=== PublishPress Capabilities - User Role Editor, Access Permissions, Admin Menus ===
Contributors: publishpress, kevinB, stevejburge, andergmartins, olatechpro
Author: PublishPress
Author URI: https://publishpress.com
Tags: capabilities, permissions, admin menus, user roles, user role editor
Requires at least: 5.5
Requires PHP: 7.2.5
Tested up to: 6.6
Stable tag: 2.14.0
License: GPLv3
License URI: https://www.gnu.org/licenses/gpl-3.0.html
PublishPress Capabilities is the access control plugin. You can manage permissions, user roles, admin menus and more.
== Description ==
PublishPress Capabilities is the access control plugin for WordPress. You can control all the capabilities and permissions on your WordPress site. We built this user role editor plugin so you have an EASY and POWERFUL way to manage users.
You can use PublishPress Capabilities **manage all your WordPress user roles**, from Administrators and Editors to Authors, Contributors, Subscribers and custom roles. Each use role can have the exact capabilities that your site needs.
PublishPress Capabilities can clean up your post editing screen, admin area, and even the Profile screen. You can decide what authors see when they're writing posts. You can **hide any feature on the Gutenberg or Classic Editor screens**. You can remove items in the WordPress dashboard and inside user accounts screens.
The Pro version of PublishPress Capabilities has many extra features, including the ability to control admin menu links and frontend menu links.
## PublishPress Capabilities Pro ##
> Upgrade to Capabilities Pro
This plugin is the free version of PublishPress Capabilities. The Pro version of Capabilities has all the features you need to control permissions for your WordPress users. With Capabilities Pro you can manage access to posts, pages, media and custom post types. Click here to control access to your WordPress site with Capabilities Pro!
## The Key Features of PublishPress Capabilities ##
1. **Roles**: You can edit, create, duplicate any WordPress user role.
2. **Capabilities**: You can control all WordPress and plugin capabilities.
3. **Editor Features**: You decide what users see when they're writing posts in Gutenberg or the Classic Editor.
4. **Admin Features**: You can remove items from the WordPress admin, toolbar, and even dashboard widgets.
5. **Frontend Features**: This feature allows you to modify the site's frontend by hiding or adding CSS.
5. **Profile Features**: You can hide features for users in the "Profile" screen.
7. **Admin Menus (Pro version)**: You can stop users from accessing any admin menu link.
8. **Nav Menus**: You can restrict access to navigation menus by user role, or logged in status.
## Feature 1. Roles##
PublishPress Capabilities gives you detailed control over all the permission levels on your WordPress site. You can edit user roles on your site, from Administrator and Editor to Contributor and Subscriber.
With PublishPress Capabilities you can create or copy any existing WordPress user role. These roles can be customized in exactly the same way as the default WordPress roles. These new roles can be added to single sites or to an entire multisite network.
[Click here to see how to manage user roles](https://publishpress.com/knowledge-base/the-roles-screen/).
## Feature 2. Capabilities ##
With the Capabilities plugin, you can choose who can Publish, Read, Edit and Delete content. You can choose permissions for posts, pages, custom content types, categories, tags, and more.
[Click here to see how to manage capabilities](https://publishpress.com/knowledge-base/permissions-start/).
Many WordPress users have sites with custom post types. This can be done using custom code, a theme, or with a plugin. No matter how your post type is created, PublishPress Capabilities lets you enforce and assign distinct capabilities for your post type.
[Click here to see how to control post type permissions](https://publishpress.com/knowledge-base/custom-post-types-capability/).
PublishPress Capabilities enables you to add extra permissions to the taxonomies on your site. This feature includes the default Categories and Tags, but also applies to other taxonomies. For example, in WooCommerce you can apply custom permissions to Product categories, Product tags, and Product shipping classes. You can enforce and assign "Manage", "Edit" and "Assign" distinct capabilities for all your taxonomies.
[Click here to learn about taxonomy permissions](https://publishpress.com/knowledge-base/taxonomy-specific-capabilities/).
## Feature 3. Editor Features ##
PublishPress Capabilities has an option called "Editor Features" allows you to clean up the post editing screen. You can decide what users see when they're writing posts. You can hide anything on the Gutenberg or Classic Editor screens. You can hide boxes inside the sidebadd such Tags, Categories, or Excerpt. You can the "Publish" button. You can even hide the post title, body, or permalink. This is a great alternative to plugins such as Adminimize.
[Click here to learn about hiding editor features](https://publishpress.com/knowledge-base/editor-features/).
WordPress has a feature called “metaboxes”. This is a strange name, but you have seen them often if you use WordPress. When a user edits a post, the edit screen has several default boxes: Status & visibility, Featured image, Categories, Tags, etc. These boxes are metaboxes. Plugins can add also add their own metaboxes. The Pro version of the PublishPress Capabilities plugin allows you to hide metaboxes for specific user roles.
[Click here to learn about hiding metaboxes](https://publishpress.com/knowledge-base/hide-metaboxes-in-wordpress-posts/).
## Feature 4. Admin Features ##
“Admin Features” allows you to hide features in the WordPress admin area and toolbar. You can decide what users see in your WordPress dashboard. You can use this option to hide all the links in the toolbar including "About WordPress", "Visit Site" and more. You can also hide dashboard widgets such as "At a Glance", "Quick Draft", and "WordPress Events and News".
[Click here to learn about removing toolbar items and dashboard widgets](https://publishpress.com/knowledge-base/how-to-use-admin-features/).
## Feature 5. Frontend Features ##
The "Frontend Features" screen allows you to modify the features that show on the frontend of your website. You can choose to hide IDs or classes, add CSS styles, or add body classes. All of these changes can be targeted to specific user roles.
[Click here to learn about frontend changes](https://publishpress.com/knowledge-base/frontend-features/).
## Feature 6. Profile Features ##
“Profile Features” allows you to hide features in the "Profile" screen. You can decide what users see in their accounts. This “Profile” area is used as a dumping ground for the settings of many different plugins.
[Click here to learn about the Profile Features option](https://publishpress.com/knowledge-base/profile-features/).
## Feature 7. WordPress Admin Menu Restrictions (Pro version) ##
With PublishPress Capabilities you can restrict access to admin menu screens by user roles. This is useful because many plugin do not have any way to control who can access their admin screens.
[Click to see how to block Admin menu access](https://publishpress.com/knowledge-base/admin-menus/).
## Feature 8. Nav Menu Restrictions ##
PublishPress Capabilities enables you to restrict access to navigation menus by roles, logged in and logged out users. This is useful because a default WordPress site does not give you way to control the visibility of your links.
[Click to see how to block frontend menu access](https://publishpress.com/knowledge-base/nav-menus/).
## PublishPress Capabilities is Safe to Use ##
PublishPress Capabilities is completely **safe to use**. Every time you change your site's permissions, this plugin will take a backup that you can restore if anything goes wrong. You can use these backups to migrate your roles and permissions from one site to another.
This security feature is also very helpful if you want to test out changes on your site, or if you've installed a new plugin that has changed your site's permissions.
Every time you change your permissions, the PublishPress Capabilities plugin will now automatically create a backup. If you make a mistake, go to the "Backup" menu link and you'll be able to roll back to a previous version.
[Click here to see how to backup permissions](https://publishpress.com/knowledge-base/backup-restore-permissions/).
## Support for Media Library Permissions ##
PublishPress Capabilities enables you to decide who can upload, edit and delete files from your site's Media Library. By default, only Administrators are able to delete files in your Media Library. Subscribers and Contributors are not even allowed to upload files. You can customize these permissions for the Media Library and also the Featured Image box.
[Click here to learn about Media Library permissions](https://publishpress.com/knowledge-base/control-media-library-access/).
