Assigning multiple or additional capabilities to specific users or how to create additional roles like bbpress roles?

In WordPress is pretty simple create custom roles and also assign specific capabilities to specific user roles (no matter if from core or custom).

In my plugins I often create an user role that has all the capabilities required by my plugin, and then I attach some of thos capabilities to existing roles.

I’ll give you an example, that I think will help you facing this issues.

Assuming you create a plugin that needs 3 capabilities:

  • ‘do_foo’
  • ‘do_bar’
  • ‘do_baz’

You can create a custom role that has all three capabilities, and then

  • assign all 3 categories to administrators
  • assign ‘do_bar’ and ‘do_baz’ to editors, authors and constributors
  • assign only ‘do_baz’ to subscribers

Following simple function does all previous things:

function my_plugin_custom_caps()
{
  $caps = array('do_foo' => true, 'do_bar' => true, 'do_baz' => true);
  // First of all create the new user role, add all custom caps + 'read'
  add_role( 'myrole', 'My Role', array_merge( $caps, array( 'read' => true ) ) );
  // Set specific caps to specific roles.
  // 1. prepare the roles array
  $all_roles = array('administrator', 'editor', 'author', 'constributor', 'subscriber');
  // 2. get WP_Roles object to do the work
  $roles_obj = new WP_Roles();
  // 3. Loop roles and assign caps
  foreach ( $all_roles as $role ) {
    // 4. cycle the caps and assign them one by one using some logic to assign right caps
    foreach ( $assign as $cap ) {
       if( $role === 'subscriber' && $cap !== 'do_baz' ) continue;
       if( $role !== 'administrator' && $cap === 'do_foo' ) continue;
       $roles_obj->add_cap( $role, $cap );
    }
  }
}

Once WordPress saves capabilities on database, is a good idea perform this task on plugin activation, so it runs only once:

register_activation_hook( __FILE__, 'my_plugin_custom_caps' );

Also is a good habit remove added capabilities and custom roles when plugin is deactivated, so you can create a my_plugin_custom_caps_undo function and use it with register_deactivation_hook.

That function would be almost identical to my_plugin_custom_caps(), but remove_role is used instead of add_role and remove_cap instead of add_cap:

function my_custom_caps_undo() {
  remove_role( 'myrole' );
  $caps = array('do_foo' => true, 'do_bar' => true, 'do_baz' => true );
  $all_roles = array('administrator', 'editor', 'author', 'constributor', 'subscriber');
  $roles_obj = new WP_Roles();
  foreach ( $all_roles as $role ) {
    foreach ( $caps as $cap ) {
      if( $role === 'subscriber' && $cap !== 'do_baz' ) continue;
      if( $role !== 'administrator' && $cap === 'do_foo' ) continue;
      $roles_obj->remove_cap( $role, $cap );
    }
  }
}

register_deactivation_hook( __FILE__, 'my_custom_caps_undo' );

Related Posts:

