Advanced Access Manager


Advanced Access Manager (aka AAM) is all you need to manage access to your website frontend and backend for any user, role or visitors.

Few Quick Facts

  • Bullet-proven plugin that is used on over 90,000 websites where all features are well-tested and documented. Very low amount of support tickets speaks for quality;
  • AAM contains the most powerful and flexible set of features to manage access to your WordPress website and were majority of them are absolutely free;
  • It is the only plugin that gives you the ability to manage access to your website content for any role, individual user and visitors or even define the default access to all posts, pages, custom post types, categories and custom hierarchical taxonomies;
  • AAM is developer oriented plugin. It has dozens of hooks and configurations. It is integrated with WordPress RESTful and XML-RPC APIs and has numerous abstract layers to simplify coding;
  • No ads or other promotional crap. The UI is clean and well crafted so you can focus only on what matters;
  • No need to be a “paid” customer to get help. Request support via email or start chat with Google Hangout;
  • Some features are limited or available only with premium extensions. AAM functionality is transparent and you will absolute know when you need to get a premium extension;

Main Areas Of Focus

  • Content access control on frontend, backend and API sides to posts, pages, custom post types, categories, custom hierarchical taxonomies and CPTs for any role, user and visitors;
  • Roles & capabilities management with ability to create new roles and capabilities, edit, clone or delete existing;
  • Access control to backend area including backend menu, toolbar, metaboxes & widgets;
  • Access control to RESTful & XML-RPC APIs;
  • Developer friendly API so it can be used by other developers to work with AAM core;
  • And all necessary features to setup smooth user flow during login, logout, access denied even, 404 etc.

The Most Popular Features

  • [free] Manage Backend Menu. Manage access to the backend menu for any user or role. Find out more from How to manage WordPress backend menu article;
  • [free] Manage Roles & Capabilities. Manage all your WordPress role and capabilities.
  • [free] Create temporary user accounts. Create and manage temporary user accounts. Find out more from How to create temporary WordPress user account;
  • [limited] Content access. Very granular access to unlimited number of post, page or custom post type (19 different options). With premium Plus Package extension also manage access to hierarchical taxonomies or setup the default access to all post types and taxonomies. Find out more from How to manage access to the WordPress content article;
  • [free] Manage Admin Toolbar. Filter out unnecessary items from the top admin toolbar for any role or user.
  • [free] Backend Lockdown. Restrict access to your website backend side for any user or role. Find out more from How to lockdown WordPress backend article;
  • [free] Secure Login Widget & Shortcode. Drop AJAX login widget or shortcode anywhere on your website. Find out more from How does AAM Secure Login works article;
  • [free] Ability to enable/disable RESTful and XML-RPC APIs.
  • [free] Manage access to RESTful or XML-RPC individual endpoints for any role, user or visitors.
  • [free] JWT authentication. Authenticate user with WordPress RESTful API and use received JWT token for further requests. Fid out more from Hot to authenticate WordPress user with JWT token
  • [free] Content Filter. Filter or replace parts of your content with AAM shortcodes. Find out more from How to filter WordPress post content article;
  • [free] Login/Logout Redirects. Define custom login and logout redirect for any user or role;
  • [free] 404 Redirect. Redefine where user should be redirected when page does not exist. Find out more from How to redirect on WordPress 404 error;
  • [free] Access Denied Redirect. Define custom redirect for any role, user or visitors when access is denied for restricted area on your website;
  • [free] Manage Metaboxes & Widgets. Filter out restricted or unnecessary metaboxes and widgets on both frontend and backend for any user, role or visitors. Find out more from How to hide WordPress metaboxes & widgets article;
  • [paid] Manage access based on IP address or referred domain. Manage access to your website for all visitors based on referred host or IP address. Find out more from How to manage access to WordPress website by IP address article;
  • [paid] Monetize access to you content. Start selling access to your website content with premium E-Commerce extension. Find out more from How to monetize access to the WordPress content article;
  • [free] Multisite support. Sync access settings across your network or even restrict none-members from accessing one of your sites. Find out more from AAM and WordPress Multisite support;
  • [free] Multiple role support. Finally AAM supports multiple roles per user WordPress access control for users with multiple roles
  • [and even more…] Check our help page to learn more about AAM


  • Manage access to backend menu
  • Manage access to metaboxes & widgets
  • Manage capabilities for roles and users
  • Manage access to posts, pages, media or custom post types
  • Posts and pages access options form
  • Define access to posts and categories while editing them
  • Manage access denied redirect rule
  • Manage user login redirect
  • Manage 404 redirect
  • Create your own content teaser for limited content
  • Improve your website security


  1. Upload advanced-access-manager folder to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress



I built a very extensive automated onboarding system with step-by-step user role and privilege advancements.

