--- title: WordPress API Integration on Truto slug: wordpress category: Default canonical: "https://truto.one/integrations/detail/wordpress/" --- # WordPress API Integration on Truto **Category:** Default **Status:** Generally available ## Unified APIs ### Unified User Directory API - **Roles** — The Role object represents a role of a User. - **Users** — The User object represents a User. - **Workspaces** — Workspaces represent concepts like teams, workspaces, projects in apps that support them ## How it works 1. **Link your customer's WordPress account.** Use Truto's frontend SDK; we handle every OAuth and API key flow so you don't need to create the OAuth app. 2. **Authentication is automatic.** Truto refreshes tokens, stores credentials securely, and injects them into every API request. 3. **Call Truto's API to reach WordPress.** The Proxy API is a 1-to-1 mapping of the WordPress API. 4. **Get a unified response format.** Every response uses a single shape, with cursor-based pagination and data in the `result` field. ## Use cases - **Sync WordPress users and roles into your SaaS platform** — If your product manages permissions, access control, or team workflows, you can pull WordPress user accounts and their roles (Administrator, Editor, Author, Contributor, Subscriber) into your app via Truto's Unified User Directory API — letting customers map WP roles to permission tiers without manual configuration. - **Automate employee offboarding across WordPress sites** — HR and IT management platforms can revoke or downgrade WordPress access when an employee is terminated or changes roles, ensuring company marketing sites and blogs don't retain stale admin accounts. Truto's Unified User Directory API provides a consistent interface to manage this alongside other connected systems. - **Centralize user identity across content platforms** — SaaS products that aggregate user directories across multiple tools can include WordPress as a connected workspace, giving IT admins a single view of who has access to the company's web properties, what roles they hold, and when accounts were created. - **Provision WordPress accounts from an identity provider** — Identity and access management platforms can create or update WordPress user accounts programmatically when new team members are onboarded, ensuring authors and editors have day-one access to the company blog without manual admin intervention. ## What you can build - **WordPress user directory sync** — Automatically import WordPress users, emails, and roles into your platform and keep them in sync using Truto's Unified User Directory API. - **Role-based permission mapping** — Map WordPress roles like Administrator, Editor, and Author to corresponding permission levels inside your product so customers don't have to configure access manually. - **Automated access revocation on offboarding** — When a user is marked as inactive in your HR or IT platform, automatically remove or downgrade their WordPress account to prevent unauthorized access. - **Cross-platform user audit dashboard** — Show customers a unified view of all users with access to their WordPress sites alongside other connected apps, highlighting role mismatches or orphaned accounts. - **Workspace-level user provisioning** — Allow customers to create new WordPress user accounts directly from your SaaS when onboarding team members, pre-assigning the correct role based on their job function. ## FAQs ### How does authentication work for WordPress integrations? WordPress 5.6+ natively supports Application Passwords, which allow API access without installing additional plugins. OAuth 1.0a and 2.0 are also available via plugins. Truto handles the auth flow so your end users can connect their WordPress sites without your team managing tokens or credentials directly. ### What user data can I access through the WordPress integration? Via the WordPress REST API's /wp/v2/users endpoint — mapped through Truto's Unified User Directory API — you can access user IDs, usernames, display names, email addresses, and roles (Administrator, Editor, Author, Contributor, Subscriber). ### Are WordPress tools for content, media, or taxonomy management available through Truto today? Currently, the WordPress integration on Truto supports the Unified User Directory API covering Users, Roles, and Workspaces. Additional tools for posts, pages, media, taxonomies, and custom post types can be built on request based on your use case. ### Does the WordPress REST API have rate limits? The default WordPress REST API does not enforce rate limits at the application level, but hosting providers and security plugins (like Wordfence or Cloudflare) often impose their own limits. Truto handles pagination and retries, but you should be aware of hosting-level constraints on your customers' sites. ### Can I use this integration with WordPress.com and self-hosted WordPress sites? The REST API is available on both self-hosted WordPress (WordPress.org) installations running version 4.7+ and WordPress.com sites. Authentication methods may differ — self-hosted sites typically use Application Passwords, while WordPress.com uses OAuth 2.0. Truto abstracts these differences. ### How does the Unified User Directory API map to WordPress concepts? Users map to WordPress user accounts, Roles map to WordPress roles (Administrator, Editor, Author, Contributor, Subscriber), and Workspaces map to WordPress site instances. This lets you treat WordPress user management the same way you'd handle any other connected directory.