內容簡介
Sekura REST Bridge for ACF 是一款安全地將 Advanced Custom Fields (ACF) 暴露於 WordPress REST API 的外掛,專注於加強安全性,確保每個端點的權限檢查,避免未經授權的請求訪問敏感資料。
【主要功能】
• 每個端點的正確權限檢查
• 每個欄位的 REST API 顯示/編輯切換
• 與 ACF Pro 的原生 REST 支援兼容
• 可替代 ACF to REST API 的外掛
• 可過濾的自訂存取控制權限
外掛標籤
開發者團隊
原文外掛簡介
Sekura REST Bridge for ACF securely exposes Advanced Custom Fields in the WordPress REST API. Based on ACF to REST API by Aires Goncalves, rebuilt with security as a first-class concern.
The original ACF to REST API plugin exposes all ACF field data to unauthenticated requests, including options pages (which often contain API keys and secrets), user profile fields, and fields on private/draft posts. This plugin fixes that with proper WordPress capability checks on every endpoint.
Features
Proper permission checks on every endpoint
Per-field Show in REST API / Edit in REST API toggles
Works alongside ACF Pro’s native REST support
Drop-in replacement for ACF to REST API (same acf/v3 namespace)
Filterable permissions for custom access control
Endpoints
GET /wp-json/acf/v3/{post_type}/{id} – Get ACF fields for a post
GET /wp-json/acf/v3/{post_type}/{id}/{field} – Get a specific field
PUT /wp-json/acf/v3/{post_type}/{id} – Update ACF fields
GET /wp-json/acf/v3/options/{id} – Get ACF options page fields
GET /wp-json/acf/v3/users/{id} – Get ACF fields for a user
GET /wp-json/acf/v3/comments/{id} – Get ACF fields for a comment
ACF data is also appended as an acf key on standard WP REST API responses.
