[Vladimir]

Hi,

Beta version 4.59.2.b1 contains the required fix. It’s available after login from the same Download page, where you take a stable version.

Could you please test it and share the results?

[Vladimir]

E.g. mentioned by you “Learndash->Reports, and Learndash->Settings” menu items, which also are protected by ‘manage_options’ capability. So you 1st, grant to a role ‘manage_options’ capability. Then open for it ‘Admin menu’ and block menu items, which use the same ‘manage_options’, but are not needed for your role/user.

[Vladimir]

1st, “Activate per plugin user access management for plugins activation” add-on has another purpose. It’s designed when you prepare the site for a client, installed and activated some plugins and do not wish that client see them and can deactivate, but at the same time you wish to allow for client to activate/deactivate some other pre-installed plugins. It’s all not about access to the some specific items at the admin menu.

2nd, you have “Admin menu access” add-on. Which you can use:
1) to get information about what capability protects what admin menu item. Just open “Admin menu” for the ‘Administrator’ role, which has access to the all admin menu items by default.
2) In case you can not block/hide unneeded menu items revoking related user capability from user role, like ‘manage_options’ for example, you can block the “Settings” menu item here, but user still will have access to the menu, which is also protected by ‘manage_options’.

It’s possible to include screenshots here if use external links. Be aware that message which contains > 2 links, automatically gets ‘pending for moderation’ status. (If I missed and did not approved it, it’s better to send the remind).

[Vladimir]

You found a bug. Thanks for your help.

URE does not save changes in case its option “Confirm role update” is switched Off.
Work temporally with confirmation of any update. I will add the fix with a next update.

[Vladimir]

Under “revoke” user capability I mean turn OFF the checkbox to the left of user capability.
If you try to edit capabilities directly for user (not for a role), take into account that you can not revoke (un-check) for a user a capability which granted to a user via role. That is why it is grayed out.

[Vladimir]

Can I look at one of the sites where URE does not save capabilities with administrator permissions, possibly development copy without critical data? If Yes, send URL and login credentials to support [at-sign] role-editor.com

[Vladimir]

Hi,

I reproduced your issue at my own test site. I will inform you when I find a reason and develop a fix.

Thank you for the report about this problem.

[Vladimir]

BuddyPress uses the single ‘bp_moderate’ capability, for its admin functions. You can not differentiate access inside BuddyPress using URE PRO for this reason.

[Vladimir]

Hi,

In order to have access to the posts list at the back-end and view existing posts from there user should have edit_posts capability. It protects the “Posts” admin menu/
By default edit_posts capability allows edit own posts, and create new posts by default.
URE Pro allows to force WordPress to use the separate ‘create_posts’ capability especially to allows add new posts. Go to the “Settings->User Role Editor->Additional Modules” and turn ON the “Activate “Create” capability for posts/pages/custom post types” option under “Content edit restrictions” subtitle. Do not forget to grant this capability to the roles who should can create posts.

publish_posts allows to publish posts. So revoke it from your role.
Revoke also (if granted) edit_others_posts, edit_published_posts, delete_posts.

[Vladimir]

Look carefully through the Digimember plugin settings. It’s possible it allows to select the list of roles which is allowed access the admin back-end.

[Vladimir]

Hi Daniel,

Try to deactivate all plugins and login under the test user. Will it help to achieve wp-admin? If Yes, activate plugins back one by one and make new test to isolate plugin which blocks access of new role to wp-admin. There are some plugins which has own settings – you have to select the roles to which you allow access to the admin back-end.

[Vladimir]

“Posts/Pages/Custom post types edit restrictions” add-on allows this. Turn ON “Own data only” option for user or his role.

[Vladimir]

Hi,

Do you write about this version?
Show at screenshot what menu do you wish to hide.

[Vladimir]

Hi,

I can not repeat this.
I tested SEOPress from wordpress.org and it did not remove ‘manage_options’ from my custom roles. I searched from its source code and did not find any commands related to ‘manage_options’ deletion.

[Vladimir]

Hi,

Send URL and administrator credentials to support [at-sign] role-editor.com, if it’s applicable. I will investigate your case. If you can setup a development copy it would be better.

[Author]

Posts