AAM made it possible and EASY…

Thanks Vasyl

Excellent Support!

I was very impressed with how quickly I got a response to my tech questions! You can have confidence that your questions and concerns will be answered quickly and professionally.

kind of a pain

Multisite. Addons won’t download due to my host having security features in place, plus they run litespeed if that makes a difference. No problem, just download multisite extentsion from github and upload to aam folder in wp-content he says. Did that and it worked for a couple of days and now asks me to download latest version of extension. Did that and it still says extension not loaded, download latest. (and you want me to buy the bundle?)

Very archaic way of doing things imho. Other plugins don’t seem to have an issue with addons. They download and install by themselves without me having to manually download and upload it.

The interface is kind of archaic as well with the unnecessary ajax. Just makes for a whole lot of waiting which is supposed to be what ajax prevents. Over thought out. Keep it simple.

I think I’ll go back to using something else. My one contact with the dev was similar to other’s experience. Kind of a rude dude that automatically assumes it’s you, not him that’s the problem.

Read all 307 reviews

Contributors & Developers

“Advanced Access Manager” is open source software. The following people have contributed to this plugin.


“Advanced Access Manager” has been translated into 2 locales. Thank you to the translators for their contributions.

Translate “Advanced Access Manager” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • Fixed the bug with AAM notifications related to extension updates
  • Fixed the bug with AAM not taking in consideration capabilities that defined in policy
  • Improved the way show_admin_bar capability is handled
  • Added ability to define Conditions to the Statement Policy document


  • Added a huge innovation to the access control management – Access & Security Policy
  • Fixed the bug with updating extension versions

  • Fixed the bug when website may crash when some extensions are really out-of-date


  • Fixed the bug with caching
  • Fixed the bug with the way post type and taxonomies are registered with extensions
  • Turned on by default the ability to edit and delete capabilities


  • Fixed the bug with encoding on Safari when gzip is enabled
  • Fixed the bug with double caching
  • Added URI Access feature that allows to manage access to any website URI
  • Improved UI a little bit


  • Improved performance for website with large amount of posts/pages
  • Prepared few changes forward for the upcoming AAM 5.6 release


  • Fixed the bug with exporting AAM settings when roles, configpress was added by default
  • Fixed the bug with AAM cache not being triggered properly
  • Fixed the bug with some of the classes been cached improperly
  • Fixed the bug with toolbar filter that are corrupted by third part plugin or theme
  • Improved AAM to handle gzip compression properly
  • Updated bootstrap library to the v3.3.7


  • Fixed the bug with EDIT BY OTHERS option
  • Fixed UI bug when managing access to AAM page itself
  • Fixed the bug reported by
  • Fixed the bug with creating new post when default access is denied to EDIT
  • Fixed the bug with editing page that is in draft state
  • Fixed multiple bugs with AAM export/import feature
  • Fixed the bug with blocked user being able to login again
  • Slightly improved extension installation feedback
  • Improved UI
  • Enhanced JWT token feature
  • Improved the way Backend Menu and Toolbar features work
  • Added multiple-roles support
  • Refactored Import/Export features
  • Removed Settings->Tools tab

  • Fixed bug that incorrectly checks post author property
  • Fixed bug that does not allow to assign roles that contain apostrophe
  • Fixed bug with incorrectly handled AAM Console messages that contain HTML
  • Added ability to order roles by name
  • Added ability to order users by display name
  • Improved Users/Roles Manager UI

