September 23, 2019
September 23, 2019
If you collaborate on running a website with a team, then you should familiarize yourself with WordPress user roles and permissions. This article explains why managing roles is crucial for your website and covers a comprehensive guide to help you maximize this WordPress feature.
WordPress Roles is a simple concept used to manage what actions (called Capabilities) every user is able to perform through the WordPress dashboard. Every role is organized by a webmaster — who is automatically assigned as an administrator when installing WordPress.
There are six default WordPress roles you can give to your users – administrator, editor, author, contributor, subscriber, and super admin.
No matter what kind of website you operate, user role management is an absolute must. For example:
Let’s break down these permissions for every user role in more detail:
|Posts||Full control||Full control||Add, edit, publish, delete own||Add, edit, delete own||No control|
|Pages||Full control||Full control||No control||No control||No control|
|Upload files||Full control||Full control||Full control||No control||No control|
|Moderate comments||Full control||Full control||No control||No control||No control|
|Plugins||Full control||No control||No control||No control||No control|
|Themes||Full control||No control||No control||No control||No control|
|Users||Full control||Edit own||Edit own||Edit own||Edit own|
|Settings||Full control||No control||No control||No control||No control|
Administrators have full control over every aspect of the website. They can add, edit, and delete plugins, as well as shape how the website looks. They also have access to the site’s settings and content management, including posts, pages, and comments.
Additionally, administrators are the only role that can manage other user roles. Thus, if you are an administrator yourself, you can add new users, delete existing ones, or change their roles.
Editors can manage comments, pages, and posts (including those created by other users). However, they have no access to the settings panel, installing new plugins, customizing the site’s theme, or organizing other users.
Unlike editors, authors’ role is limited to their own content management. That’s why they have no permission to organize other users’ posts, approve and delete comments, nor manage pages. Other than that, they have the same limited permissions as editors.
This role allows users to add, edit, and delete their own content. Contributors can’t publish, upload media files, and manage their posts once published.
Subscribers only have access to view published posts or comments and manage their profile section on the dashboard.
A super admin role (which only applies to WordPress multisite network) can perform any administration task within the network, such as add or delete websites, install a plugin or theme, organize content and its settings. They have full control over the network’s users.
Before choosing the appropriate role for users, ask yourself about these key points: Will you let users manage your WordPress dashboard? Do you trust them to organize your site’s content? Should you review their posts before publishing? Are they capable enough to edit and publish other users’ posts?
IMPORTANT: Be cautious when appointing another user as a new administrator. Once assigned, they get full access to your admin panel. They can even edit or delete your account.
Next, let’s figure out the correct way to add, delete, and customize user roles on your site.
Here are a couple of key points to grasp before setting up user roles:
Follow these steps to create and assign a new WordPress user role:
If you want to delete a user account:
Alternatively, assign them to No role for this site to keep their posts and accounts on your website. Here are the steps:
It’s also possible to alter roles’ default capabilities. In this tutorial, we will use the Capability Manager Enhanced plugin. This WordPress plugin allows you to edit or delete each role’s tasks, and you can even create a new role name, and its capability.
Let’s learn how to use this plugin:
You can easily add and manage your website’s user roles using the default WordPress options. To recap, here are the six predefined WordPress roles and permissions you can organize:
Furthermore, you are allowed to customize roles and capabilities with the help of Capability Manager Enhanced — which can be installed and activated from your Plugins menu.
If you have something to discuss, reach us in the comments section below.