WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] WordPress Network plugin for user role ? (9 posts)

  1. trancefuzion
    Member
    Posted 3 years ago #

    Hi,

    I would like to know if you know a good plugins to handle the role capabilities of a user in a network environment (MU site).

    Situation:
    I create a new site under the master one. I select the user that will handle this new website.

    I want the user to be able to install plugins on his website, but not on the master one. I want him to be able to do an Editor job on the master website, and do an administrator job on his website.

    The problem I have is the following:
    Actually, the user is not able to install the plugin he wants, if I give him any role other than administrator... but if I give him this role, I am screwed, because he can network activate any plugins from the master website...

    Any help with this problem would be really appreciated. I have check Role Scoper plugin and user role editor plugin, but they are not covering the problem I have here.

    Thanks!

  2. I want the user to be able to install plugins on his website

    You can't. There are no plugins available for this, specifically. And for good reason.

    Plugin & theme installation is *network wide* - not restricted per site. Only super admins can install plugins & themes for security reasons.

    If you really need the site owner to install his own stuff, then he needs a separate install.

  3. trancefuzion
    Member
    Posted 3 years ago #

    Hmmm, I am not sure to understand why...

    I love the "network wide" feature for plugins and themes.

    I understand what you are saying for the separate install, but I don't understand the security reasons... anyway, it's not the place to discuss security reasons, so I will not ask you to answer my question.

    If you have a master site, and children sites, the children sites could have a user per site that admin the child site(and that could be an editor on the master site)... install plugin and themes specifically for this site (which is a child) without impacting the master site. Of course, the child site will get the same plugins and themes from the network. In this situation, I don't understand the reason why it's impossible.

    So, I would like to have a better explanation on why, if possible.

    Thanks!

  4. The better explanation is, actually, a security reason.

    If you let ANYONE install ANY plugin on your server, they can use that to hack into your install and screw it up for everyone. If you really want, I'm sure we can dig up some code that would add the user as admin for all sites on your network. I don't know about YOU, but I don't want that.

    Also, remember that installing plugins requires knowing the FTP id/password to your site. You really wanna give that out? I don't.

    So no. You can't do this unless you trust someone enough to give them the keys to the car.

  5. Because if your user installs a plugin from somewhere that injects malware or dodgy code, or something they wrote themselves, or inadvertently picked up elsewhere, it can bring down your whole site.

    THAT is a security risk. ;)

  6. trancefuzion
    Member
    Posted 3 years ago #

    Yeah that's fine guys. I see exactly what you mean. On the other hand, let me answer to certain quotes.

    If you really want, I'm sure we can dig up some code that would add the user as admin for all sites on your network. I don't know about YOU, but I don't want that.

    This is exactly not what I want. I want ONE user to be admin on ONE subsite (child site). If I want to enable it on ALL site, I will change it's account for an admin one.

    Also, remember that installing plugins requires knowing the FTP id/password to your site. You really wanna give that out? I don't.

    Installing plugins don't mean that you really need an ftp account, and an ftp account can be configure to point to a specific folder for a specific user. The problem is that with the network configuration, each sub site is not another installation of the wordpress, so on the ftp, everything is in the same folder.

    So no. You can't do this unless you trust someone enough to give them the keys to the car.

    You can see my situation exactly like that. I trust the user enough to admin their "subsite" (the child site if you want), but the master site is not their responsibility. So, it's like having a child that has its driving licence and you trust him to properly drive your second car.

    Because if your user installs a plugin from somewhere that injects malware or dodgy code, or something they wrote themselves, or inadvertently picked up elsewhere, it can bring down your whole site.

    I perfectly agree. but like I said, I trust them. They are with our company for years now. They will install plugins from the wordpress plugins repository and that's it. They are not developers.

    But that's ok guys, you explained it to me, I appreciate and I understand. Of course there is a good security risk there. That's fine, we will deal with it. I gave you some responses here, because I want you to see that when you deal with honest people, this kind of feature can make sense.

    In the case of an admin, the UI of the admin interface can be confusing when you can switch from the main site to another one. At the end, if you switch regularly, it can happens that you post something on the wrong site, or install a theme on the main site instead of a child site, and same thing for a plugin. That was another reason why I was looking for this kind of feature: being admin on a child site, and another role on the main site.

    Cheers!
    Martin

  7. I gave you some responses here, because I want you to see that when you deal with honest people, this kind of feature can make sense.

    And honest people make mistakes. :)

    We also have a responsibility to point these things out in threads like this, not just for your knowledge, but for others who read it and apply it to their own situation and get themsevles into trouble. ;)

    They will install plugins from the wordpress plugins repository and that's it.

    but in the same menu area is a place to install from a zip.

    I perfectly understand where there's some situations where you may want this but... the only way I can think of being able to do so is to make the other admin a second network in the SAME install and make him super admin there. that way he can install all he likes, and not have access to anything else.

    the failsafes with userlevels are built right in to core though. there is no half-step between blog admin and super admin.

  8. Installing plugins don't mean that you really need an ftp account, and an ftp account can be configure to point to a specific folder for a specific user.

    Incorrect. Installing plugins and themes on your server means you need FTP access.

    When you use the WordPress automatic updater/installer, it's using your FTP credentials.

    As Andrea said, I too understand where you may want this. I can think of times where it would be useful and beneficial. But it's potentially dangerous to the rest of your network. If it's that big a deal, I'd either make a one-off install (not MultiSite) for the guy, or do a multi-network install. Or tell him 'if you need a new plugin/theme, email me so I can vet it for security purposes.' I've never had anyone complain about that one.

  9. trancefuzion
    Member
    Posted 3 years ago #

    That's fine. Thank you for your work, and keep up the good work guys! We love using your platform!

    I will install theme and plugin myself, and my users will get the Editor role for now. We will see how it's gonna work.

    If it's not the good way to go, I will install them a wordpress platform and they will do whathever they want from there.

    Thanks!
    Martin

Topic Closed

This topic has been closed to new replies.

About this Topic