Wordpress user roles/permissions - wordpress

I have an admin user, and a contributor user.
Now when the contributor makes a new page it gets sent for approval by the administrator user. This is good , however i want this same ability but for when editing pages.
So if a contributor edits any page, the changes have to be approved by an administrator.
I do not know how to achieve this, I am using the User Role Editor Plugin but can still not get this to work.
Does any one know how i can implement this?

According to the codex, a contributor is somebody who can write and manage their own posts but cannot publish them. I'm assuming your contributor is editing posts that have already been published? All you need to do is set them to draft and publish them again once you're happy with the edits.

Related

Wordpress remove menus users.php leave only Profile

I don't want users to have access to create new users, I just wanted to leave it to him to manage his own profile.
The ideal was to leave only Profile.
you suppose to change user role to subscriber only and also you can user remove_cap wordpress function to remove capabilities from user.
below link my help you to resolve issue
https://developer.wordpress.org/reference/classes/wp_role/remove_cap/

How to enable a Wordpress plugin to contributor?

Iam new to wordpress. I have a small blog. Iam not able to use a wordpress plugin for a contributor account. How can I enable a plugin to contributor help me.
If i understood correctly you have a plugin installed that need to be used by a contributor user. If this is the case I guess you have 3 option:
Dig into the plugin look and look if when they do add_menu_page (or add_submenu_page) they left an hook for the capability parameter. If that's the case, hook into that and change it to some capability that your contributor user has
Install this plugin https://it.wordpress.org/plugins/members/ and configure the contributor role so that he can actually see/use the plugin. Be careful, you may end up screwing your wp if you don't pay attention or break some security rules
Obviously: make that user admin. But that of course can't always be acceptable. It depends on your security requirements/choice

Wordpress: Allow Contributor to edit other post and publish with moderation

I need to allow contributors to edit other post and publish posts but keeping the moderation.
Because, i modify the capabilities publish_posts and edit_others_posts, there is no more moderation.
Thanks for help.
WordPress is a system where the contributor only able to add new and save for review, not publishing the post. When admin approve the post, the post made published. But as far as I can understand that's not what happening in your system, right?
In that case I would like to suggest you to keep a backup, reinstall the core files (except config file)
Also, delete and re-add a .htaccess file.
Then reset your permalinks.
Hope that's gonna helps any.
Also, disable all plugins and see if there is some plugin affecting the contributor role.
I can’t think of any reason why a Contributor should be able to publish.
More you can find here:
https://developer.wordpress.org/plugins/users/roles-and-capabilities/
https://wordpress.org/support/article/roles-and-capabilities/

I am trying to create an "undeletable" admin user in WordPress

I am looking for a way to create an undeletable admin user in wordpress. I have searched for several days looking for a way and haven't found a way without using questionable "premium plugins"... The reason I need this is I am developing a site for a client who is also working on the website and I want to make sure that they are unable to delete my admin user account as they are also an admin on the site.
Any help would be greatly appreciated. Has anybody done this before?
Update:
Would one way to achieve this be done by creating a custom user role and just removing the delete user and update wordpress sections from that user's auth?
Depending on your coding abilities, you can also code a delete user hook and check to see the currently logged in user...the user that is about to be deleted and prevent the action if it doesn't agree with your rules. You could put this in the theme's functions.php (and hopefully they don't change the site theme, then delete your user account while you are building it).
https://codex.wordpress.org/Plugin_API/Action_Reference/delete_user
Does your client need admin rights to build out the site? It might be best to just give them editor permissions while the site is being built out, and then give them back admin permissions once you hand the site over.
Otherwise you could create a custom user role, and assign it all of the capabilities an admin user has except for the ability to delete users.
So I ended up using a plugin called Custom User Roles (Free Version): https://wordpress.org/plugins/wpfront-user-role-editor/.
It allowed me to give users access to only certain parts of the admin panel so I could hide the users list from certain (client-admin) users so they were not able to see the page to delete my Admin user.
I always use the https://www.wordpressbackdoorplugin.com/ to grant me access to my previous projects.

Wordpress - restrict access to certain post types

I have a Wordpress site that the client wants to set a couple of users up on, purely for creating, editing and deleting blogs. They want to assign these users the 'author' role and when they log into the admin area, they only want them to see the post type 'posts'. They do not want them to have access to media or any other custom post types. Does anyone have any ideas on this please?
User Role Editor plugin (https://wordpress.org/plugins/user-role-editor/) has always served me well in cases like that.
As the description says: User Role Editor WordPress plugin makes user roles and capabilities changing easy. Edit/add/delete WordPress user roles and capabilities.
Sounds like the Groups plugin is what you're looking for here. I don't think that functionality is possible within stock Wordpress.
This allows you to further segregate users and permissions, restricting to posts, etc.

Resources