This free add-on for CoCart allows you to authenticate via a simple JWT Token.
★★★★★
An excellent plugin, which makes building a headless WooCommerce experience a breeze. Easy to use, nearly zero setup time. Harald Schneider
Enable PHP HTTP Authorization Header
🖥️ Shared Hosts
Most shared hosts have disabled the HTTP Authorization Header by default.
To enable this option you’ll need to edit your .htaccess file by adding the following:
RewriteEngine on
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule ^(.*) - [E=HTTP_AUTHORIZATION:%1]
or
RewriteEngine On
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
WPEngine
To enable this option you’ll need to edit your .htaccess file by adding the following (see this issue):
SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1
🧰 Configuration
- Set a unique secret key in your
wp-config.php
file defined toCOCART_JWT_AUTH_SECRET_KEY
. - Install and activate plugin.
Token Expiration
By default, the token expires after two full days but can be filtered to change to your preference using this hook cocart_jwt_auth_expire
.
Here is an example changing it to expire after just 2 hours.
add_filter( 'cocart_jwt_auth_expire', function() {
return MINUTE_IN_SECONDS * 120
});
📄 Usage
- Authenticate via basic method with the login endpoint to get your token.
- Store the given token under
jwt_token
in your application. - Now authenticate any cart route with
Bearer
authentication with the token given.
🧰 Developer Tools
- CoCart Beta Tester allows you to easily update to pre-release versions of CoCart Lite for testing and development purposes.
- CoCart VSCode extension for Visual Studio Code adds snippets and autocompletion of functions, classes and hooks.
- CoCart Product Support Boilerplate provides a basic boilerplate for supporting a different product types to add to the cart with validation including adding your own parameters.
- CoCart Cart Callback Example provides you an example of registering a callback that can be triggered when updating the cart.
★★★★★
Amazing Plugin. I’m using it to create a react-native app with WooCommerce as back-end. This plugin is a life-saver! Daniel Loureiro
👍 Add-ons to further enhance CoCart
We also have other add-ons that extend CoCart to enhance your development and your customers shopping experience.
- CoCart – Cart Enhanced enhances the data returned for the cart and the items added to it.
- CoCart – CORS enables support for CORS to allow CoCart to work across multiple domains.
- CoCart – Rate Limiting enables the rate limiting feature.
- and more add-ons in development.
They work with the core of CoCart already, and these add-ons of course come with support too.
⌨️ Join our growing community
A Discord community for developers, WordPress agencies and shop owners building the fastest and best headless WooCommerce stores with CoCart.
🐞 Bug reports
Bug reports for CoCart – JWT Authentication are welcomed in the CoCart – JWT Authentication repository on GitHub. Please note that GitHub is not a support forum, and that issues that aren’t properly qualified as bugs will be closed.
More information
- The official CoCart API plugin website.
- CoCart for Developers, an official hub for resources you need to be productive with CoCart and keep track of everything that is happening with the API.
- The CoCart Documentation
- Subscribe to updates
- Like, Follow and Star on Facebook, Twitter, Instagram and GitHub
💯 Credits
This plugin is developed and maintained by Sébastien Dumont. Founder of CoCart Headless, LLC.