Vladimir Garagulya
Forum Replies Created
-
Forum: Plugins
In reply to: [User Role Editor] Custom Post Type Capability gives me access to ALL PostsRead this article for more details:
https://www.role-editor.com/documentation/manage-access-to-custom-post-types/Forum: Plugins
In reply to: [User Role Editor] Custom Post Type Capability gives me access to ALL PostsHi Andy,
Every custom post type (CPT) has capability type, ‘post’ by default. If do not change capability type during CPT definition to something unique, like ‘board_post’, such CPT will be protected by the same set of capabilities (edit_posts, edit_publish_posts, etc.). So if you grant to a role the list of capabilities generated for the ‘post’ capability type, such role automatically receive access to alll CPTs which uses the same capability type ‘post’.Forum: Plugins
In reply to: [User Role Editor] PTE Request for pt_BR (Translations pending for 7+ months)Hi Jayron,
I sent PTE request post as you have asked:
https://make.wordpress.org/polyglots/?p=65694
Forum: Plugins
In reply to: [User Role Editor] Custom Role Causes Too Many Redirects When Logging In- ‘read’ capability is required minimum to get access to the wp-admin/
- There would be a conflict with some of active plugin. Try to deactivate all plugins and make new tests. Then activate plugins back one be one.
- There is no known bug in the latest version of URE.
Forum: Plugins
In reply to: [User Role Editor] Plugin updatingI plan publish the updated version this week.
Forum: Plugins
In reply to: [User Role Editor] admin not showing in get_users()URE protects users with administrator role from others by default. You can switch this befor call of get_users() and restore back using code below as a starting point:
// Switch off URE’s protection of users with ‘administrator’ role from each other and other users with ‘edit_users’ capability
add_filter( ‘ure_supress_administrators_protection’, ‘switch_off_ure_admin_protection’, 10, 1);
function switch_off_ure_admin_protection( $switch_off ) {
$switch_off = true; return $switch_off;}
URE updates role data directly in place where WordPress stores them. Changes are permanent. When you delete URE via WordPress it removes from the database only own settings data.
Forum: Plugins
In reply to: [User Role Editor] Admin role without permission to see sales@simfabuser, contact me directly via support email address.
Forum: Plugins
In reply to: [User Role Editor] Admin role without permission to see salesI suppose that you use WooCommerce. If you have another e-commerce platform, let me know which.
I took shop_manager role as a starting point for a new role, revoked ‘view_woocommerce_reports’ capability. And test showed that admin menu items ‘WooCommerce->Reports’ and ‘Analytics’ were hidden for such user.
It’s possible that some another plugin may be involved. Try temporally deactivate all plugins except WooCommerce and test if you will receive another result. If Yes, you can activate plugins back one by one with a new test to isolate to which plugin needed menu item belongs.
Forum: Plugins
In reply to: [User Role Editor] Admin role without permission to see salesHi,
1st, you should use a new custom role for this purpose, not WordPress default ‘administrator’ one.
You may try revoke from such role the ‘view_woocommerce_reports’ user capability, which protects ‘WooCommerce->Reports’ and ‘Analytics’ menu items.
Pay attention that if user can install plugins, he can receive superadmin access executing special PHP code at your web server. There is no sense to restrict his access to WordPress admin menu in this case. So finally, you have to reduce such user permissions prohibiting access not to the sales reports only.
Forum: Plugins
In reply to: [User Role Editor] WPML ErrorDo you use the latest version of User Role Editor?
If Yes, send the full text of error message.Forum: Plugins
In reply to: [User Role Editor] Redirect subscribers to page after loginUser Role Editor doesn’t include redirect after login option.
Look at the “LoginWP” plugin, which free version allows this:
https://wordpress.org/plugins/peters-login-redirect/Forum: Plugins
In reply to: [User Role Editor] SecurityI don’t think we meet a security issue here.
If you executed ‘Reset’ operation – it is site wide critical action, which rewrites site user roles with WordPress own initial copy (as it has on installation). ‘ure_reset_roles’ is the special user capability/permission which allows this action. What’s the purpose to grant it to the non-administrator user? Such user just becomes permissions superadmin, if grant him so critical permissions as you listed above.
Forum: Plugins
In reply to: [User Role Editor] Why your plugin delete table wp_capabilities?User Role Editor does not delete any database table. When you delete plugin URE via ‘Delete’ link under its row in the plugins list at the “Plugins” page URE deletes records it added to the wp_options database table. That’s it.
There is no wp_capabilities table between database tables which belong to WordPress. If you search/write about data where WordPress stores user roles it is the record in the wp_options database table. Pay attention that ‘wp_’ here is the WordPress database prefix set in wp-config.php.
If you have another database prefix, e.g. ‘cs123_’, record with user roles will have option_name field value set to ‘cs123_user_roles’. More information here: https://shinephp.com/how-to-change-wordpress-user-role-capabilities/
If you write about selected user (ID=NN) permissions, it is the database record inside wp_usermeta database table, which you can find this way:
SELECT * FROM wp_usermeta WHERE user_id=NN AND meta_key=’wp_capabilities’;
And ‘wp_’ inside command above is the database prefix again which can be different.
Fixed.