  • Quick fix for the bug that is related to Posts & Terms


  • Fixed the bug with Posts & Terms feature that hides it when Manage Frontend & Backend Access are disabled however API is enabled
  • Fixed the bug that cached objects while managing them on AAM page. That was causing inconsistency sometimes
  • Fixed the bug with content shortcode that was defining incorrectly if wrapped content should be hidden or not for specific user
  • Fixed the bug with AAM not being able to apply translations for other languages
  • Added new option “Support AAM Extensions” that allows to enables/disables Extensions feature
  • Added new option “Get Started Feature” that toggle the Get Started tab
  • Added new option “AAM Cron Job” that enables/disables the internal AAM cron job
  • Added Get Started tab with some basic introduction to AAM plugin
  • Added ability to set “hard” user login time
  • Added ability to sort posts and terms list by title
  • Enhanced JWT authentication with ability to set also cookie that contains JWT token or define signing algorithm
  • Refactored Metaboxes & Widget feature so initialization process is handled with client side
  • Refactored Admin Toolbar feature so initialization process is handled with client side
  • Improved the Post & Terms feature by enabling to manage more post types out-of-box
  • Improved the Import/Export feature that eliminates issues with incompatible AAM versions
  • Refactored internal implementation to make it compatible with strict and secure environments like WordPress VIP


  • Fixed the bug that was causing an error with legacy “teaser” data
  • Fixed the bug with aam_manage_admin_toolbar capability been named incorrectly
  • Clearing all AAM settings when plugin is uninstalled
  • Highlighted post, term or type that has explicit access settings defined on Posts & Terms tab
  • Improved JWT authentication feature to allow use it for stand-alone embedded to WP apps


  • Fixed the bug reported by Doug Davis where newly created posts get locked if default access settings are defined
  • Fixed the bug with post visibility when /%category%/%postname%/ permalink is defined
  • Fixed the but with default category not been selected when redefined with ConfigPress
  • Improved AAM performance by caching post visibility results


  • Fixed bug with Api Access Control option that when disabled, still denies API Routes
  • Fixed bug when RESTful or XML-RPC disabled but endpoints still listed on API Routes
  • Fixed bug with Secure Login for themes that are not build with jQuery support
  • Fixed bug with posts not been filtered during search in few post types
  • Added ability to manage Admin Toolbar items
  • Added ability to manage premium licenses so now user can transfer license anytime
  • Moved security options (brute force lockout, login timeout etc) to stand-alone Security tab
  • Improved UI for the ACCESS EXPIRATION option on Posts & Terms tab
  • Improved UI for defining temporary user account timespan
  • Removed deprecated “Check Post Visibility” option


  • Fixed bug with post LIST & LIST TO OTHERS when access is set to term in odd order
  • Fixed bug that potentially did not filter posts during search
  • Added notification to the UI that extension folder does not exist or is not writable
  • Added XML-RPC endpoint control
  • Added ability to filter list of users by roles on the Users/Roles Manager panel


  • Fixed incompatibility issue with plugins that use “plugins_loaded” hook for post manipulations
  • Fixed the bug with AAM_Api_Rest_Resource_User
  • Fixed issues with ConfigPress settings compatibility between versions
  • Fixed the issues with infinite loop when access denied redirect is not configured correctly
  • Fixed issue with post filtering that disregards Backend/Frotent/API Access Control settings
  • Fixed bug with login widget labels
  • Added more information about parent terms & posts to the Post & Terms list
  • Added additional widget that lists of AAM licenses on the Extensions tab
  • Added fallback secret key for jwt token generator
  • Added ability to filter out widgets from the Appearance->Widgets screen


  • Fixed couple bugs with secure login widget rendering
  • Fixed the bug with AAM UI refresh triggered by aam extensions
  • Fixed the bug with send remote request and array of cookies
  • Added ability to hide login navigations links in the secure login widget with feature.secureLogin.ui.showNav configPress option
  • Added new custom capability “manage_same_user_level”


  • Fixed the bug that triggers PHP warnings when blocked user is trying to login
  • Fixed the bug with get current post method in the core API
  • WARNING Experimental approach! to the post access that enormously improve AAM performance
  • Added custom capability “edit_permalink” that control ability to edit post permalink


  • Fixed bug with deprecated cache object to keep it backward compatible
  • Fixed bug with teaser message on none latin alphabet
  • Improved REDIRECT functionality for Posts & Terms feature
  • Added finally singe point API (AAM::api method)
  • Added “Single Session” option to the Secure Login widget
  • Added more localization string to the AAM *.po file
  • Standardized AAM core settings names
  • Standardized REST API error codes