## Support for WooCommerce Permissions ##
We mentioned earlier that PublishPress Capabilities has special support for WooCommerce taxonomies. This is true for the rest of WooCommerce also. With PublishPress Capabilities you can control permissions for WooCommerce products, orders and coupons.
[Click here to learn about WooCommerce permissions](https://publishpress.com/knowledge-base/woocommerce-permissons/).
## Support for WordPress Multisite ##
PublishPress Capabilities allows you to control permissions on a single site or across your whole network. Every time you update permissions in PublishPress Capabilities, you can choose to sync those changes across your multisite network.
[Click here to learn about multisite permissions](https://publishpress.com/knowledge-base/multisite-network/).
## User Testing / User Switching ##
If you run a WordPress website which allows users to log in, you probably spend a lot of time answering account questions or solving website bugs for your users. Site administrators often have to browse their site and see exactly what the user sees. They need to test the user's account without resetting their password. This is possible with PublishPress Capabilities.
[Click here to learn about user testing](https://publishpress.com/knowledge-base/user-testing/).
## Join PublishPress and get the Pro plugins ##
The Pro versions of the PublishPress plugins are well worth your investment. The Pro versions have extra features and faster support. [Click here to join PublishPress](https://publishpress.com/pricing/).
Join PublishPress and you'll get access to these nine Pro plugins:
* [PublishPress Authors Pro](https://publishpress.com/authors) allows you to add multiple authors and guest authors to WordPress posts.
* [PublishPress Blocks Pro](https://publishpress.com/blocks) has everything you need to build professional websites with the WordPress block editor.
* [PublishPress Capabilities Pro](https://publishpress.com/capabilities) is the plugin to manage your WordPress user roles, permissions, and capabilities.
* [PublishPress Checklists Pro](https://publishpress.com/checklists) enables you to define tasks that must be completed before content is published.
* [PublishPress Future Pro](https://publishpress.com/future) is the plugin for scheduling changes to your posts.
* [PublishPress Permissions Pro](https://publishpress.com/permissions) is the plugin for restricted content and advanced WordPress permissions.
* [PublishPress Planner Pro](https://publishpress.com/publishpress) is the plugin for managing and scheduling WordPress content.
* [PublishPress Revisions Pro](https://publishpress.com/revisions) allows you to update your published pages with teamwork and precision.
* [PublishPress Series Pro](https://publishpress.com/series) enables you to group content together into a series
Together, these plugins are a suite of powerful publishing tools for WordPress. If you need to create a professional workflow in WordPress, with moderation, revisions, permissions and more... then you should try PublishPress.
## Bug Reports ##
Bug reports for PublishPress Capabilities are welcomed in our [repository on GitHub](https://github.com/publishpress/publishpress-capabilities). Please note that GitHub is not a support forum, and that issues that aren't properly qualified as bugs will be closed.
## Follow the PublishPress team ##
Follow PublishPress on [Facebook](https://www.facebook.com/publishpress), [Twitter](https://www.twitter.com/publishpresscom) and [YouTube](https://www.youtube.com/publishpress).
== Frequently Asked Questions ==
= How do I Backup and Restore WordPress User Permissions? =
PublishPress Capabilities is a user role editor that offers you the ability to backup and restore your WordPress user permissions. This feature is very helpful if you want to test out changes on your site, or you've installed a new plugin that has changed your site's permissions.
Changing permissions in WordPress can be a tricky task. It's possible to lock yourself or others out of some important features. So, we've built a way to keep your site safe.
Every time you change your permissions, the PublishPress Capabilities plugin will automatically create a backup. If you make a mistake, go to the “Backup” menu link and click the “Restore” tab. Here you can browse through the most recent 20 automatic backups. The plugin also saves a backup from you first installed PublishPress Capabilities. And you can click the “Backup” tab to manually create backups.
Click the yellow “Restore Selected Roles” button and you'll be able to roll back to a previous version.
Whenever you choose a backup, the plugin will show all the permissions in that backup. Important changes in permissions are highlighted:
* A green role title means the role does not exist in your current set.
* A green capability is set in the role backup, but not the current role.
* A stuck-through capability is set in the current role, but not the role backup.
= How Do I Restore Permissions to the WordPress Defaults? =
If you really need to clean up and refresh your site, PublishPress Capabilities does allow you to restore the default WordPress permissions. Go to Capabilities > Backup and dlick the “Reset Roles” tab. Before you take next step, make sure to read this warning:
“WARNING: This will delete and/or modify stored role definitions. If you have installed any plugin that adds new roles or capabilities, these will be lost. It is recommended to use this only as a last resort!”
If you want to proceed, click the “Reset to WordPress defaults” link. PublishPress Capabilities will ask you if you're really sure you want to do this. Click “OK” to continue. Once the process is complete, you'll see the message, “Roles and Capabilities reset to WordPress defaults”.
= How Do I Control WooCommerce Menu Link Permissions? =
WooCommerce is the most popular WordPress eCommerce plugin. You can create beautiful store with themes customized to your brand and industry and you'll find 1,000's of tools and popular integrations.
The PublishPress Capabilities plugin enables you to control permissions for the WooCommerce plugin and also WooCommerce user roles. You can use this plugin as a WooCommerce user role editor. Go to the “Capabilities” link in your WordPress admin menu. In the main area of your screen will see options for WooCommerce Products, Orders and Coupons. These permissions cover editing, deleting and reading.
In the right sidebar, you can also enable permissions for WooCommerce taxonomies. Check the boxes for Product categories, Product tags, and Product shipping classes. After you check those boxes and refresh your screen, you will see Manager, Edit, Assign and Delete options for Product categories, Product tags, and Product shipping classes.
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in WooCommerce. This is useful because WooCommerce has very limited options for controlling who can access the admin screens. When you first install WooCommerce, you'll see four top-level menu links, plus sub-menus. All of these links are available to users in the Administrator and Shop Manager roles:
* WooCommerce
* Products
* Analytics
* Marketing
It is possible to control who can access these links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. n the top-left corner of this screen, choose the role that you want to edit. Scroll down and you can enter a red X for any menu link that you don't want users in that role to access. This is a great way to customize a WooCommerce role such as Shop Manager. This approach works for the core WooCommerce plugin and can also be used for WooCommerce add-on plugins such as WooCommerce Subscriptions, WooCommerce Shipping, and WooCommerce Bookings. PublishPress Capabilities can help you manage WooCommerce permissisons.
[Click here to learn about WooCommerce menu permissions](https://publishpress.com/knowledge-base/control-access-woocommerce-admin-menus/).
= How Do I Control Contact Form 7 Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the Contact Form 7 plugin. This is useful because Contact Form 7 has very limited options for controlling who can access the admin screens.
Contact Form 7 is the most popular contact form plugin for WordPress. You can manage multiple contact forms, and easily customize each form and the emails it sends. Contact Form 7 supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering and much more.
When you first install Contact Form 7, you'll see one top-level menu link, plus three sub-menus. All of these links are available to users in the Administrator role:
* Contact Forms
* Add New
* Integration
It is possible to control who can access these links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. Scroll down and you can enter a red X for any menu link that you don't want users in the Editor role to access. This approach works for the core Contact Form 7 plugin and can also be used for add-on plugins such as Flamingo which records entries for Contact Form 7 forms.
[Click here to learn about Contact Form 7 menu permissions](https://publishpress.com/knowledge-base/control-access-contact-form-7-admin-menus/).
= How Do I Control Yoast SEO User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the Yoast SEO plugin. This is useful because Yoast SEO has limited options for managing who can access the admin screens and important features.
Yoast SEO is the most popular WordPress SEO plugin and contains everything that you need to manage your SEO. Yoast SEO is packed full of feature that help search engines to find and understand your website.
When you first install Yoast SEO, you'll see one top-level menu link, plus at least 5 sub-menus:
* General
* Search Appearance
* Social
* Tools
* Premium
It is possible to control who can access these Yoast SEO links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict Yoast SEO access for the “SEO Manager” role. Scroll down and you can enter a red X for any menu link that you don't want users in the SEO Manager role to access.
