gregkaufmanwp
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Edit Pages – Limit to owner?Shirkee, you are entirely accurate. This basic functionality that was inherent to the 1.5.x Strayhorn line is no longer the case in WP 2.0.
Evidently, this may be a core modification for WP 2.1, but that isn’t due out for a long while. Until then, I may be stuck trusting that users won’t modify others’ pages, which is clearly a huge backend security weakness in WP 2.0, as I am using it as a CMS.
Forum: Fixing WordPress
In reply to: Edit Pages – Limit to owner?This is a major shortcoming of WP 2.0, in terms of being able to use WordPress as a CMS. This access control functionality was available in previous versions of WordPress.
I don’t think that changes to the plugin will be able to address this underlying flaw in the Roles and Capabilities system of WP 2.0.
It doesn’t seem like it would have been a big deal during WP 2.0 development to have created a capability “edit_others_pages” similar to edit_others_posts. I am unable to use WP 2.0 as a CMS without this basic access control mechanism.
Forum: Fixing WordPress
In reply to: Edit Pages – Limit to owner?I said that backwards…
I meant I have granted the Capability edit_pages to a user with a Role of Author. I only want the user to be able to edit pages they own.
Forum: Fixing WordPress
In reply to: Edit Pages – Limit to owner?I have the Role Manager plugin installed. I used it to grant the Role edit_pages to a user with the Capability level of Author. This evidently is now allowing that user to edit all pages, including those with different Page Owners. I need to limit this user to only have edit access to the pages the Admin defines as them owning.
Thoughts?