current user can edit user?

Yes it can be good practice to check if a user is capable of doing something before doing something related in code.

For example, don’t save a custom post type if the user doesn’t have the capabilities needed to do it, or don’t show certain things to users who don’t have the manage_options capability ( super admins and admins normally ).

Bad practice in this case would be assuming the user has the necessary role to do these things and doing them anyway. This doesn’t mean you should fill your code with checks for current_user_can everywhere though, in many places ( such as registering admin menus ), the check is performed by WP Core itself

Related Posts:

  1. Editor can create any new user except administrator
  2. Remove Ability for Other Users to View Administrator in User List?
  3. Groups of capabilities: users with multiple roles?
  4. User-edit role setting distinct from wp_capabilities? [closed]
  5. What’s the difference between the capability remove_users and delete_users?
  6. How to let contributors to create a new revision(draft) editing their published posts
  7. Disallowing Users of a Custom Role from Deleting or Adding Administrators?
  8. How to update user role without logout
  9. How to check user role without using current_user_can()
  10. Do not allow users to create new posts and pages
  11. \WP_User Object | What’s the Difference Between {caps} and {allcaps}?
  12. How to enable the theme editor cap for an editor role?
  13. How to assign capabilities to user NOT to User Role
  14. How-to Delay The Capability To Publish Posts?
  15. Is there a simple way to manage capabilities per user?
  16. Prevent Admin user to edit/see super admin from users list
  17. Get User Role by ID not working
  18. Getting users by specific capability, not role
  19. Restricted registrations or removing the ability to edit your password/email
  20. Are User Levels Still Currently Used?
  21. Does an AJAX call on the Admin Side Automatically include the User Data/Capabilities?
  22. Remove Capabilities from WP admin for specific user role
  23. Add a role and give admin priviledges
  24. Where are $current_user->allcaps set?
  25. How can I prevent certain custom roles from seeing other custom roles on the user list page?
  26. What’s the correct way to add capabilites to user roles?
  27. Can I Create a Second Admin Level User Role?
  28. Custom capability for a single user
  29. Privilege to recover trashed posts
  30. Assigning multiple or additional capabilities to specific users or how to create additional roles like bbpress roles?
  31. how do I add role and capability after I create a new user
  32. current_user_can() causing critical error
  33. How to make WordPress ‘editor’ role to list/view/add/edit users only with the role ‘author’?
  34. Author Error “Sorry, you are not allowed to access this page.”
  35. fine-grained capabilities for user related capabilities
  36. Disabling user capability to edit_posts or delete_posts in the front-end
  37. Groups roles & capabilities
  38. Subscriber role – blank page
  39. No one can edit post/pages by Administrator
  40. current_user_can() returning true for capability when the user and role do not have the capability
  41. If the current user is an administrator or editor
  42. Getting a List of Currently Available Roles on a WordPress Site?
  43. How do I add a field on the Users profile? For example, country, age etc
  44. How do I display logged-in username IF logged-in?
  45. How to allow an user role to create a new user under a role which lower than his level only?
  46. user_login vs. user_nicename
  47. How to programatically change username (user_login)?
  48. Change the Author Slug from Username to Nickname
  49. Difference between update_user_meta and update_user_option
  50. Make display name unique
  51. Make WooCommerce pages accessible for logged in users only
  52. Find out if logged in user is not subscriber
  53. WordPress usermeta scaling for thousands of users
  54. How to get WordPress Username in Array format
  55. Display user registration date
  56. Get multiple roles with get_users
  57. get_user_meta() doesn’t include user email?
  58. Confirmation required on email change
  59. How to Merge Two Authors Into One?
  60. Whats the best way to share user data across multiple WordPress websites?
  61. get_current_user_id() returns 0?
  62. How to get userid at wp_logout action hook?
  63. Is there a way to merge two users?
  64. List users by last name in WP_User_Query
  65. How to restrict access to uploaded files?
  66. Automatically delete inactive users after 2 months
  67. How to change user_login with wp-cli?
  68. Delete all subscribers from wp_users and wp_usermeta a few thousand at a time
  69. Email user when password is reset by admin
  70. Replacing the WordPress password validation
  71. Ban a user and end their session
  72. Allowing users to edit only their page and nobody else’s
  73. How can 2 blogs share the same users
  74. alphabetically order role drop-down selection in dashboard
  75. WordPress auto login after registration not working
  76. Change the author slug from nickname to ID
  77. Execute a function when admin changes the user role
  78. how to use joomla password format in wordpress?
  79. How to do get_users() with multiple meta_keys
  80. What the user_status column?
  81. How to limit users to one comment per post
  82. Different back-end language for different users?
  83. Add Custom User Capabilities Before or After the Custom User Role has Been Added?
  84. Hide Admin Menu for Specific User ID who has administrator Role
  85. Migrating WordPress users into Disqus
  86. Problem with Hebrew characters in username
  87. Is there an upper limit for users in WP?
  88. How to display the status of users (online – offline) in archive.php
  89. Remove email verification when new user register
  90. How to change user`s avatar?
  91. How to set up User email verification after Signup?
  92. Allow up to 5 Concurrent Login Sessions
  93. How to let user set password on registration
  94. How to hide media uploads by other users in the Media menu?
  95. Show admin bar only for some USERS roles
  96. How to display custom user meta from registration in backend?
  97. Allowing an email as the username?
  98. How to work around “that email address has already been used” error?
  99. Get the name of user who updated post
  100. Disable delete user
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)