This approach works for the core Yoast SEO plugin and can also be used for add-on plugins such as Local SEO, WooCommerce SEO, Google News, and more.
[Click here to learn about Yoast SEO menu permissions](https://publishpress.com/knowledge-base/control-access-yoast-seo-admin-menus/).
= How Do I Control Elementor User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the Elementor plugin. This is useful because Elementor has limited options for managing who can access the admin screens and important features.
The Elementor plugin is one of the most popular drag-and-drop page builders. With Elementor, you’re editing the site live, and simultaneously see exactly how it looks like. Elementor designs are full-responsive and come with over 40 powerful widgets. PublishPress Capabilities can help you manage Elementor permissisons.
When you first install Elementor, you'll see one top-level menu link, plus at least 9 sub-menus:
* Settings
* Role Manager
* Tools
* System Info
* Getting Started
* Get Help
* Custom Fonts
* Custom Icons
* Go Pro
It is possible to control who can access Elementor menu links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area.
In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict Elementor access for the “Administrator” role. If you do this, I would recommend making a copy of the Administrator role so that one role still has full Elementor access. Scroll down and you can enter a red X for any Elementor menu link that you don't want users in the Administrator role to access.
This approach works for the core Elementor plugin and can also be used for add-on plugins such as Essential Addons, Premium Addons, and others.
[Click here to learn about Elementor menu permissions](https://publishpress.com/knowledge-base/control-access-elementor-admin-menus/).
= How Do I Control Jetpack User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the Jetpack plugin. This is useful because Jetpack has limited options for managing who can access the admin screens and important features.
Jetpack is a plugin built by Automattic, the company behind WordPress.com. This plugin offers many different services including backups, spam blocking, analytics, malware scans, contact forms, and more. PublishPress Capabilities can help you manage Jetpack permissisons.
When you first install the Jetpack plugin, you'll see one top-level menu link, plus at least 2 sub-menus:
* Dashboard
* Settings
It is possible to control who can access these Jetpack links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict Jetpack access for the “Administrator” role. If you do this, I would recommend making a copy of the Administrator role so that one role still has full Jetpack access. Scroll down and you can enter a red X for any Jetpack menu link that you don't want users in the Administrator role to access. Now when an Administrator logs in to your site, they will not be able to see the Jetpack menu links that you have blocked. This approach works for the core Jetpack plugin and can also be used for add-on plugins such as Jetpack CRM and others.
[Click here to learn about Jetpack permissions](https://publishpress.com/knowledge-base/control-access-jetpack-admin-menus/).
= How Do I Control WPForms User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the WP Forms plugin. This is useful because WPForms has limited options for managing who can access the admin screens and important features.
WPForms is one of the most popular WordPress contact form plugin with millions of active installs. WPForms allows you to create beautiful contact forms, feedback forms, subscription forms, payment forms, and more.
When you first install the WPForms plugin, you'll see one top-level menu link, plus at least 10 sub-menus:
* All Forms
* Add New
* Entries
* Settings
* Tools
* Addons
* Analytics
* SMTP
* About Us
* Community
It is possible to control who can access these WPForms plugin links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict WPForms access for the “Administrator” role. If you do this, I would recommend making a copy of the Administrator role so that one role still has full WPForms access.
Scroll down and you can enter a red X for any WPForms menu link that you don't want users in the Administrator role to access. Now when an Administrator logs in to your site, they will not be able to see the WPForms menu links that you have blocked.
This approach works for the core WPForms plugin and can also be used for add-on plugins such as Form Abandonment, Form Locker, Offline Forms, and more.
[Click here to learn about WPForms menu permissions](https://publishpress.com/knowledge-base/control-access-wpforms-admin-menus/).
= How Do I Control The Events Calendar User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in The Events Calendar plugin. This is useful because The Events Calendar has limited options for managing who can access the admin screens and important features.
With The Events Calendar, you can easily create and manage an events calendar on your WordPress site. The plugin supports both in-person and virtual events. There are also many ways to extend the plugin for recurring events, ticket sales, user-submitted events and more.
When you first install the The Events Calendar plugin, you'll see one top-level menu link, plus at least 10 sub-menus:
* Events
* Add New
* Tag
* Events Categories
* Venues
* Organizers
* Import
* Settings
* Help
* Event Add-Ons
It is possible to control who can access these The Events Calendar plugin links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict The Events Calendar access for the “Editor” role. Scroll down and you can enter a red X for any The Events Calendar menu link that you don't want users in the Editor role to access. Now when an Administrator logs in to your site, they will not be able to see the Events Calendar menu links that you have blocked:
This approach works for the core The Events Calendar plugin and can also be used for add-on plugins such as Virtual Events, Events Tickets, and more.
[Click here to learn about The Events Calendar menu permissions](https://publishpress.com/knowledge-base/control-access-the-events-calendar-admin-menus/).
= How Do I Control The Gravity Forms User Roles and Permissions? =
The Pro version of PublishPress Capabilities allows you to block access to admin menu links in the Gravity Forms plugin. This is useful because Gravity Forms has limited options for controlling who can access the admin screens.
Gravity Forms is perhaps the most popular contact form plugin for WordPress. You can build and publish your WordPress forms in just minutes. Choose your fields, configure your options and easily embed forms on your WordPress-powered site. Gravity Forms allows you to easily integrate with third party services such as PayPal, Mailchimp, and Zapier.
When you first install Gravity Forms, you'll see one top-level menu link, plus eight sub-menus.
* Forms
* New Form
* Entries
* Settings
* Import/Export
* Add-ons
* System Status
* Help
It is possible to control who can access these links by using the PublishPress Capabilities Pro plugin. After installing PublishPress Capabilities Pro, go to “Capabilities”, then “Admin Menus” in your WordPress admin area. In the top-left corner of this screen, choose the role that you want to edit. For example, you can restrict access for the “Editor” role. By default, Editors aren't given access to Gravity Forms, but site administrators often do they give them some access. Scroll down and you can enter a red X for any Gravity Forms menu link that you don't want users in the Editor role to access. Now when an Editor logs in to your site, they will not be able to see the blocked Gravity Forms menu links.
This approach works for the core Gravity Forms plugin and can also be used for add-on plugins from the official site, or third-party sites.
[Click here to learn about Gravity Forms menu permissions](https://publishpress.com/knowledge-base/control-access-gravity-forms-admin-menus/).
= What’s the Difference Between PublishPress Capabilities and PublishPress Permissions? =
We provide two plugins that allow you to control who can access what on your WordPress site. This is simple way to understand the difference:
* PublishPress Capabilities: Easy.
* PublishPress Permissions: Advanced.
OK, that's maybe too simple, so here's more detail:
* PublishPress Permissions allows you to customize the default WordPress permissions.
* PublishPress Permissions allows you to customize advanced permissions that go far beyond the scope of the WordPress core.
Here's an contrasting example when it comes to Post:
* PublishPress Capabilities allows you to control who can publish all your Posts.
* PublishPress Permissions allows you to control who can publish Posts with a particular Status, Category or Tag, or even Posts without a specific Category or Tag.
Here's another comparison:
* PublishPress Capabilities allows you to control who can read all your Pages.
* PublishPress Permissions allows you to control who can read Pages with a specific Status, Category or Tag, or even Pages with a particular parent Page.
= What's the correct way to spell PublishPress Capabilities? =
PublishPress is the official brandname. When writing about this user role editor plugin, please make sure to uppercase the Ps.
* PublishPress Capabilities (correct)
* Publish Press Capabilities (incorrect)
* publishpress capabilities (incorrect)
* publish press cpabilities (incorrect)
Common and incorrect typos include Capabilitise, Cpabilities, Capabiliites, Cspabilities, Capsbilities, Caoabilities, Calabilities.
