admin管理员组文章数量:1332108
I have some posts that author is Administrator and some other posts that author is Editor
After logging in as Editor, I can edit Administrator posts. I would like to prevent this.
I find some information about filters like user_has_cap and map_meta_cap but i'm not sure it's right direction. Maybe I'm digging too deep and a simpler solution is nearby?
I have some posts that author is Administrator and some other posts that author is Editor
After logging in as Editor, I can edit Administrator posts. I would like to prevent this.
I find some information about filters like user_has_cap and map_meta_cap but i'm not sure it's right direction. Maybe I'm digging too deep and a simpler solution is nearby?
1 Answer
Reset to default 3map_meta_cap is the correct filter to use.
When WordPress checks whether you have permission to edit a post it checks edit_post. If you are the author of that post, that is mapped to the edit_posts capability, but if you're not it is mapped to edit_others_posts. You can use this filter to add the additional condition that Editors cannot edit posts by Administrators, even if they have edit_others_posts.
In this example, when WordPress checks edit_post, if the post author was an administrator, then the current user also needs to be an administrator to edit it:
add_filter(
'map_meta_cap',
function( $required_caps, $cap, $user_id, $args ) {
if ( 'edit_post' === $cap) {
$post = get_post( $args[0] );
if ( $post && user_can( $post->post_author, 'administrator' ) ) {
$required_caps[] = 'administrator';
}
}
return $required_caps;
},
10,
4
);
本文标签: capabilitiesHow to prevent users with quoteditotherspostsquot capability from editing admin posts
版权声明:本文标题:capabilities - How to prevent users with "edit_others_posts" capability from editing admin posts 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1742221267a2435456.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论