Support » Plugin: WP Data Access » Restricting access to backoffice functions

  • Resolved contactovisualpt

    (@contactovisualpt)


    I found your plugin after searching a way to edit custom tables in the backoffice, and presenting in the frontend in a easy to navigate way. Your plugin is amazing easy and very complete. Love it.

    The problem is, there is to many options in the backoffice that could be dangerous if used without knowing about the deep capacities accessing database.
    I would like to restrict access to the site administrators or managers to only browse, edit, insert or delete rows in two tables, nothing more.
    I found a way to show only the two tables in the Explorer, but there are options I would like to hide from managers. For example, not allow to manage tables. Only Explore.
    And maybe restricting some more of the options.

    My goal would be to have either a SuperAdmin, with full access, and all other roles with limited options. Could also be a specific user.
    Is it possible?

    Nelson / Contacto Visual

Viewing 7 replies - 1 through 7 (of 7 total)
  • Thread Starter contactovisualpt

    (@contactovisualpt)

    If nothing else, I can use CSS to hide those options I do not want managers to see.
    Of course it will also hide them from me, but if no other solution, will do. And I can temporary remove the custom CSS if I need to access some of the options.
    But if the plugin has those features, would be better.

    Nelson / Contacto Visual

    Plugin Author Passionate Programmer Peter

    (@peterschulznl)

    Hi Nelson,

    Thank you for your compliment! 😊

    >>> My goal would be to have either a SuperAdmin, with full access, and
    >>> all other roles with limited options. Could also be a specific user.
    >>> Is it possible?

    What if we would think the other way round? Usually the administrator has access to all WordPress features. I like to keep it this way, as this is how most WordPress installations are managed. But we could allow non admin users to have limited access to specific plugin features only. Access could be user or role based.

    This is already available for the Data Publisher and Dashboards. We could handle access to other features similarly. Would that help? Or need these users all be administrators anyway?

    Thanks,
    Peter

    Thread Starter contactovisualpt

    (@contactovisualpt)

    Hi Peter

    Good morning and good 2022 year

    Yes, that was my first thought, when I saw there is a Roles tab in the settings. But I am a sites developer, and I have to hang over the site owner the backoffice access when the site is ready to go live. He already has a user account, with administrator level. There are many other site options, theme and plugin, that requires that level to manage. To follow that idea, I would have to lower the site owner level. I think he would not like that much…
    I know he (or his employees) will only touch what I tell him to, and overall, there is no problems. The only one I saw that could be really dangerous, is the Manage with access to table features such as Truncate table, which would clear all content. If you know what that is (truncate table), fine, but if not…
    Other options are too technical and I can easy explain not to touch them.
    I already limited listing the 2 tables in the Explorer I need him to edit/add/delete content, so I think it will work.

    In resume, you don’t need to make any changes on your excellent plugin. I will use CSS to hide the Manage icon, and that will solve my problem.

    Nelson / Contacto Visual

    Plugin Author Passionate Programmer Peter

    (@peterschulznl)

    Hi Nelson,

    Thanks for your explaination! If I understand your feature request correctly, it comes down to configuring the Manage link in the Data Explorer? Is that correct?

    I can add an extra option to disabled that feature. That is not a big issue. There are other features that can be disabled|enabled as well, I just never thought about the manage link.

    Would it help if you could disable the manage link?

    Thanks,
    Peter

    Thread Starter contactovisualpt

    (@contactovisualpt)

    Good morning

    If I understand your feature request correctly, it comes down to configuring the Manage link in the Data Explorer? Is that correct?

    Yes. Exactly.

    I can add an extra option to disabled that feature. That is not a big issue. There are other features that can be disabled|enabled as well, I just never thought about the manage link.

    That would be a nice and extra safe feature, easy to use. In the Settings, an option to hide the Manage link in the Data Explorer.
    Glad to give you a idea to make the plugin even better 🙂

    Nelson / Contacto Visual

    Plugin Author Passionate Programmer Peter

    (@peterschulznl)

    Hi Nelson,

    I added your feature request to my to do list and will try to add it with the next update. I’ll let you know.

    Thank you for your review! 🙂

    Best regards,
    Peter

    Plugin Author Passionate Programmer Peter

    (@peterschulznl)

    Hi Nelson,

    I released an update last Monday. It contains your feature request. Please follow the link below to learn how to use this new feature.

    https://wpdataaccess.com/2022/01/16/hide-data-explorer-manage-link/

    Thank you for your contribution,
    Peter

Viewing 7 replies - 1 through 7 (of 7 total)
  • You must be logged in to reply to this topic.