== Screenshots ==
1. Control user permissions: You can customize all the user roles on your site, from Administrator to Subscriber.
2. Create and copy user roles: With PublishPress Capabilities you can create or copy any existing WordPress user role.
3. Content permissions: With Capabilities, you can choose who can Publish, Read, Edit and Delete content.
4. Multi-site support: Capabilities can control permissions on a single site or across your whole network.
5. Custom Statuses: With Capabilities Pro, you can decide which user roles are able to send posts to each status.
6. Enforce Taxonomy-Specific Capabilities: You can give “Manage”, “Edit” and “Assign” permissions for all your taxonomies.
7. Permission backups: Every time you change your permissions, the PublishPress Capabilities plugin will automatically create a backup.
8. Media Library Permissions: PublishPress Capabilities enables you to decide who can upload, edit and delete files from your site’s Media Library.
9. WooCommerce Permissions: With PublishPress Capabilities you can control permissions for WooCommerce products, orders and coupons.
10. Navigation Menu Restrictions: PublishPress Capabilities enables you to restrict access to navigation menus by roles, logged in and logged out users.
11. Admin Menu Restrictions: With PublishPress Capabilities you can restrict access to admin menu screens by user roles.
12. Editor Feature Restriction: PublishPress Capabilities enables you to decide what users see when they're writing posts.
13. Admin Feature Restriction: PublishPress Capabilities enables you remove items from the WordPress toolbar, plus dashboard widgets.
== Upgrade Notice ==
= 1.5.1 =
Fixed : Non-administrators with user editing capabilities could add new Administrators
= 2.3.1 =
Fixed : Security issue. Please update.
== Changelog ==
= 2.14.0 - 22 Oct 2024 =
* Update : Editor feature not working due to duplicate inline css, #1148
* Fixed : Editor Features not working for some items, #1145
* Update : Redirect new users to the "Dashboard" screen, #1150
* Fixed : Changing a capability from disabled to enabled not working when clicking the label, #1173
* Update : Move multisite settings to the sidebar, #1146
* Fixed : PHP warning about status capabilities, #1143
* Fixed : Unnecesary database updates on init, #1139
* Fixed : Double queries in admin pages, #1140
* Update : Update the WooCommerce capabilties, #1135
* Update : Add a mesage if the "Additional" tab is empty, #1137
* Fixed : Warning: Undefined array key "user-testing", #1174
* Update : Show Wordfence capabilities tab for both Wordfence main and Login Security plugin, #1136
* Update : New filter "add_filter('pp_capabilities_frontend_feature_cache', '__return_false);" to disable Frontend feature data cache, #1152
* Update : Add a hook on after user testing action, #1160
* Fixed : pp_capabilities_get_post_type returns wrong post type, #1161
* Fixed : Editor Features custom item adding slashes to double quote(""), #689
* Fixed : Compatibility issue with Justified Image Grid, #1165
* Update : Permissions Compat: Allow direct assignment of manage_post_tags if unique taxonomy caps enabled for Tags, #1163
* Update : Capabilities screen: "Listing" tab should not require Pro version of Permissions, #1158
* Update : Translation Updates Capanilities v.2.13.0, #1134
= 2.13.0 - 12 Feb 2024 =
* Update : Add edit to features custom items, #996
* Update : Option to add Test User to the admin toolbar, #1047
* Update : Add demo content for Frontend Features and Admin Feature, #871
* Fixed : Broken tooltip in Admin Menus, #1125
* Fixed : Capabilities Media tab not working in french, #1119
* Fixed : Frontend feature not working in french, #1118
* Update : Standard approach to all UI elements in Capabilities, #1029
* Update : Match Custom Visibility to other statuses, #1061
* Update : Match the Capabilities Custom Statuses heading to other tabs, #1058
* Update : Hide Document Overview using Editor Feature, #1040
* Fixed : Read Capability not working, #1039
= 2.12.2 - 6 Feb 2024 =
* Fixed : French translation caused "Upgrade to Pro" banner to be rendered incorrectly
= 2.12.1 - 30 Jan 2024 =
* Change : Improved use of screen space on Capabilties tab panels
* Change : In mobile view, scroll to panel for clicked Capabilities tab
* Change : Display right sidebar metaboxes inside tab panel, but only where they're relevant
* Change : In Add Capability sidebar metabox, mention that new capabilities will show up on Additional tab
* Change : Bulk Check All box on Editing, Deletion, Listing, Reading, Taxonomies tabs
* Change : Use 90% opacity for Capabilities tool tip
* Change : Don't display "This capability is" tool tip if capability name is already displayed next to checkbox
* Change : Cleaner styling for capabilities assigned implicitly by Permission Group
* Change : Update Pro promo sidebar on Capabilities Dashboard to mention Custom Statuses, Custom Visibility
* Lang: Some tab captions on Capabilities screen were not translated
* Lang: Default WordPress strings (Edit, Settings, etc.) used by plugin were made to rely on plugin language files
= 2.11.1 - 04 Jan 2024 =
* Fixed: Inconsistencies with language files, #311
= 2.10.3 - 12 Dec 2023 =
* Fixed: Nav menu not working in latest WordPress version for FSE theme, #1048
* Update: Add ability to define test user cookie name, define('PPC_TEST_USER_COOKIE_NAME', 'replace_this_with_your_cookie_name'); #1033
* Fixed: Last update breaking nav-menus.php for some sites, #1037
* Fixed: PHP Fatal error: Uncaught Error: Call to undefined function pp_get_enabled_types() on capabilities screen, #1045
* Update: Add support for Squirrly SEO (Newton) plugin capabilities tab, #1044
* Update: Add support for AMP plugin capabilities tab, #1043
* Update: Add support for SEOPress plugin capabilities tab, #1042
* Update: Add support for MailOptin - Lite plugin capabilities tab, #1041
* Update: Capabilities Translation Updates November 2023, #1036
= 2.10.2 - 15 Nov 2023 =
* Update: Add view and edit to features custom items, #741
* Update: Capabilities screen: distinguish Navigation Block Menus from legacy Nav Menus, #888
* Update: Hotfix use create posts capability caption, #960
* Update: Return an empty string instead of false in the admin_footer_text filter hook callback, #961
* Update: Text update for "Listing" tab, #811
* Update: Hide "Listing" tab with Permissions Free, #812
* Update: Add settings to choose Role Login Redirect Referrer, #933
* Update: Move items from Roles Column to the Roles screen, #817
* Update: Add visual indicator on Appearance > Menu items when a nav menu item is hidden for roles, #844
* Update: Add support for BetterDocs plugin capabilities tab, #986
* Update: Add support for GravityView plugin capabilities tab, #985
* Update: Add support for Gravity Forms plugin capabilities tab, #984
* Update: Add support for NextGEN Gallery plugin capabilities tab, #983
* Update: Add support for BackWPup plugin capabilities tab, #982
* Update: Add support for Forminator plugin capabilities tab, #981
* Update: Add support for LearnDash LMS plugin capabilities tab, #980
* Update: Add support for MailPoet plugin capabilities tab, #979
* Update: Add support for Fluent Forms plugin capabilities tab, #978
* Update: Add support for All in One SEO plugin capabilities tab, #976
* Update: Add support for Smash Balloon Instagram Feed plugin capabilities tab, #977
* Update: Add support for Site Kit by Google plugin capabilities tab, #975
* Update: Add support for Wordfence Security Duplicate Post plugin capabilities tab, #973
* Update: Add support for Smart Slider 3 plugin capabilities tab, #972
* Update: Add support for Loco Translate plugin capabilities tab, #971
* Update: Add support for Rank Math SEO plugin capabilities tab, #970