  • Fixed the bug with ConfigPress settings when array is defined
  • Fixed the bug with jwt authentication
  • Fixed the bug with infinite logout loop when user is locked
  • Refactored internal functionality to make it fully compatible with WP REST API
  • Split Posts & Pages access control on Backend, Frontend and API sections
  • Cleaned up posts and pages access settings
  • Refactored internal AAM cache to make it more flexible and faster
  • Added “API Access Control” option
  • Added ability to change user role after certain period of time
  • Removed ability to lock Dashboard menu


  • Fixed bug with REST API Routes list
  • Improved REST API response messages
  • Added support for WordPress RESTful API for posts, categories, comments and users.


  • Dropped support for WordPress versions 3.x. Min supported version is 4.0
  • Fixed bug with Admin Menu access control to Posts list
  • Fixed bug in AAM Core API for get plugins data call
  • Fixed bug with visitors cache auto-flush
  • Minor improvements to the AAM UI


  • Fixed the bug with JWT authentication
  • Added the ability to enable/disable XML-RPC
  • Added the ability to enable/disable REST API
  • Added the ability to manage access to the individual REST API endpoints


  • Fixed bug with Linux incompatibility


  • Fixed the bug with user lock functionality
  • Dropped support for PHP 5.2.x version. Minimum required version is 5.3.0
  • Merged ConfigPress extension to the core
  • Added JWT Authentication
  • Added Register link to the Secure Login Widget


  • Fixed the issue with Multisite Network notification
  • Fixed the minor bug with login message for “Redirect to login form”
  • Deleted redundant AAM_Core_Log class
  • Improved and refactored AAM Core Login functionality for upcoming REST API control extension


  • Fixed sever minor bugs reported by users
  • Added free social login extension (alpha version undocumented)
  • Added ability to create a temporary user account
  • Moved all free extension to the Github repository


  • Fixed the bug to keep AAM compatible with older WP version


  • Fixed the bug that is caused by other plugins not using core filters correctly
  • Hiding Dashboard and Edit My Profile links if user does not have access to them


  • Fixed several minor PHP errors caused by legacy PHP versions and corrupted data
  • Another boost to the AAM performance
  • Normalized few AAM core filters and actions


  • Enhanced Admin Menu feature
  • Extended AAM API. Preparing it for developers to use.


  • Fixed bug with caching. Significantly improved speed.
  • Fixed incompatibility issue with websites that have corrupted role list.
  • Fixed bug with role expiration timer when “Manage Backend Access” option is off.
  • Fixed incompatibility issue with plugins that use “the_title” filter.
  • Fixed bug with extension status
  • Removed registration step during plugin activation.


  • Fixed bug with LIST option
  • Fixed bug with incompatible PHP 5.3 or lower


  • Fixed bug with admin menu reported by Andrew
  • Fixed possible bug with theTitle filter
  • Fixed bug with custom HTML message for the access denied redirect rule
  • Fixed bug with ACCESS EXPIRATION option for Posts & Pages
  • Fixed bug with Multinetwork setup when super admin is not able to add new users
  • Fixed bug with extension statuses
  • Removed support for integration with ConfigPress plugin. Use ConfigPress extension instead
  • Added localization strings for Login widget & shortcode


  • Fixed bug with extension updates status
  • Fixed bug in post core handling caused by incompatibility with unknown plugin
  • Improved UI notification with more insides about the issue


  • Added ACCESS COUNTER option to Posts & Pages
  • Added premium MONETIZE option to Posts & Pages
  • Added ability to turn off “Secure Login” feature
  • Added ability to toggle extension status (active/inactive)
  • Added ability for AAM to filter out Admin Top Bar based on restricted admin menus
  • Deprecated AAM Role Filter extension and merged it to the AAM core
  • Deprecated AAM Payment extension and merged it with AAM E-Commerce extension
  • Deprecated ConfigPress options that manage access to AAM UI. All is based on capabilities from now.
  • Split UI to three areas: Access, Settings and Extensions
  • Fixed over 25+ reported bugs and discovered during internal refactoring
  • Removed deprecated “Security” feature. Replaced with Secure Login Widget
  • Removed deprecated “Teaser” feature. Replaced with Teaser Message per post base

