Access plugin allows you to control which sections different user roles can reach in the WordPress admin. You will be able to create your own custom roles and choose exactly what administration capabilities they have on the site.

About Roles and Capabilities

Roles for new user

 

 

 

 

Roles in WordPress are groups of users. Each user belongs to a role.

The roles that come with WordPress are administrator, editor, author, contributor and subscriber. Different roles offer different sets of capabilities.

When you create an administrator user, that user can do anything in the site. Subscriber users have no admin privileges. In between them, editor, author and contributor have varying degrees of capabilities in the WordPress admin.

Different plugins and themes often create their custom roles, to allow access to admin features that they create.

Access plugin lets you create your own custom roles and manually set its capabilities.

Creating Custom Roles

The roles management is located in the Toolset -> Access Control page, on the Custom Roles tab. Click Add a new role and enter the role’s name.

Click on Add a new role Enter role’s name
new-role-step1 new-role-step2

Your newly created role always starts with no capabilities, unless you select to copy privileges from an existing role. In this case, it derives the capabilities from the selected role.

Create a new role with the same privileges as an existing role
Create a new role with the same privileges as an existing role

 

Listing Custom Roles

After you add some custom roles, the listing page is similar to this screenshot:

Roles listing page
Roles listing page

 

The roles table has a specific ordering, which is as following:

  1. Administrator (WordPress default administrator role, which has all capabilities)
  2. Super administrators (in multisite installations only)
  3. Custom roles with administrator capabilities
  4. Editors (roles who can edit any posts)
  5. Authors (roles can edit only own posts)
  6. All other roles
  7. Guest (this indicates the logged out user and is listed only in permission tables)

Editing Capabilities for Your Custom Roles

When using the Yoast SEO plugin alongside Access, you are likely to run into problems when you give Post Edit rights to a custom user role that has permissions copied from the Guest one. In this case, the custom user role will not be able to access the Posts and Tools pages in the WordPress administration. Read more about this conflict and how to solve it on the related Errata page.

When you create a new role, whether or not you select to copy privileges from an existing role, you can edit the permissions of the new role. Click on Change permissions to see a list of all the available capabilities (things that a user can do) in the WordPress admin.

Click on Change Permission List of available capabilities
change-permissions-link change-permissions-dialog

The list is long, as it represents every single action, available in your site’s admin.

If you are using WPML or WooCommerce plugins, you will see the capabilities for these plugins at the end of the list.

You can change the capabilities of custom roles that you have created with Access and see the capabilities of the built-in roles.

Standard WordPress user roles and the ones created by other plugins

By default, Access allows you to set permission only for the roles defined using the plugin. This means that, by default, you cannot change permissions for the standard user roles that come built-in with WordPress and the special ones that are created by other plugins. A good example of such special role is the Shop Manager role defined by the WooCommerce plugin.

Enable advanced mode
Enable advanced mode

If you need to change these roles, you can enable their customization by clicking the Enable advanced mode button.