June 11, 2018 — Out of the box, WordPress provides a handful of user roles, from Subscriber to Administrator, each with an increasing level of access to manage content and settings on the site. While these roles provide a great starting point for many WordPress sites, they don’t offer the granularity one expects in a large organization with complex editorial workflows. Fortunately, these roles just begin to tap into the power of WordPress’s underlying capabilities API, which provides fine-grained access control for every aspect of the site’s administration, from controlling who can access a settings screen to which users can edit or publish a particular post.
This presentation focuses on the technical aspects of role and capability management in WordPress. How do you create and edit user roles? How do you dynamically filter capabilities? What the heck is a “meta capability”? How can you have more control than the various role editing plugins provide? We’ll take a journey through the code to learn the most effective and efficient ways to manage your users’ editorial and administrative experiences, using some examples from solutions Modern Tribe has implemented at Stanford Law School and Harvard Law School.
August 6, 2017 — From Subscriber to Administrator, WordPress comes with a variety of roles and capabilities to both grant and restrict access to various functionality within a site. But what if you need to step outside the defaults?
This advanced developer talk with plenty of code samples will show you how to create new roles within WordPress, how to create new capabilities and grant roles access, as well as fine-tuning capabilities using filters.
June 30, 2017 — The user roles and capabilities API is one of the most powerful APIs in WordPress. With it you can allow, deny, and customise access to features in WordPress to a fine grained level. In this presentation, I’ll talk through the basics and go on to explain some of the more interesting and advanced use cases of working with roles and capabilities.
June 2, 2017 — John is one of the WordPress core developers, a member of the WordPress security team, and was the release lead for WordPress 4.1. He works as a senior developer at Human Made, and has over ten years experience developing with WordPress.
In his presentation, he goes through the basics and goes on to explain some of the more interesting and advanced use cases of working with roles and capabilities.
April 14, 2017 — The user roles and capabilities API is one of the most powerful APIs in WordPress. With it you can allow, deny, and customise access to features in WordPress to a fine grained level. In this presentation, I’ll talk through the basics and go on to explain some of the more interesting and advanced use cases of working with roles and capabilities.
September 27, 2015 — Přednáška Tomasze Dziudy na téma Discovering the capabilities of the Theme Customizer API.
July 11, 2015 — As web developers, there are many considerations we have to make as we develop: for mobile, for responsive, for accessibility. I believe we can approach this in a more robust, positive, and future-proof manner by looking at capabilities rather than concessions. This talk is about shifting and inspiring perceptions, rather than any sort of tutorial.
October 5, 2013 — This talk dives into basic UX methodologies before exploring how WordPress already has the functionality to accommodate core UX needs. With the information provided you can create more usable themes, happier users and a better web for all.
July 7, 2013 — This presentation discusses the true power behind WordPress’ roles and capabilities system, map_meta_cap. Starting with an overview of how it relates to the system as a whole, then some real-world examples to demonstrate how the map_meta_cap function and filter can be properly used to fully leverage WordPress’ capabilities system.
July 2, 2013 — WordPress’ roles seem simple enough on the surface, but behind the Administrator, Editor, and the other default roles is a powerful system that can be customized extensively. While some have said that other CMS’ have an advantage when it comes to security and customizing capabilities, this presentation demonstrates that that isn’t true.