[wp-trac] [WordPress Trac] #6248: WP permission issue for plugin
updater
WordPress Trac
wp-trac at lists.automattic.com
Sun Mar 16 11:27:38 GMT 2008
#6248: WP permission issue for plugin updater
-------------------------------+--------------------------------------------
Reporter: Denis-de-Bernardy | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.5
Component: Administration | Version: 2.5
Severity: normal | Keywords:
-------------------------------+--------------------------------------------
in WP 2.5, trunk, wp-admin/update.php, things start like this:
{{{
if ( !current_user_can('edit_plugins') )
wp_die('<p>'.__('You do not have sufficient permissions to
update plugins for this blog.').'</p>');
}}}
I've disabled the edit_plugins, edit_themes and edit_files capabilities
from my administrator role. I do the same for each of my customers,
because I don't want them to see scary looking "Edit [File]" screens in
their admin area. I'm guessing others do the same. Anyway...
Could it be possible to change the above to:
{{{
if ( !( current_user_can('edit_plugins') ||
current_user_can('administrator') ) )
wp_die('<p>'.__('You do not have sufficient permissions to
update plugins for this blog.').'</p>');
}}}
And/or, change the message on the plugins screen as necessary, so that
only relevant users get prompted to upgrade their plugins automatically?
(i.e. change "There is a new version of [Plugin] available. Download
version [X] here or upgrade automatically." to "There is a new version of
[Plugin] available. Download version [X] here.")
--
Ticket URL: <http://trac.wordpress.org/ticket/6248>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list