Add permission_callback to Route Registration

As of [WordPress 5.5](https://core.trac.wordpress.org/changeset/48526), if a permission_callback is not provided, the REST API will issue a _doing_it_wrong notice.

This is a function that checks if the user can perform the action (reading, updating, etc) before the real callback is called. This allows the API to tell the client what actions they can perform on a given URL without needing to attempt the request first.

For REST API routes that are intended to be public, use ` __return_true` as the permission callback

There are two places to add the permissions callback:
The [/access_token route](https://github.com/WP-API/OAuth2/blob/dedbd68f23c7f9ae5ef1fcb4f5a9722c9b157ea7/inc/endpoints/class-token.php#L23-L43).
The[ /authorize route](https://github.com/WP-API/OAuth2/blob/dedbd68f23c7f9ae5ef1fcb4f5a9722c9b157ea7/inc/endpoints/namespace.php#L25-L28).


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add permission_callback to Route Registration #69

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add permission_callback to Route Registration #69

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions