We’ve just launched our product – Limited lifetime offer ends 31st August

API Security

Get API Security

Frequently Asked Questions

Get the answers you need

Who is behind API Security?

API Security is developed by CoCart Headless, LLC

What are the system requirements for API Security?

API Security requires PHP 7.4 or higher and WordPress 6.5 or higher with REST API enabled.

How do I handle CORS in my application?

CORS support can be enabled by adding API_SECURITY_CORS_ENABLE constant in your wp-config.php file. See documentation for provided filters to customize CORS allowed origins, methods, and ports.

Does the plugin support multisite installations?

Yes, API Security is fully compatible with WordPress multisite installations. Works across the entire network.

Does API Security work on self-hosted WordPress installs and WordPress.com?

Yes, API Security works on self-hosted WordPress installs and WordPress.com if you have a Business plan, which allows third-party plugins to be installed.

Will this plugin conflict with other security plugins?

No. API Security does not affect most common WordPress security plugins as they focus on the frontend of WordPress. Should there be any technical incompatibility issues, contact our support team.

Who is this for?

API Security was built for those who use the REST-API and take security seriously.

Will it remove any links to REST API?

Yes. Both the REST header in HTTP response for all users and REST links in HTML head for all users are removed.

A request is blocked in another plugin due to the user agent header required, what do I do?

Contact support so we can sort it out. It’s possible that the endpoint needs to be excluded and an update for API Security to be released.

Does an installation on a local environment count as a site for my license?

No, a site on a local environment does not count as a site for your license. You can use API Security on your local environment without any restrictions. However, if you deploy your site to a production server, you will need to activate the license key.

Do you offer lifetime access?

No! We just launched so for now, yes. Plugins are developed and supported on an ongoing basis, hence ongoing subscriptions are the best way to keep our little business running.

Do you offer a free trial?

No, we do not offer a free trial. However, we provide a 14 day compatibility guarantee for technical incompatibility issues that our support team cannot resolve.

Can I try it out first?

Yes. You can create a sandbox site to test out API Security. Snippets are also pre-loaded for you to modify and use filters available. You have full access to the WordPress dashboard to install other REST API supported plugins to test compatibility.

Do you offer refunds?

Yes, we offer a 14-day compatibility guarantee. Refunds are provided only for unresolvable technical compatibility issues that our support team cannot solve. You must work with our support team first before requesting a refund. Payment processor fees (5%) are deducted from approved refunds.

What is the refund processing fee?

When processing refunds, a 5% fee is applied to help cover transaction costs. For example, if you request a refund for a $100 purchase, you’ll receive $95 back. This modest fee helps us maintain quality service and efficient refund processing for all our customers.