/{post_type}/{id}/{field}– Get a specific fieldPUT /wp-json/acf/v3/{post_type}/{id}– Update ACF fieldsGET /wp-json/acf/v3/options/{id}– Get ACF options page fieldsGET /wp-json/acf/v3/users/{id}– Get ACF fields for a userGET /wp-json/acf/v3/comments/{id}– Get ACF fields for a comment
ACF data is also appended as an acf key on standard WP REST API responses.
安裝方式
- Upload the
sekura-rest-bridge-for-acffolder to/wp-content/plugins/ - Activate the plugin through the Plugins menu in WordPress
- Ensure Advanced Custom Fields is installed and active
常見問題集
-
Does this work with ACF Pro?
-
Yes. Sekura REST Bridge for ACF works alongside ACF Pro’s native REST support and overrides it to provide consistent access control.
-
Is this a drop-in replacement for ACF to REST API?
-
Yes. It uses the same
acf/v3namespace andacfresponse key. Deactivate the old plugin and activate this one.
使用者評論
這個外掛目前沒有任何使用者評論。
參與者及開發者
變更記錄
1.0.0
- Initial release
- Secure permission checks on all endpoints
- Per-field REST API visibility toggles
- ACF Pro compatibility