* Update: Add support for Query Monitor plugin capabilities tab, #969
* Update: Add support for Strong Testimonials plugin capabilities tab, #968
* Update: Add support for Download Monitor plugin capabilities tab, #967
* Update: Add support for Yoast SEO plugin capabilities tab, #966
* Update: Add support for Formidable Forms plugin capabilities tab, #958
* Update: Add support for Give - Donation plugin capabilities tab, #957
* Update: Add support for BuddyPress plugin capabilities tab, #947
* Update: Add support for bbPress plugin capabilities tab, #946
* Update: Add support for Sunshine Photo Cart plugin capabilities tab, #943
* Update: Capabilities Free Translation Updates October 2023, #934
= 2.10.1 - 23 Oct 2023 =
* Fixed: Login redirect not working, #843
* Fixed: Redirect user loop, #849
* Fixed: Alignment for menu items, #780
* Update: Update Capabilities old-fashioned tooltips, #818
* Fixed: Negate could not be removed, #873
* Update: Add a tooltip for manage_post_tags, #919
* Update: Remove add_users from the basic Capabilities, install #918
* Update: Update Body Class description, #893
* Fixed: Profile Features conflict with Advanced Custom Fields: Extended plugin, #910
* Fixed: Function pp_capabilities_sub_menu_lists has wrong return type in the function docs, #848
* Fixed: Admin loosing Access to Capabilities after role reset, #834
= 2.10.0 - 6 Sep 2023 =
* Changed: Replaced Pimple library with a prefixed version of the library to avoid conflicts with other plugins;
* Changed: Replaced Psr/Container library with a prefixed version of the library to avoid conflicts with other plugins;
* Changed: Change min PHP version to 7.2.5. If not compatible, the plugin will not execute;
* Changed: Change min WP version to 5.5. If not compatible, the plugin will not execute;
* Changed: Updated internal libraries to latest versions;
* Changed: Refactor some occurrences of "plugins_loaded" replacing it by a new action: "publishpress_capabilities_loaded" which runs after the requirements and libraries are loaded, but before the plugin is initialized;
= 2.9.1 - 1 Aug 2023 =
* Fixed : Fatal error: Uncaught Error: Call to a member function has_cap() on null in Installer class, #880
= 2.9.0 - 31 Jul 2023 =
* Feature : Allow people to target CSS to user roles (Frontend Features), #4
* Fixed : Error on Backup > Reset Roles, #856
= 2.8.1 - 17 May 2023 =
* Fixed : Undefined variable $cap_name, #822
* Fixed : Full Site Editing admin menus issue with custom link, #807
* Fixed : Profile Features table safari styles fix, #770
* Fixed : Update dashboard feature texts, #820
* Fixed : Editor Feature Options not hiding, #805
= 2.8.0 - 11 May 2023 =
* Feature : Custom capabilities for each feature/menu, #727
* Feature : Allow users to disable some features [Dashboard Menu], #491
* Update : Remove "Show Classic Editor Controls" on Editor Features screen, #797
* Update : Update Tooltip message for media capabilities, #796
* Update : Add a Promo sidebar, #768
= 2.7.1 - 20 Apr 2023 =
* Feature : Nav Menus Block Navigation/FSE theme support, #710
* Update : Capability Sidebar Update #719
* Feature : Add multisite capabilities tab, #737
* Feature : Add tooltips to explain capabilities, #734
* Feature : Single checkbox to block Dashboard access, #693
* Update : Add "Toggle All" option in Admin Features, #694
* Update : Add "Profile Features" column to "Roles", #740
* Update : Update documentation links, #776
* Update : Profile Features text update, #773
* Update : Add an explanation of each screen, #691
* Fixed : It's not possible to hide "sticky option" using Editor Feature, #724
* Fixed : Taxonomies Delete title missing for disabled checkbox, #726
= 2.7.0 - 27 Feb 2023 =
* Feature : Allow admins to customize the "Profile" screen for users (Profile Features), #271
* Update : Make "Nav Menus" available in Free version, #606
* Update : Add copy & revise capabilities when Revisions activated, #596
* Update : Implement UI friendly checkbox for shared capabilities, #686
* Update : Add required capability for WooCommerce admin restrictions, #687
* Update : Ability to disable multiple roles on user edit screen, #622
* Fixed : Custom item did not included in export/import, #631
* Fixed : Template and Permalink are not hidden, #650
* Fixed : Text error if no "read" capability, #700
* Fixed : Application Timeout error in Capabilities plugin, #683
* Update : Remove Note from plugin screens, #614
* Fixed : Inconsistent right sidebar, #690
* Update : Capabilities FR-IT Translation Updates 2023, #652
= 2.6.1 - 08 Dec 2022 =
* Update : Allow users to block some roles from "User Testing", #621
* Update : Allow admins to test users from the user profile page, #626
* Fixed : Block URL not working, #629
* Update : Block change of user level for Administrators, #628
* Update : UI Consistency: vertical alignment of Usage Keys, Roles screen search box, #617
* Fixed : Unexpected placeholder %1 warning, #624
* Update : Change "PublishPress" to "PublishPress Planner" in Capabiliites, #638
* Update : FREE Capabilities ES-FR-IT Translation Updates October 27, #620
= 2.6.0 - 25 Oct 2022 =
* Added : Add a way for admins to test user accounts #57
* Fixed : Multi-select JS fails to load on Profile Edit Screen #576
* Update : Adding an explanation for Checkmark / empty / X #578
* Update : Add text description to Settings #573
* Fixed : Plugin translation ignores user's language setting #580
* Fixed : Illegal string offset 'administrator' & Array to string conversion Warning #589
* Update : Support for the "Templates" metabox #251
* Fixed : Some CPT is missing from Editor Features #582
* Update : Capabilities-FR-IT-TranslationUpdate-September2022 #577
= 2.5.2 - 04 Oct 2022 =
* Update : Changes to Import/Export encoding method
= 2.5.1 - 13 Sep 2022 =
* Added : Ability to block user login by role #510
* Update : Add disable WooCommerce admin restrictions in role settings #549
* Update : Hide taxonomy screen option for editor features #554
* Update : Hide metabox screen option for editor features #556
* Fixed : It's possible to access customize page even after blocking with admin menu #559
* Fixed : Uncaught error: Illegal offset type in isset or empty #564
* Update : Translation Note Suggestion for "Editor" #567
* Update : Capability-FR-IT-Translation_updates-August15_2022 #551
= 2.5.0 - 11 Aug 2022 =
* Update : Admin Features UI design consistency #466
* Fixed : Support WordPress API for Editor features Classic Editor disable / enable #531
* Fixed : Woocommerce order metabox Illegal offset type in isset or empty warning #538
* Added : Added woocommerce coupon description to editor features #299
* Update : ES-FR-IT-Capability-Translations-Update-August2022 #540
= 2.4.4 - 02 Aug 2022 =
* Added : Add "list" capabilities to display #206
* Added : Add a Settings screen to Free version #520
* Added : Add settings to allow users to select multiple roles when creating users #462
* Fixed : Multiple role when creating user doesn’t work #515
* Fixed : Admin Menus issue with Yoast #493
* Fixed : It's possible to get lockout of admin menus when all items are checked #527
* Update : Limit "Control Custom Statuses" option to settings screens alone #528
* Update : French and Italian Translations updates #524
* Fixed : PHP Warning on viewing Admin Menus #525
= 2.4.3 - 12 Jul 2022 =
* Fixed : Capabilities conflict with Advanced Custom Fields #494
* Fixed : Issue with editor features when options is not array #495
* Update : Add checkbox for the "Allowed Editors" feature #498
* Update : Add support for TaxoPress on the Capabilities screen #500
* Update : Use 3 clicks approach for all boxes in Capabilities #497
* Fixed : Uncaught TypeError: in_array(): Argument #2 ($haystack) must be of type array, null given. #513
* Fixed : Hide Invalid Capabilities if empty #490
= 2.4.2 - 14 Jun 2022 =