  1. \WP_User Object | What’s the Difference Between {caps} and {allcaps}?
  2. Are User Levels Still Currently Used?
  3. Can I Create a Second Admin Level User Role?
  4. how do I add role and capability after I create a new user
  5. Editor can create any new user except administrator
  6. Remove Ability for Other Users to View Administrator in User List?
  7. Groups of capabilities: users with multiple roles?
  8. User-edit role setting distinct from wp_capabilities? [closed]
  9. How to let contributors to create a new revision(draft) editing their published posts
  10. Disallowing Users of a Custom Role from Deleting or Adding Administrators?
  11. Grouping users under parent user
  12. How to update user role without logout
  13. How to check user role without using current_user_can()
  14. Do not allow users to create new posts and pages
  15. How to enable the theme editor cap for an editor role?
  16. How to assign capabilities to user NOT to User Role
  17. How-to Delay The Capability To Publish Posts?
  18. Is there a simple way to manage capabilities per user?
  19. How to get the Role Name of the current user? (WordPress)
  20. Get User Role by ID not working
  21. Getting users by specific capability, not role
  22. Remove Capabilities from WP admin for specific user role
  23. Updating wp_user_level on user update
  24. Add a role and give admin priviledges
  25. Where are $current_user->allcaps set?
  26. How can I prevent certain custom roles from seeing other custom roles on the user list page?
  27. What’s the correct way to add capabilites to user roles?
  28. Update user role for expired membership
  29. How to make WordPress ‘editor’ role to list/view/add/edit users only with the role ‘author’?
  30. Hook into add_user_role and update based on new and removed roles
  31. How to Moderate Edits to User Profiles?
  32. fine-grained capabilities for user related capabilities
  33. Disabling user capability to edit_posts or delete_posts in the front-end
  34. In admin manage users page, how can I stop users with certain privileges from editing users with other privileges?
  35. Groups roles & capabilities
  36. Subscriber role – blank page
  37. Creating Custom user type just like custom post
  38. current_user_can() returning true for capability when the user and role do not have the capability
  39. Find out if logged in user is not subscriber
  40. get_user_meta() doesn’t include user email?
  41. What the user_status column?
  42. Add Custom User Capabilities Before or After the Custom User Role has Been Added?
  43. Hide Admin Menu for Specific User ID who has administrator Role
  44. How to display custom user meta from registration in backend?
  45. Allowing an email as the username?
  46. How we can get the user id by its display_name
  47. WP_User_Query with combined meta query – not working?
  48. How to programmatically add a user to a role?
  49. How to assign an additional/extra/second user-role to multiple users (of a specific user-role)
  50. How to add follow functionality to multi-author wordpress site?
  51. Search multiple meta keys at once
  52. ACF Upload Image in front-end with custom form
  53. How to customize wp_signon()
  54. Is it possible to get a user with just the password field?
  55. How to add country drop down menu to the user profile?
  56. Users roles, make a page belonging to multiple users
  57. Add custom fields to the user profile
  58. stop login if user_status equal zero
  59. How can i create an array user meta?
  60. Updating user meta
  61. create shortcode to list users with specific meta key value
  62. wordpress user roles are not working
  63. Displaying different in-page content to cliente/admin
  64. Restrict Access to Posts based on Custom User and Post Meta Data
  65. User capability for editing their own comments
  66. What are some best practices for user exit strategy?
  67. Is there a way to identify a user in a custom REST API method? [duplicate]
  68. Problem with automatic role change through cron job
  69. Allow Contributors to Upload Files
  70. User description only displayed for logged user
  71. The Simple and Correct Way to Add User Meta
  72. Assign random (and unique) user meta upon registration
  73. Load user by specific role
  74. Display the line breaks in user bio without using html
  75. Get user by meta key – WP multi site
  76. Custom capability for a single user
  77. New User Save Filter
  78. Get users with different roles and call function on each of them (user_meta)
  79. Using my own user table
  80. Editor role can only create/edit/delete users who have one of two roles
  81. Can I add a unique code for each user based on the location?
  82. Getting user data via ajax
  83. Find count of WordPress users by role and search string for user name
  84. wp_get_current_user Not working
  85. Why does user_can return false for a capability during plugin deactivation?
  86. user and usermeta table not found
  87. Button for users to upgrade their user role + Button to show current user role!
  88. UserMeta Changes Meta Value for Post ID
  89. Restrict Access to the User Profile
  90. Username has been exposed
  91. How to get only 1 role from user
  92. Front end login and page restriction
  93. User “none” role
  94. Get author meta of all writers
  95. i need to let a user to add a role from a frontend form
  96. Limit user access to installing/configuring a plugin?
  97. Increase by one the user counter on specific role
  98. How to create a specific role to manage users
  99. Cant edit profile from frontend
  100. Export user data from Squirrly’s Starbox plugin?