  • Fixed compatibility with PHP 5.3 or lower

  • Fixed the bug with media access
  • Improved UI


  • Improved user experience with AAM UI
  • Removed Welcome message
  • Fixed bug with media access
  • Added filter for AAM shordcodes so other plugins can hook to AAM
  • Optimized AAM javascript
  • Removed subscription box to reduce “UI noise” as more features are coming


  • Significantly improved Admin Menu access management
  • Filter AAM UI based on Backend/Frontend Access Control options


  • Simplified core implementation. First iteration to upcoming v5.0
  • Added ability to check for extension updates with “Check for Updates” button
  • Adjusted Admin Menu access control to cover none-standard menu definitions
  • Multiple improvements to the UI
  • Fixed bug with enter key not working with Login Widget
  • Improved cache implementation to cover scenario when user manually corrupted cache data
  • Fixed bug with utilities compatibility
  • Fixed bug with extended license key
  • Fixed bug with LIST and READ options checked at the same time that causes 404
  • Extended Import/Export feature to cover multisite network sync
  • Added ability to sync settings between multisite network


  • Fixed the bug with AAM media control for files with special characters
  • Added secure login widget and shortcode
  • Deprecated Security feature


  • Improved UI
  • Improved [aam] shortcode
  • Improved plugin activation experience


  • Fixed bug with Login Redirect duplicate settings saving
  • Added ability to hide license key with aam_display_license capability
  • Added ability to export/import AAM settings
  • Improved AAM UI
  • Added ability to restrict access to the Hope page
  • Added ability to manage access to frontend ajax calls with allow_ajax_calls cap


  • Added ability to control post_password_expires with post.password.expires config
  • Improved media access
  • Improved UI


  • Fixed the bug with Media access control reported by Antonius Hegyes
  • Fixed the bug with post access properties preview
  • Fixed the bug with permanent redirects cached by some browsers
  • Fixed the bug with PasswordHash fatal error
  • Added ability to define teaser message for an individual post or category
  • Deprecated Content Teaser tab (will be removed in AAM 5.0)
  • Extended [aam context=”content”] shortcode to filter content based on IP address
  • Added ability to set time expiration for roles


  • Added ability to hide admin notification with show_admin_notices capability
  • Added ability to subscribe to the AAM updates
  • Updated refund policy term


  • Improved Utilities tab
  • Fixed bug with post search and archive pages
  • Updated localization source


  • Fixed the bug with Posts & Pages pagination feature
  • Fixed the bug with Media access control
  • Improved UI
  • Added Welcome email message to every new AAM installation


  • Fixed the PHP bug reported by CodePinch service
  • Fixed the bug with Posts & Pages redirect URL
  • Fixed the bug related to extensions update status
  • Optimized cron procedure for AAM maintenance needs
  • Added ability to restore default capabilities for users
  • Move AAM User Activity to the free extension suite
  • Introduced Development Package for unlimited number of sites


  • Significantly improved the ability to manage access to AAM interface
  • Added new group of capabilities AAM Interface
  • Optimized Posts & Pages UI feature for extra large amount of records
  • BIGGEST DEAL! From now no more 10 posts limit. It is unlimited!
  • Fixed bug with custom HTML message for access denied redirect
  • Added option to redirect to login page and back after login when access is denied
  • Significantly improved media access control
  • Improved CSS to keep to suppress “bad behavior” from other plugins and themes


  • Added ability to logout automatically locked user
  • Updated capability feature to allow set custom capabilities on user level
  • Improved Posts & Pages feature for large number of posts
  • Few minor bug fixed reported by CodePinch


  • Fixed bug with user capabilities
  • Fixed bug with post access settings not being checked even when they are
  • Added ability to manage hidden post types
  • Added ability to manage number of analyzed posts with get_post_limit config


