How can I allow user to select minimum privilege smartly

You are using the right WP function but unfortunately not passing the right parameter to make this work for you.

current_user_can() accepts capabilities as well as roles as parameters.

In the above you are using roles and not capabilities.

You can use capabilities to make it work.

For example, if you want the minimum privilege role is author your code would look like

if ( current_user_can( 'edit_published_posts' ) ) {
  //do this
}

This will allow all the roles including author to have the privilege and would stop users with roles contributor and subscriber from the access.

You can read the details of roles and capabilities from the codex here.

Related Posts:

  1. How to create a clone role in wordpress
  2. How do I make a draft post accessible to everyone?
  3. How do I programmatically set default role for new users?
  4. Create custom user role (client) that can create another custom user role (employee) of that client
  5. Allow roles below admin to add subscribers only
  6. How to force listing contributors in authors dropdown menu
  7. Allow authors to edit only certain users
  8. How do I allow a specific Role in WordPress 3+ to only see certain plugins?
  9. Allow editors access to added plugins
  10. Temporarily disable user role login and replace with message
  11. Change role after the user has read all the posts in a category
  12. Do custom user roles have any default capabilities?
  13. Filter available WooCommerce payment gateways by role [closed]
  14. How to programmatically add a user to a role?
  15. Can i copy administrator role to another user?
  16. How to change role of all users with a specific role to another role?
  17. I need to assign a role to visitors/guests
  18. How to make an author archive only for certain user role and show related CPT
  19. Allow users to publish child pages of the pages they have access to edit
  20. Is there a way to set the user Role based on email domain
  21. pre_get_posts Remove posts based on meta value with ‘post__not_in’
  22. How to prevent users with “edit_others_posts” capability from editing admin posts
  23. Access on specific pages in wordpress for a specific user
  24. Change the user role after x days
  25. Get (echo) all role names assigned to user
  26. Add Role inherits?
  27. Locking Down WordPress Application Password Permissions / Capabilities
  28. How can I have different groups of editors only allowed to edit certain parent+subpages?
  29. How to let someone preview a draft?
  30. WordPress missing user roles on local dev machine. Live site works fine
  31. Programmatically allow a non-author to edit a post based custom meta field
  32. Are there individual memory allocations for different user roles in WordPress?
  33. How to redirect specific post type with user role
  34. Prevent Editors from Editing/Deleting Admin Accounts
  35. Query users which have same dynamically generated roles as the current user
  36. Membership subscription, change user role when subscription runs out
  37. Pending status by default for a specific role
  38. Getting a role based on a localized role name
  39. How do I restrict user access to plugins?
  40. Change user role after bulk-import
  41. Show metabox for a special role
  42. Admin User Role Unable to See Private Posts
  43. Assigning certain authors to specific editors
  44. Custom capabilities to add, edit, remove users of a particular role only?
  45. Undo User Role Name Change
  46. add_role user capability not working
  47. Limit a user to have access to only specified pages?
  48. How can I promote a user to a network administrator?
  49. read_private_pages capability not working for new role
  50. Restrict custom post content to specific user
  51. List users of an array of roles
  52. Use PHP code to create custom user roles. Call it once?
  53. How can I programattically hide all admin notices for everyone except admin users
  54. How to exclude subscriber from the list in wordpress
  55. Want to know parameters that can be passed to user_can() for access control by user capabilities
  56. Block user roles from accessing the WordPress dashboard
  57. Create sub-administrator role that can do everything except use or see the code editor
  58. Can we hook the Customizer on a post or page on the front of the site?
  59. display user roles in comment form
  60. Is it proper to build a site supporting blog visitors in WordPress?
  61. Removing capabilities from cloned admin role
  62. User role editor – Add download files capability
  63. Retrieve user roles but exclude default roles
  64. Setting an expiration date for wordpress roles
  65. Could we know who published a post on WordPress?
  66. Auto Change WordPress Roles
  67. Error while creating a clone role in wordpress
  68. Custom Plugin – Blacklist/Whitelist domain email and change user role – Suggestions
  69. Change auth_cookie_expiration for specific roles and specific login times
  70. Infinite redirects at front end if logged in user is not an Admin (Toolset Access)
  71. Set user role, if an specific role created an user
  72. Block access to plugins.php for custom role
  73. Allow user to select role from front end edit profile form
  74. How to make WP page accessile only to specific user roles
  75. Remove add post for user role
  76. Restrict Author to post only to a specific category
  77. WordPress – Limit custom/specific user role to only have access to edit the contents of an Advanced Custom Fields Pro Options Page
  78. TCPDF only exports .pdf when user is administrator
  79. How to allow suscriber to access specific pages in dashboard?
  80. Enable plugins for a specific user role
  81. Switch role on submit button
  82. Custom User Role – can’t edit or publish pages?
  83. Dropdown of user roles that depend on variable
  84. Add role selector to custom registration page
  85. Multiple user role on registration
  86. Trying to get new role to have edit permissions for custom content type
  87. Why are all roles assigned to a user when using wp_insert_user()?
  88. Why does user_can return false for a capability during plugin deactivation?
  89. Removing Admin Bar Node Based on Role
  90. Create an email address that forwards to users in role
  91. How to update user role totals
  92. Custom user role doesn’t show up in admin
  93. Welcome email specific to user role
  94. update_user_meta on registration but only for default role type
  95. New folder and file permissions are not correct
  96. How to change user role setting in members plugin so that user can only edit his own post?
  97. Get users by rôle in a list
  98. Role Scoper, don’t allow other users to see pending posts
  99. WordPress show content if current user get spesific role and spesific meta value
  100. WordPress users roles wp-admin