[Vladimir]

Hi,

Do you use WordPress built-in front-end menu to show those links? If ‘Yes’, you can use ‘Front-end menu access’ add-on and setup, what role can see what menu item.

[Vladimir]

Hi,

I can not repeat an issue and thus – isolate a reason. What will be if you deactivate User Role Editor Pro at all?

Look at a browser JavaScript console also. Are there any error messages before and after click “Live Editor” link at top admin menu bar?

Does ‘Live Editor’ toolbar button work if a user with custom role will click it from the regular edit page?

[Vladimir]

I added ‘_wpnonce’ just in case… There is other link (Duplicate) at the page which contains this argument.

[Vladimir]

It seems that it’s critical for PHP versions 5.3 and earlier. PHP 5.4+ should parse such code normally. Do your sites still work under unsupported PHP version?

It’s time to think about an upgrade: PHP supported versions.

[Vladimir]

Hi,

Thanks for this information.
Developing and testing under PHP 7.0, I missed somehow an earlier PHP versions.
Quick workaround – replace line 64 at /wp-content/plugins/user-role-editor-pro/pro/includes/classes/page-permissions-view.php

$capability = array_values($caps)[0];

with this version:

$caps_list = array_values($caps);
$capability = $caps_list[0];

Or rollback to previous version and wait an updated version. I will publish it next 1-2 weeks.

[Vladimir]

Thanks for the clarification. Did you restrict this role with “Admin menu”?
Will ‘Live Edit’ link work normally if you deactivate “Admin menu access” add-on?

[Vladimir]

Hi Urs,

Code for LayerSlider URL arguments will be:

add_filter('ure_admin_menu_access_allowed_args', 'ure_allow_arg_for_admin', 10, 1);

function ure_allow_arg_for_admin($args) {

    $args['admin.php']['layerslider'][] = 'id';
    $args['admin.php']['layerslider'][] = 'action';
    $args['admin.php']['layerslider'][] = '_wpnonce';
    
    return $args;

}

[Vladimir]

Thanks for the clarification. I will think about this.

[Vladimir]

Hi Urs,

Older version of LayerSlider 5.4.0 (I have on hands) uses ‘manage_options’ capability to protect its menu.

[Vladimir]

You can restrict access to the ‘document’ custom post type editing by input department taxonomy ID as a restrictions criteria for the role ‘finance’.

A purpose of this filter is to exclude posts type from edit restrictions for all users or some role as edit restrictions are applied to all post types by default. It’s not planned to apply this filter to the selected post (item inside custom post type) by some criteria. Using this filter you can allow to edit all posts for the current user or just a subset of post according to the criteria for this user and his role(s).

[Vladimir]

Hi,

This feature would be a good addition to User Role Editor Pro. Currently it’s not realized.

[Vladimir]

‘manage_options’ is not required for access to “Appearance->Menu” at all.
‘edit_theme_options’ is needed for that.

[Vladimir]

Hi,

“Custom Fields” menu created by “Advanced Custom Fields” plugin is available for the role if ‘manage_options’ capability was granted to it.

If menu is not available to a current role, then it is not visible at the “Admin menu” window.

[Vladimir]

Yes, you suggested exactly the same solution, about which I think myself. Thank you.
Yes, I plan to write a module to manage a white list of arguments for the admin menu links.

[Vladimir]

I can not exclude though that some other plugin may be involved here too. It may have sense to try to deactivate temporally all plugins except WP Media Folder and URE Pro and re-test the issue. I did not make this myself to not break your site. May be you can setup a stage copy for further testing of this issue.

[Author]

Posts