* Fixed : Correct match of post types and Editor Features boxes #427
* Update : Changes to user role selection UI and make role draggable for re-ordering #443
* Added : Two new role tabs (Redirects and Editing) #403
* Added : Redirect users to original page after login to role editor #301
* Added : Redirect on login and logout to role editor #11
* Fixed : Admin Menus issue with JetPack #381
* Added : Hide the "add new block" button to editor feature #436
* Added : Hide the Revisions box in Editor Features #428
* Update : UI clean up for Backup screens #322
* Update : Move the Taxonomy area to it's own tab #425
* Added : Support for WPML capabilities #411
* Added : Support for WS Form #305
* Added : Support Gravity Forms support #306
* Added : Add a new setting to disable Code Editor in Posts to role editor #298
* Update : Remember last tab after updating role settings #445
* Update : Add toggle all checkmarks options on the Capabilities screen #419
* Update : More categorization for capabilities #303
* Update : Force user roles to use specific editors in role settings #276
* Added : Add a setting to show private taxonomies on the "Capabilities" screen #314
* Added: Extend admin features "hide by css" to include plugin list #488
= 2.4.1 - 09 May 2022 =
* Fixed : Small bug with Capabilities search #340
* Update : Add sorting for more table columns in "Roles" #388
* Fixed : Edit Role screen: Right sidebar links to Capabilities screen without role argument #407
* Fixed : Admin Features issue with JetPack #412
* Update : Stop Free and Pro from being enabled together #323
* Update : Add PublishPress Building Package for Capabilities #400
= 2.4.0 - 28 Apr 2022 =
* Fixed : Post title not working with editor features #370
* Fixed : Issue with revision metabox and some plugin metabox in Editor features. #369
* Fixed : Editor Features compability with taxonomies created by the "Toolset" plugin. #367
* Fixed : Backup Features text missing some "s" #365
* Update : Change import upload file delete to use WordPress function #364
* Update : Make sure "Copy" feature for roles works with Editor Features and more #362
* Update : Add short description for "Role Level" #361
* Update : Make "Roles" into the top menu link #326
* Update : Vertical tabs similar to the "Capabilities" for Editor Features #257
* Fixed : Can't hide the "Profile" link with "Admin Menus" #337
* Update : More Columns on Roles Screen #181
= 2.3.7 - 21 Apr 2022 =
* Lang : Translations were not loaded on some sites
= 2.3.6 - 14 Apr 2022 =
* Fixed : Non-administrators cannot access profile screen
* Compat : WooCommerce - Shop Managers could not access Users
* Compat : WooCommerce - Editor Feature restrictions did not hide Product Categories, Tags in Classic Editor
= 2.3.5 - 13 Apr 2022 =
* Feature : Export / Import for new features
* Change : Clarify captions on Roles, Backup screens
* Fixed : Multisite: Don't apply Feature, Menu Restrictions to Super Administrators unless constant PP_CAPABILITIES_RESTRICT_SUPER_ADMIN is defined
* Fixed : Capabilities could not be updated if third party code executes too early. Now support constant PP_CAPABILITIES_COMPAT_MODE to work around conflicts.
* Fixed : Coding standards - WordPress VIP scan compliance improvements
* Compat : LoginWP - custom redirect failed
* Lang : New French, Italian and Spanish translations
= 2.3.4 - 26 Jan 2022 =
* Compat : WordPress 5.9 - failure adding / editing posts under some Editor Features configurations (work around WP hooking late-defined function _disable_block_editor_for_navigation_post_type)
= 2.3.3 - 13 Jan 2022 =
* Fixed : Capability names with dashes could not be added
* Fixed : After role rename, title in dropdown does not refresh
* Fixed : Input sanitization consistency
* Fixed : Escape output variables
* Lang : Spanish, French, Italian
= 2.3.2 - 8 Dec 2021 =
* Feature : Filter Capabilities display by post type or text entry
* Feature : Editor Features - Restrict editor elements for custom post types
* Feature : Admin Features - Restrict Admin Bar or individual Admin Bar elements
* Feature : Admin Features - More items available for restriction #240
* Change : Admin Features - Captions use dashes, not numbers #229
* Change : Capabilities screen - Tab for PublishPress Capabilities #220
* Fixed : CSRF vulnerability
= 2.3.1 - 6 Dec 2021 =
* Fixed : Security issue
* Fixed : PHP Notice on Capabilities screen
= 2.3 - 28 Oct 2021 =
* Change : Role Capabilities screen uses tabs
* Feature : New "Admin Features" screen #200
= 2.2 - 26 Aug 2021 =
* Feature : Retain last role selection for Capabilities, Editor Features screens
* Perf : Sync role to all sites - Operation timed out on networks with ~100 sites
* Fixed : Some security scans flagged an unused file in external library "chosen". That file (and other developer documentation files) has been removed
= 2.1 - 24 Jun 2021 =
* Feature : Editor Features restriction (new screen to block editor elements per-role)
* Fixed : If Media "Create" capability is selected / unselected by clicking Media caption or Create caption, the corresponding upload_files checkbox (in Other WP Core Capabilities section) is not toggled, leading to an apparant update failure
* Fixed : If Media "Create" capability is negated or un-negated, the corresponding upload_files checkbox (in Other WP Core Capabilities section) is not toggled, leading to an apparant update failure
* Fixed : PHP Warning if a role is stored without a valid capabilities array
= 2.0.2 - 6 May 2021 =
* Feature : Multisite - "sync options to all sites" checkbox. Copies "use create_posts capability", Type-Specific Capabilities, Taxonomy-Specific Capabilities, Detailed Taxonomy Capabilities settings
* Fixed : Multisite - "sync role to all sites" did not work if main site ID is not 1
* Fixed : Fatal error on Capabilities screen if another plugin calls get_editable_roles() too early
* Fixed : Add New User - couldn't display password entry
* Compat : PublishPress - Authors without publish capability could directly publish on the Calendar screen
* Change : Permissions - Hide / Unhide Role setting moved to Roles screen row actions
= 2.0 - 18 Feb 2021 =
* Feature : Roles screen
* Feature : Multiple role assignment on Add / Edit User screen
* Lang : Fixed handling, activated partial translations in German, Italian, Russian, Spanish, Swedish, Belarusian, Catalan
* Change : Capabilities screen - move role selector to top left, eliminate load button
* Change : Capabilities screen - move some sidebar items to Settings screen
* Change : Adjust some captions, variable names, more selective code execution
* Compat : bbPress - Forum, Topic and Reply capabilities were not displayed in Editing Capabilities grid
* Fixed : uneditable bbPress roles could be opened for editing (require Capabilities Pro)
* Fixed : Invalid Capabilities - Brief explanatory caption; avoid false positives for post types with map_meta_cap disabled
* Fixed : PHP warning for invalid foreach argument, on sites with no active_plugins option stored
* Fixed : Backup > Restore - Negated capabilities were not displayed correctly in restore preview
* Fixed : Backup > Restore - Clicking label for Initial Backup jumped selection to Last Manual Backup
* Change : Backup > Restore - Preview displays "No changes" below role name where appropriate
= 1.10.1 - 8 Oct 2020 =
* Fixed : Type-Specific Capabilities options included some non-public WordPress post types that don't support capability customization
* Fixed : Review of role backup contents does not show name of current roles which would be removed by restoring backup
= 1.10 - 1 Oct 2020 =
* Feature : Improved design and styling for Backup and Restore
* Feature : Backup > Restore - filter to display only modified capabilities
