GymGrow Connect adds a small set of secure REST API endpoints under the gymgrow/v1 namespace so an external system (for example, an AI content pipeline) can:

Create or update a post — title, content, excerpt, slug, categories, tags, schedule date — in a single request.
Set RankMath SEO fields (SEO title, meta description, focus keyword, canonical URL, robots) on the same request or on an existing post.
Upload an image from a multipart file or a remote URL, set its alt text, and optionally assign it as the featured image.

It replaces ad-hoc functions.php snippets with a versioned, capability-checked plugin.

Endpoints

POST /wp-json/gymgrow/v1/article — publish/update an article (also sets SEO and featured image).
POST /wp-json/gymgrow/v1/media — upload an image.
POST /wp-json/gymgrow/v1/seo/{id} — update RankMath SEO fields for a post.

A backward-compatible alias POST /wp-json/custom/v1/rankmath/{id} is also registered for pipelines that used the legacy route.

Authentication

Requests are authenticated with WordPress’s own user authentication — use an Application Password (Basic Auth) for a user who can publish posts. Permissions are enforced per route with capability checks (publish_posts, upload_files, edit_post). You may optionally enable a second-factor shared secret (X-GymGrow-Key header) from the settings screen.

This plugin does not call any external services and stores no personal data.