  • Fixed internal bug with custom post type LIST control
  • Fixed PHP errors in Access Manager metabox
  • Fixed bug with customize.php not being able to restrict
  • Fixed bug with losing AAM licenses when Clearing all AAM settings
  • Fixed bug with not being able to turn off Access Manager metabox rendering
  • Fixed bug with access denied default redirect
  • Fixed bug with cached javascript library
  • Fixed bug with role hierarchy
  • Improved media access control
  • Improved Double Authentication mechanism
  • Improved AAM caching mechanism
  • Minor UI improvements
  • Added ability to define logout redirect
  • Added Access Expiration option to Posts & Pages
  • Added ability to turn off post LIST check for performance reasons
  • Added ability to add default media image instead of restricted
  • Added ability to remove Access link under posts, users title on the list page


  • Fixed few minor bugs reported by users
  • Refactored Extensions functionality
  • Added fully functioning Access Manager Widget for both Posts and Categories
  • Updated documentation
  • Significantly improved performance


  • Adjusted code to support low memory servers


  • Fixed bug with frontend page redirect
  • Significantly improved AAM speed and caching
  • Added 404 redirect to the Default Settings


  • Minor bug fixes


  • Fixed the bug with SSL when WordPress is not configured properly
  • Added AAM User Activity extension
  • Added ability to track access denied events
  • Fixed the bug with internal AAM configurations
  • Fixed the bug with login hook when only one argument is passed
  • Fixed the bug with invalid argument is passed to password protected check


  • Fixed the bug with post list caching
  • Fixed the bug with Manage Access button
  • Added REDIRECT option to post access list
  • Added redirect to existing page for Backend tab on Access Denied Redirect
  • Improved caching mechanism


  • Fixed bug with Post & Pages UI
  • Added ability to define default category for any role or user


  • Added AAM IP Check extension
  • Improved Content filter shortcode to allow other shortcodes inside
  • Fixed bug for add/edit role with apostrophe
  • Fixed bug with custom Access Denied message
  • Fixed bug with data migration


  • Fixed bug with login redirect
  • Fixed minor bug with PHP Warnings on Utilities tab
  • Fixed post filtering bug
  • Updated login shortcode


  • Added link Access to category list
  • Added shortcode [aam] to manage access to the post’s content
  • Moved AAM Redirect extension to the basic AAM package
  • Moved AAM Login Redirect extension to the basic AAM package
  • Moved AAM Content Teaser extension to the basic AAM package
  • Set single password for any post or posts in any category or post type
  • Added two protection mechanism from login brute force attacks
  • Added double authentication mechanism
  • Few minor core bug fixings
  • Improved multisite support
  • Improved caching mechanism

  • Fixed bug with login redirect


  • General bug fixing and improvements
  • Added ability to setup access settings to all Users, Roles and Visitors
  • Added Login Redirect feature


  • Bug fixing
  • Implemented license check mechanism
  • Improved media access control
  • Added ConfigPress extension

  • Bug fixing
  • Simplified affiliate implementation

  • Minor bug fixes reported by CodePinch service


  • Bug fixing
  • Internal code improvements
  • Extended list of post & pages access options

  • Minor bug fix to cover uncommon scenario when user without role


  • Replaced AAM Post Filter extension with core option “Large Post Number Support”
  • Removed redundant HTML permalink support
  • Visually highlighted editing role or user is administrator
  • Hide restricted actions for roles and users on User/Role Panel
  • Minor UI improvements
  • Significant improvements to post & pages access inheritance mechanism
  • Optimized caching mechanism
  • Fixed bug with post frontend access


  • Fixed UI bug with role list
  • Fixed core bug with max user level
  • Fixed bug with CodePinch installation page
  • Added native user switch functionality


  • Fixed the bug with post access inheritance
  • Update CodePinch affiliate program


  • Optimized AAM UI to manage large amount of posts and categories
  • Improved Multisite support
  • Improved UI
  • Fixed bug with Extensions tab
  • Added ability to check for extension updates manually


  • Minor refactoring
  • UI improvements
  • Bug fixing


  • Added Clone Role feature
  • Added auto cache clearing on term or post update
  • Added init custom URL for metaboxes


  • Fixed bug related to Media Access Control
  • Fixed bug with cleaning user posts & pages cache after profile update


  • Added AAM Content Teaser extension
  • Added LIMIT option to Posts & Pages access forms to support Teaser feature
  • Bug fixing
  • Improved UI
  • Added ability to show/hide admin bar with show_admin_bar capability


  • Added AAM Role Hierarchy extension
  • Fixed bug with 404 page for frontend
  • Started CSS fixes for all known incompatible themes and plugins