* Compat : Advanced Gutenberg - include AG Profile capabilities in Editing, Deletion, Reading capabilities grid
* Fixed : Media Create / upload_files capability could not be removed from role
* Fixed : Multisite - Incorrect menu display on sites where main site ID is not 1
* Fixed : Language file load failure if plugin directory structure is non-standard
= 1.9.12 - 16 Jun 2020 =
* Fixed : Fatal error due to missing vendor library folder
= 1.9.11 - 16 Jun 2020 =
* Fixed : Upgrade menu links were not displayed
= 1.9.10 - 1 Jun 2020 =
* Fixed : PublishPress Permissions - Type / Taxonomy settings incorrectly synchronized under some conditions
= 1.9.9 - 13 May 2020 =
* Compat : PublishPress Permissions - "Type-Specific Capabilities" setting was not properly synchronized with Permissions > Settings > Core > Filtered Post Types
= 1.9.6 - 23 Apr 2020 =
* Change : Add New Role retains capitalization as entered for role title (otherwise applies proper case)
* Feature : Rename Role sidebar box on Capabilities screen
* Fixed : Fatal error on plugin load if Administrator role does not exist
* Compat : PublishPress Permissions - Post Type selections for "Type-Specific Capabilities" were not synchronized with PublishPress Permissions under some conditions
= 1.9.5 - 6 Apr 2020 =
* Fixed : Fatal error loading Capabilities screen on a small percentage of installations
* Compat : PublishPress Permissions - Post Type selections for "Type-Specific Capabilities" were not synchronized with PublishPress Permissions under some conditions
= 1.9.4 - 2 Apr 2020 =
* Fixed : Fatal error loading Capabilities screen on a small percentage of installations
* Fixed : Capabilities menu was displayed to non-Administrators with no items except "Upgrade to Pro"
= 1.9.3 - 17 Mar 2020 =
* Fixed : Capabilities screen was not accessible to non-Administrators who have "manage_capabilities" capability
* Fixed : Some functions were not accessible to network Super Administrators without a role on the site
* Change : Clarify some messages for plugin access denial
= 1.9.2 - 16 Mar 2020 =
* Feature : Auto-backup role and capabilities on each update (and on update to this version)
* Fixed : First-time installation: Capabilities menu item not displayed until after Plugins or Users menu clicked
* Change : Third Party Plugin Capabilities - always display checkboxes even if capabilities not present in Administrator role
* Fixed : Plugin capability sections - pp_set_notification_channel and pp_manage_roles were included in both PublishPress and PublishPress Permissions sections
* Fixed : Capability Negation (Denial) bulk unselect link was ambiguous due to missing strikethrough
= 1.9.1 - 16 Jan 2020 =
* Fixed : Create Role, Copy Role, and Add Capability sidebar functions did not work with ENTER keypress (caused screen reload without applying operation)
= 1.9 - 9 Jan 2020 =
* Change : Renamed to PublishPress Capabilities
* Feature : Capabilities link on PublishPress > Roles row opens Role Capabilities screen
* Feature : Role Capabilities screen links to PublishPress > Roles for member management
* Fixed : Browser reload caused Role Capabilities screen to display default role
* Fixed : Add Capability sidebar added custom capability to role immediately, but capability checkbox did not display as checked until reload
* Fixed : Category Assign or Delete capabilities were not effective due to WordPress core forcing default capability requirement
* Fixed : Term Assign or Delete capabilities were not effective due to WordPress core forcing default capability requirement
* Fixed : Multisite - On sub-sites, Role Capabilities screen did not display PublishPress Capabilities section to Super Administrators who don't have a role on the site
* Fixed : Role name captions on Role Capabilities and Backup Tool screens could not be translated
* Fixed : Checkbox bulk selection on Role Capabilities screen was incorrect under some conditions
* Change : Reinstate WordPress edit_published_posts workaround with correct status filtering behavior
* Change : Apply workaround filters for WordPress edit_published_posts / publish_posts handling only for users who have edit_published_posts capability for current post type
= 1.8.1 - 25 Oct 2019 =
* Fixed : Automatic publication of blank auto-drafts, WooCommerce posts save with incorrect post status (since 1.8)
= 1.8 - 24 Oct 2019 =
* Feature : WooCommerce, PublishPress, PressPermit capabilities grouped in sections on role editor screen
* Feature : Plugin API - plugins can hook into "cme_plugin_capabilities" filter to register their capabilities
* Feature : Work around WordPress issue preventing users with edit_published_posts (but not publish_posts) capability from updating published posts (https://core.trac.wordpress.org/ticket/47443)
* Feature : Work around WordPress issue allowing users with edit_published_posts (but not publish_posts) to unpublish published posts
* Fixed : If a unique edit/delete capability is already defined, don't change the definition
* Fixed : Removed add_users from the Core WordPress Capabilities section because it is was replaced by promote_users
* Fixed : PHP Notices on Role Capabilities screen for undefined index, under some configurations
* Fixed : HTML validation errors on Manage Capabilities screen
* Fixed : PHP 5.x : Notice for undefined constant PHP_INT_MIN on wp-admin Posts / Pages listing
* Change : Move Role Capabilities menu item to Permissions menu if PressPermit plugin is active (restoring previous behavior with Press Permit Core)
* Change : Edit Roles link in CME row of Plugins list
* Change : PublishPress icon, footer on Roles and Capabilities screen
= 1.7.5 - 24 May 2019 =
* Fixed : Users' inclusion or non-inclusion in Authors dropdown was not updated based on role edit
= 1.7.4 - 1 May 2019 =
* Fixed : On some sites, capabilities added dynamically by other code were forced into stored role definition (and could not be removed).
* Fixed : Negative role capabilities could not be directly unset (had to be checked, saved, then unchecked).
= 1.7.3 - 9 Apr 2019 =
* Fixed : Work around WP quirk of completely blocking admin page access for a post type if user lacks create capability for the post type and there are no other accessible items on the menu.
* Fixed : PHP Notices on Roles and Capabilities screen for non-Administrator with WooCommerce active
= 1.7.2 - 3 Apr 2019 =
* Compat : WooCommerce integration - Users lacking access to the "Add New Order" submenu could not access Posts, Pages, Products or any other Post Type listing. This occurred if "use create_posts" option enabled and user lacks the create capability for Orders.
= 1.7.1 - 29 Mar 2019 =
* Fixed : Press Permit integration - cannot load Permissions > Role Capabilities with Press Permit Core < 2.7
= 1.7 - 28 Mar 2019 =
* Feature : New right sidebar setting: "Type-Specific Capabilities" for selected post types (without activating Press Permit Core).
* Feature : New right sidebar setting: "Taxonomy-Specific Capabilities" ensures a distinct manage capability for selected taxonomies
* Feature : New right sidebar setting: "Detailed Taxonomy Capabilities" causes term assign, edit and deletion capabilities to be required and credited separate from management capability
* Feature : WooCommerce - Ensure orders can be edited or added based on edit_shop_orders / create_shop_orders capability
* Change : Lockout safeguard (preventing read capability removal) is bypassed if role has no WP admin / edit capabilities, or if it has "dashboard_lockout_ok" capability
* Compat : Press Permit: new plugin page slugs in Press Permit Core 2.7
= 1.6.1 =
* Feature : Prevent read capability from being removed from a standard role
* Feature : If read capability is missing from a standard role, display warning and instant fix link
* Feature : Additional save button at top of Roles and Capabilities screen!
