iCork Floor Public API

Machine-readable OpenAPI 3.1 spec: openapi.json

Discovery Endpoints

Path	Purpose
/.well-known/api-catalog	RFC 9727 linkset of all APIs
/.well-known/oauth-protected-resource	RFC 9728 resource metadata
/.well-known/oauth-authorization-server	RFC 8414 auth server metadata
/.well-known/mcp/server-card.json	MCP server card (planned)
/.well-known/agent-skills/index.json	Agent skills index v0.2

Authentication

Write operations require one of:

Application Password (recommended for agents) — generate at /wp-admin/profile.php, send via HTTP Basic auth.
WooCommerce Consumer Key/Secret — generate at WooCommerce › Settings › Advanced › REST API.

Primary Routes

GET https://www.icorkfloor.com/wp-json/ — API root, lists all registered routes
GET https://www.icorkfloor.com/wp-json/wp/v2/product — List products (public)
GET https://www.icorkfloor.com/wp-json/wc/store/v1/products — Storefront product listing
GET https://www.icorkfloor.com/wp-json/wc/store/v1/cart — Current session cart
GET https://www.icorkfloor.com/wp-json/wc/v3/orders — Orders (auth required)

Rate Limits

Unauthenticated read requests are subject to standard site caching and may be rate-limited by Cloudflare. Authenticated requests follow WooCommerce's default per-connection limits.

Full Reference

See the WooCommerce REST API Handbook and the WordPress REST API Handbook for complete schemas and examples.