afaik, the BP REST API does not use or require keys. Neither does the WP REST API.
Perhaps your mobile app developer was referring to oAuth?
If so, that implementation will be specific to your site, and is not a BP question.
Hi @meganelford,
basically, your developer is requesting information so that the app can authenticate with the BuddyPress site. Due to the fact users are authenticated, the app needs permission to authenticate using those keys you mentioned.
To make that happen you would need to have a token or oAuth plugin setup on your buddypress site. After that, create those API keys and provide to her.
Here are a few plugins you could try:
JWT Authentication for WP REST API
WordPress REST API Authentication
Application Passwords
https://github.com/WP-API/jwt-auth
Just be aware that whatever choice you make, there will be a learning curve.
Also, I’d recommend checking how the API will affect the intranet nature of your site. For example, if you intranet is private (the front-end of the site), current BuddyPress API is open. Meaning, some information is open to the public (not logged in information, of course).
Just something to keep in mind. Hope this answer your question, or at least, provides you with next steps (install the plugin and pass the keys information to her).
🙂
Thank you so much! That’s very helpful!
