[ad_1]
[https://wordpress.com/support/security/two-step-authentication/application-specific-passwords/](https://wordpress.com/support/security/two-step-authentication/application-specific-passwords/)
I followed the instructions on this link to generate an application password and used base64.b64encode(f”{username}:{password}”.encode(“utf-8”)).decode(“utf-8”) as the value for the Authorization header. However, I keep getting a 404 error. The domain I’m using is [https://reviewpass.wordpress.com](https://reviewpass.wordpress.com) and the requested endpoint is [https://reviewpass.wordpress.com/wp-json/wp/v2/posts](https://reviewpass.wordpress.com/wp-json/wp/v2/posts). Am I unable to use the API because I’m on the free plan? Or is there another procedure I need to follow before using the API?
[ad_2]
It is available, it’s just under a different URL.
See: [https://wordpress.com/blog/2016/11/11/wordpress-rest-api-on-wordpress-com/](https://wordpress.com/blog/2016/11/11/wordpress-rest-api-on-wordpress-com/)
https://www.reddit.com/r/Wordpress/comments/rremcd/the_difference_between_wordpress_com_and_org/
Switch to self hosted so you don’t have to be restricted.
Get off WordPress.com if you’re doing anything remotely worthwhile