* Change : Reinstate Press Permit description link
* Change : Thickbox popups for related plugins
= 1.6 =
* Feature : WooCommerce - If current user has duplicate_products capability, make Woo honor it
* Feature : Link to Backup Tool from sidebar of Roles and Capabilities screen
* Feature : Link to Roles and Capabilities screen from Backup Tool
* Change : Minor code cleanup and refactor
* Change : Copyrights, onscreen link for PublishPress ownership
* Change : Links to Related Permissions Plugins in sidebar on Roles and Capabilities screen
= 1.5.11 =
* Feature : Automatically save backup of WP roles on plugin activation or update
* Feature : When roles are manually backed up, also retain initial role backup
* Feature : Backup Tool can also display contents of role backups
= 1.5.10 =
* Fixed : Back button caused mismatching role dropdown selection
* Compat : PHP 7.2 - warning for deprecated function if a second copy of CME is activated
= 1.5.9 =
* Fixed : Potential vulnerability in wp-admin (but exposure was only to users with role editing capability)
= 1.5.8 =
* Fixed : PHP warning for deprecated function WP_Roles::reinit
* Change : Don't allow non-Administrator to edit Administrators, even if Administrator role level is set to 0
= 1.5.7 =
* Change : Revert menu captions to previous behavior ("Permissions > Role Capabilities" if Press Permit Core is active, otherwise "Users > Capabilities")
= 1.5.6 =
* Fixed : Correct some irregularities in CME admin menu item display
= 1.5.5 =
* Fixed : User editing was improperly blocked in some cases
= 1.5.4 =
* Fixed : Non-administrators' user editing capabilities were blocked if Press Permit Core was also active
* Fixed : Non-administrators could not edit other users with their role (define constant CME_LEGACY_USER_EDIT_FILTER to retain previous behavior)
* Fixed : Non-administrators could not assign their role to other users (define constant CME_LEGACY_USER_EDIT_FILTER to retain previous behavior)
* Lang : Changed text domain for language pack conformance
= 1.5.3 =
* Fixed : On single-site installations, non-Administrators with delete_users capability could give new users an Administrator role (since 1.5.2)
* Fixed : Deletion of a third party plugin role could cause users to be demoted to Subscriber inappropriately
* Compat : Press Permit Core - Permission Group refresh was not triggered if Press Permit Core is inactive when CME deletes a role definition
* Compat : Support third party display of available capabilities via capsman_get_capabilities or members_get_capabilities filter
* Change : If user_level of Administrator role was cleared, non-Administrators with user editing capabilities could create/edit/delete Administrators. Administrator role is now implicitly treated as level 10.
* Fixed : CSS caused formatting issues around wp-admin Update button on some installations
* Perf : Don't output wp-admin CSS on non-CME screens
* Lang : Fixed erroneous text_domain argument for numerous strings
* Lang : Updated .pot and .po files
= 1.5.2 =
* Fixed : Network Super Administrators without an Administrator role on a particular site could not assign an Administrator role to other users of that site
= 1.5.1 =
* Fixed : Non-administrators with user editing capabilities could give new users a role with a higher level than their own (including Administrator)
= 1.5 =
* Feature : Support negative capabilities (storage to wp_roles array with false value)
* Feature : Multisite - Copy a role definition to all current sites on a network
* Feature : Multisite - Copy a role definition to new (future) sites on a network
* Feature : Backup / Restore tool requires "restore_roles" capability or super admin status
* Fixed : Role reset to WP defaults did not work, caused a PHP error / white screen
* Change : Clarified English captions on Backup Tool screen
* Fixed : Term deletion capability was not included in taxonomies grid even if defined
* Fixed : jQuery notices for deprecated methods on Edit Role screen
* Compat : Press Permit - if a role is marked as hidden, also default it for use by PP Pro as a Pattern Role (when PP Collaborative Editing is activated and Advanced Settings enabled)
* Change : Press Permit promotional message includes link to display further info
= 1.4.10 =
* Perf : Eliminated unused framework code (reduced typical wp-admin memory usage by 0.6 MB)
* Fixed : Failure to save capability changes, on some versions of PHP
* Compat : Press Permit - PHP Warning on role save
* Compat : Press Permit - PHP Warning on "Force Type-Specific Capabilities" settings update
* Compat : Press Permit - "supplemental only" option stored redundant entries
* Compat : Press Permit - green background around capabilities which
* Compat : Press Permit - PHP Warning on "Force Type-Specific Capabilities" settings update
* Maint : Stop using $GLOBALS superglobal
* Change : Reduced download size by moving screenshots to assets folder of project folder
= 1.4.9 =
* Fixed : Role capabilities were not updated / refreshed properly on multisite installations
* Feature : If create_posts capabilities are defined, organize checkboxes into a column alongside edit_posts
* Feature : "Use create_posts capability" checkbox in sidebar auto-defines create_posts capabilities (requires Press Permit)
* Compat : bbPress + Press Permit - Modified bbPress role capabilities were not redisplayed following save, required reload
* Compat : bbPress + Press Permit - Adding a capability via the "Add Cap" textbox caused the checkbox to be available but not selected
* Compat : Press Permit - "supplemental only" option was always enabled for newly created and copied roles, regardless of checkbox setting near Create/Copy button
= 1.4.8 =
* Compat : bbPress + Press Permit - "Add Capability" form failed when used on a bbPress role, caused creation of an invalid role
= 1.4.7 =
* Compat : Press Permit - flagging of roles as "supplemental assignment only" was not saved
= 1.4.6 =
* Compat : bbPress 2.2 (supports customization of dynamic forum role capabilities)
* Compat : Press Permit + bbPress - customized role capabilities were not properly maintained on bbPress activation / deactivation, in some scenarios
* Fixed : Role update and copy failed if currently stored capability array is corrupted
= 1.4.5 =
* Fixed : Capabilities were needlessly re-saved on role load
* Fixed : Capability labels in "Other WordPress" section did not toggle checkbox selection
* Press Permit integration: If capability is granted by the role's Permit Group, highlight it as green with a descriptive caption title, but leave checkbox enabled for display/editing of role defintion setting (previous behavior caused capability to be stripped out of WP role definition under some PP configurations)
= 1.4.4 =
* Fixed : On translated sites, roles could not be edited
* Fixed : Menu item change to "Role Capabilities" broke existing translations
= 1.4.3 =
* Fixed : Separate checkbox was displayed for cap->edit_published_posts even if it was defined to the be same as cap->edit_posts
* Press Permit integration: automatically store a backup copy of each role's last saved capability set so they can be reinstated if necessary (currently for bbPress)
= 1.4.2 =
* Language: updated .pot file
* Press Permit integration: roles can be marked for supplemental assignment only (and suppressed from WP role assignment dropdown, requires PP 1.0-beta1.4)
= 1.4.1 =
* https compatibility: use content_url(), plugins_url()
* Press Permit integration: if role definitions are reset to WP defaults, also repopulate PP capabilities (pp_manage_settings, etc.)
= 1.4 =
* Organized capabilities UI by post type and operation
* Editing UI separates WP core capabilities and 3rd party capabilities
* Clarified sidebar captions
* Don't allow a non-Administrator to add or remove a capability they don't have
* Fixed : PHP Warnings for unchecked capabilities
* Press Permit integration: externally (dis)enable Post Types, Taxonomies for PP filtering (which forces type-specific capability definitions)
* Show capabilities which Press Permit adds to the role by supplemental type-specific role assignment
* Reduce memory usage by loading framework and plugin code only when needed
= 1.3.2 =
* Added Swedish translation.
= 1.3.1 =
* Fixed a bug where administrators could not create or manage other administrators.
= 1.3 =
* Cannot edit users with more capabilities than current user.
* Cannot assign to users a role with more capabilities than current user.
* Solved an incompatibility with Chameleon theme.
* Migrated to the new Alkivia Framework.
* Changed license to GPL version 2.
= 1.2.5 =
* Tested up to WP 2.9.1.
= 1.2.4 =
* Added Italian translation.
= 1.2.3 =
* Added German and Belorussian translations.
= 1.2.2 =
* Added Russian translation.
= 1.2.1 =
* Coding Standards.
* Corrected internal links.
* Updated Framework.
= 1.2 =
* Added backup/restore tool.
= 1.1 =
* Role deletion added.
= 1.0.1 =
* Some code improvements.
* Updated Alkivia Framework.
= 1.0 =
* First public version.