In this tutorial, we're going to investigate authentication with the WordPress REST API. By default, the WordPress REST API has some open endpoints and some cookie authentication endpoints. The main rule of thumb is GET methods such as posts/pages/users are open methods but POST or PUT methods to create new users, for example, are closed methods and require the user to be logged in.
I'm a great believer in the WordPress REST API being locked do
Get weekly updates to your email