[Vladimir]

Re-check if this role and/or user with this role has active edit restrictions. May be deactivate ‘Edit restrictions’ add-on temporally for quick test.

[Vladimir]

Yes, it’s possible. You can block for selected role “Publish (submitdiv)” meta box under ‘Page’ and ‘Post’ sections using this add-on.

[Vladimir]

Hi Meredith,

URE Pro includes this feature. Look at the “Settings->User Role Editor->Tools” tab. Try “Export” button.

[Vladimir]

Turn ON special option “Show Administrator role at User Role Editor” at “Settings->User Role Editor->General” tab in order to see “Administrator” role in the URE’s roles drop-down list.

[Vladimir]

Hi,

When you add new CPT with a default ‘edit_posts’ capability, URE should add this CPT own capabilities to ‘administrator’ role automatically, at least when you open User Role Editor. ‘administrator’ role should get access to all CPTs after that. If it’s not happened you still can add needed capabilities to ‘administrator’ role manually. Check if ‘administrator’ role has full list of capabilities under ‘Custom Post Types’ group.

[Vladimir]

Thanks for letting me know that you found a solution more suitable for your use case.

Generally, when URE forces CPTs to use own capabilities, it does this for all CPTs with default ‘edit_posts’ capabilities set. So CPT ‘video’ will use ‘edit_videos’ instead of ‘edit_posts’, etc. And if role does not have ‘edit_videos’ capability it does not have access to ‘Videos’ CPT, even if role still has ‘edit_posts’ capability.

[Vladimir]

Hi Rob,

It’s still not realized. Thanks for a remind.

[Vladimir]

Having all CPTs using own capabilities, when you add ‘edit_post’, role should get access to CPT, to which you not granted access.
What’s a problem now?

[Vladimir]

You have 2 ways to achieve this:
1) Force all CPT to use own capabilities, like ‘edit_videos’ for ‘Video’ CPT, etc. Use similar checkbox under ‘Edit restrictions’ section at Settings->User Role Editor->Additional modules tab. You may need to go through your roles to check if they do not lose needed access, like Media Library item editing, which will use edit_attachements instead of edit_posts.

or

2) User Admin menu blocking add-on to block admin menu items for CPTs unneeded to this role.

[Vladimir]

Hi,

By default even contributor with just ‘edit_posts’ can turn ON/OFF categories checkboxes. Try to deactivate related plugins just to check if there is some conflict.

[Vladimir]

But I don’t want this role to be able to delete any pages, not even the pages I gave them access to edit.

Just remember that is default WordPress permissions – in order to delete item from Media Library user should can delete the page to which this image was attached.

There is workaround for your situation – force WordPress to use unique user capabilities for all post types including ‘attachment’ one.
Make fresh database backup – for the case if you will wish to rollback changes.
Go to Settings->User Role Editor->Additional Modules. Turn ON “Force custom post types to use their own capabilities” option under “Content editing restrictions” section. Go through your roles and check if they need new created capabilities, like for ‘Attachments’ post type.

You can grant to a role ‘delete_attachments’ instead of ‘delete_pages’, etc. in this case.

[Vladimir]

It seems we missed ‘delete_published_pages’. Try to add it.

If issue is still there: Some plugin may change WordPress default behavior. Try to deactivate all plugins and test. If that will help, activate plugins back one by one to isolate a reason.

[Vladimir]

WordPress checks for media library item the same permissions as for the posts or page to which it is attached. So if user can delete page he can delete image attached to this page too. Try delete_pages and delete_others_pages.

When user restricted by edit a specific page – he sees/can edit/delete this page only and sees only his own images and images attached to this page.

[Vladimir]

If all your CPTs are protected by ‘edit_posts’, you can force them to use their own capabilities, look for the special checkbox at the Settings->URE->Additional Modules. Then do not grant edit_mgas and edit_insuarance-company-retails to consumer role.

[Vladimir]

Do not hurry with edit restrictions. User should be capable to edit desired page 1st. I suppose that page (which you wish this user edit) was created by other user. edit_others_pages capability is required in this case. Try to add it to a role.

And just when your user will can edit a page, maybe between others, proceed with page ID to restrict editing by this single page only.

[Author]

Posts