  • Introduced Redirect feature
  • Added CodePinch widget
  • Added AAM Redirect extension
  • Added AAM Complete Package extension
  • Removed AAM Development extension
  • Removed setting Access Denied Handling from the Utilities tab


  • Bug fixing related to URL redirect
  • Added back deprecated ConfigPress class to keep compatability with old extensions
  • Fixed bug reported through CodePinch service


  • Added Media Access Control feature
  • Added Access Denied Handling feature
  • Improved core functionality


  • Improved access control for Posts & Pages
  • Introduced Access Manager metabox to Post edit screen
  • Added Access action to list of Posts and Pages
  • Improved UI
  • Deprecated Skeleton extension in favor to upcoming totally new concept
  • Fixed bug with metaboxes initialization when backend filtering is OFF


  • Fixed bug with post & pages access control
  • Added Extension version indicator


  • Fixed bug with visitor access control


  • Refactored backend UI implementation
  • Integrated Utilities extension to the core
  • Improved capability management functionality
  • Improved UI
  • Added caching mechanism to the core
  • Improved caching mechanism
  • Fixed few functional bugs


  • Improved UI
  • Completely protect Admin Menu if restricted
  • Tiny core refactoring
  • Rewrote UI descriptions


  • Quick fix for extensions ajax calls


  • Improved AAM security reported by James Golovich from Pritect
  • Extended core to allow manage access to AAM features via ConfigPress


  • Added show_screen_options capability support to control Screen Options Tab
  • Added show_help_tabs capability support to control Help Tabs
  • Added AAM Support


  • Fixed minor bug reporetd by WP Error Fix
  • Extended core functionality to support filter by author for Plus Package
  • Added Contact Us tab


  • Improved UI
  • Fixed the bug reported by WP Error Fix


  • Fixed bug with menu/metabox checkbox
  • Added extra hook to clear the user cache after profile update
  • Added drill-down button for Posts & Pages tab

  • One more minor issue


  • Fixed bug with default post settings
  • Filtering roles and capabilities form malicious code


  • Quick fix


  • Fixed potential bug with check user capability functionality
  • Added social links to the AAM page


  • Integrated User Switch with AAM
  • Fixed bugs reported by WP Error Fix
  • Removed intro message
  • Improved AAM speed
  • Updated AAM Utilities extension
  • Updated AAM Plus Package extension
  • Added new AAM Skeleton Extension for developers


  • Fixed bug reported by WP Error Fix when user’s first role does not exist
  • Fixed bug reported by WP Error Fix when roles has invalid capability set


  • Added ability to extend the AAM Utilities property list
  • Updated AAM Plus Package with ability to toggle the page categories feature
  • Added WP Error Fix promotion tab
  • Finalized and resolved all known issues


  • Extended AAM with few extra core filters and actions
  • Added role list sorting by name
  • Added WP Error Fix item to the extension list
  • Fixed the issue with language file


  • Fixed the warning issue with newly installed AAM instance


  • Fixed issue when server has security policy regarding file_get_content as URL
  • Added filters to support Edit/Delete caps with AAM Utilities extension
  • Updated AAM Utilities extension
  • Refactored extension list manager
  • Added AAM Role Filter extension
  • Added AAM Post Filter extension
  • Standardize the extension folder name


  • Wrapped all *.phtml files into condition to avoid crash on direct file access
  • Fixed bug with Visitor subject API
  • Added internal capability id to the list of capabilities
  • Fixed bug with strict standard notice
  • Fixed bug when extension after update still indicates that update is needed
  • Fixed bug when extensions were not able to load js & css on windows server
  • Updated AAM Utilities extension
  • Updated AAM Multisite extension


  • Improved the Metaboxes & Widget filtering on user level
  • Improved visual feedback for already installed extensions
  • Fixed the bug when posts and categories were filtered on the AAM page
  • Significantly improved the posts & pages inheritance mechanism
  • Updated and fixed bugs in AAM Plus Package and AAM Utilities
  • Improved AAM navigation during page reload
  • Removed Trash post access option. Now Delete option is the same
  • Added UI feedback on current posts, menu and metaboxes inheritance status
  • Updated AAM Multisite extension


