A common requirement for business sites is to have a client login which allow visitors to access private content for them (ie: downloads, screenshots, documents). I did it in the past and although it worked, I think is a bit messy. Now I need the same functionality in a new site, and want to know … Read more
This question already has answers here: Closed 9 years ago. Possible Duplicate: How to Protect Uploads, if User is not Logged In? Is there any way at all to restrict direct access to files within a specific folder to only specific wordpress users that have that specific capability set? 1 Answer 1 The easiest php … Read more
My wordpress theme has a custom post-type. Only editors (and higher) should be allowed to use this post type. I did this with: function add_capability($role,$cap) { $role_obj = get_role($role); // get the the role object $role_obj -> add_cap($cap); // add $cap capability to this role object } function set_cpt() { add_capability(‘editor’, ‘edit_cpt’); add_capability(‘editor’, ‘read_cpt’); add_capability(‘editor’, … Read more
I am having private page.I want to show this page only when “subscriber” logged in.”Editor” should not access this page.How can i set the privilege. 2 Answers 2 Without a plugin something like this should work //functions.php function get_user_role() { global $current_user; $user_roles = $current_user->roles; $user_role = array_shift($user_roles); return $user_role; } //page template $role = … Read more
I would like to give a user all the permissions on a database without making it an admin. The reason why I want to do that is that at the moment DEV and PROD are different DBs on the same cluster so I don’t want a user to be able to change production objects but … Read more
Is there any way I can forbid a contributor to view draft posts? Right now any contributor can view my draft posts and even edit them (however their edits must be approved by administrator first). 1 Answer 1 Yes, but you might need a plugin like ‘User Role Editor’. You can then edit the capabilities … Read more
I want to create a new database user for my WordPress installation. Usually on localhost, i can just use root, but it is good practice to use a user with as little rights as possible. What are those rights? I was wondering if WordPress needed to have installed plugins etc. It may require CREATE & … Read more
I tried to run simple SQL command: select * from site_adzone; and I got this error ERROR: permission denied for relation site_adzone What could be the problem here? I tried also to do select for other tables and got same issue. I also tried to do this: GRANT ALL PRIVILEGES ON DATABASE jerry to tom; … Read more
I have a few sites in a network. I don’t want the site administrators to manage things like network plugins, but I would like them to be able to edit profiles of all network users, not use those on their site. At the top of the /wp-admin/network/users.php file is this: if ( ! current_user_can( ‘manage_network_users’ … Read more
I just got WP running on my own server. I am not trying to lock things down more. What permissions should the db user have to my WP db? 5 s 5 If you did want to lock things down…. a normal wordpress site will usually only require the database user to have SELECT, INSERT, … Read more
