Controlling edit access for domains
As of version 1.2, access to the Domains area of the WordPress admin is restricted to users/roles with a custom set of capabilities. The capabilities are as follows:
edit_domainread_domaindelete_domaincreate_domainsedit_domainsedit_others_domainsdelete_domainspublish_domainsread_private_domainsdelete_private_domainsdelete_published_domainsdelete_others_domainsedit_private_domainsedit_published_domains
The capabilities are all set for administrators by default. If other user roles need access to domains, this needs be configured either via PHP or via a plugin such as the Members – Membership & User Role Editor Plugin.
Consider the following set of capabilities:
With these capabilities, a customer would be able to:
- Edit domains where they are marked as the author (the plugin uses the WordPress author field to indicate the domain owner.)
- Publish their own domains.
The customer would be able to see all domains on site but WordPress won't allow them to edit any domains that aren't explicitly theirs. They are also unable to create new domains.