  • Fixed bug with backend menu saving
  • Fixed bug with metaboxes & widgets saving
  • Fixed bug with WP_Filesystem when non-standard filesystem is used
  • Optimized Posts & Pages breadcrumb load


  • Fixed a bug with posts access within categories
  • Significantly improved the caching mechanism
  • Added mandatory notification if caching is not turned on
  • Added more help content


  • Fixed the bug with capability saving
  • Fixed the bug with capability drop-down menu
  • Made backend menu help is more clear
  • Added tooltips to some UI buttons


  • Brand new and much more intuitive user interface
  • Fully responsive design
  • Better, more reliable and faster core functionality
  • Completely new extension handler
  • Added “Manage Access” action to the list of user
  • Tested against WP 3.8 and PHP 5.2.17 versions


  • Added missing files from the previous commit.


  • Introduced AAM version 3 alpha


  • Small fix in core
  • Moved ConfigPress as stand-alone plugin. It is no longer a part of AAM
  • Styled the AAM notification message


  • AAM is changing the primary owner to VasylTech
  • Removed contextual help menu
  • Added notification about AAM v3


  • Tested and verified functionality on the latest WordPress release
  • Removed AAM Plus Package. Happy hours are over.


  • Fixed bugs reported by (@TheThree)
  • Improved CSS


  • Updated the extension list pricing
  • Updated AAM Plugin Manager


  • Improved ConfigPress security (thanks to Tom Adams from
  • Added ConfigPress new setting control_permalink


  • Fixed issue with Default acces to posts/pages for AAM Plus Package
  • Fixed issue with AAM Plugin Manager for lower PHP version


  • Simplified the Repository internal handling
  • Added Development License Support


  • Fixed issue with AAM Control Manage HTML
  • Fixed issue with __PHP_Incomplete_Class
  • Added AAM Plugin Manager Extension
  • Removed Deprecated ConfigPress Object from the core


  • Fixed bug with subject managing check
  • Fixed bug with update hook
  • Fixed issue with extension activation hook
  • Added AAM Security Feature. First iteration
  • Improved CSS


  • Fixed bug with user inheritance
  • Fixed bug with user restore default settings
  • Fixed bug with installed extension detection
  • Improved core extension handling
  • Improved subject inheritance mechanism
  • Removed deprecated ConfigPress Tutorial
  • Optimized CSS
  • Regenerated translation pot file


  • Fixed issue with AAM Plus Package and Multisite
  • Introduced Development License
  • Minor internal adjustment for AAM Development Community


  • Added Norwegian language Norwegian (by Christer Berg Johannesen)
  • Localize the default Roles
  • Regenerated .pod file
  • Added AAM Media Manager Extension
  • Added AAM Content Manager Extension
  • Standardized Extension Modules
  • Fixed issue with Media list


  • Added Persian translation by Ghaem Omidi
  • Added Inherit Capabilities From Role drop-down on Add New Role Dialog
  • Small Cosmetic CSS changes


  • Fixed issue with jQuery UI Tooltip Widget
  • Added AAM Warning Panel
  • Added Event Log Feature
  • Moved ConfigPress to separate Page (refactored internal handling)
  • Reverted back the SSL handling
  • Added Post Delete feature
  • Added Post’s Restore Default Restrictions feature
  • Added ConfigPress Extension turn on/off setting
  • Russian translation by (Maxim Kernozhitskiy
  • Removed Migration possibility
  • Refactored AAM Core Console model
  • Increased the number of saved restriction for basic version
  • Simplified Undo feature


  • Fixed issue with Admin Menu restrictions (thanks to MikeB2B)
  • Added Polish Translation
  • Fixed issue with Widgets restriction
  • Improved internal User & Role handling
  • Implemented caching mechanism
  • Extended Update mechanism (remove the AAM cache after update)
  • Added New ConfigPress setting aam.caching (by default is FALSE)
  • Improved Metabox & Widgets filtering mechanism
  • Added French Translation (by Moskito7)
  • Added “My Feature” Tab
  • Regenerated .pot file


  • New UI
  • Robust and completely new core functionality
  • Over 3 dozen of bug fixed and improvement during 3 alpha & beta versions
  • Improved Update mechanism


  • Fixed issue with comment editing
  • Implemented JavaScript error catching