How can I prevent certain custom roles from seeing other custom roles on the user list page?

Method 1, SQL

Notes about your SQL

[Unknown column 'wp_usermeta.meta_key' in 'where clause']

This is solved by adding this to the JOIN part of the query:

JOIN wp_usermeta ON ( wp_usermeta.user_id = wp_users.ID )

You could check the value of the JOINS and, if false === strpos( 'wp_usermeta', $joins ), adding it yourself.

When getting all users, my guess is that WordPress doesn’t join to wp_usermeta since it doesn’t need to deal with capabilities.

Method 2, altering the query object

Maybe using ::set is the correct way and I am calling it incorrectly?

Bingo! You’re calling ::set statically, when it should be called as a method of the object:

$user_search->set('exclude', $users);
$user_search->set('role', 'user');

In PHP, :: denotes a static method call, or functions that are part of the class definition, while -> is used to operate on methods that are part of the class instance. You often see this notation used to talk about method names SomeClass::Method(), which can be confusing – it’s not necessarily saying that you use ::Method to call the method, but rather it’s visually trying to represent it as a method of that class. Typically, on instantiation, you’d do this:

$obj = new SomeClass();
$obj->Method();

Unless the method is declared static, in which case

$obj::Method();

Would be correct.

Not good answer

You can do this with the load-(page) hook and CSS. Unfortunately, there doesn’t seem to be a good way to do this with filters that I’ve found yet.

To do this with CSS, you can do something like this:

add_action( 'load-users.php', function(){

    if ( can_see_editors() ) {
        return;
    }

    echo <<<HTML
<style>
#wpbody ul.subsubsub li.editor {
    display: none;
}
</style>
HTML;
});

Replace the first method in the if with your logic for users who can see the TDF Admin. If they can’t, it continues down to render CSS to the page hiding the element – in your case, highlight the “TDF Admin” filter and inspect it to find it’s CSS class name (as opposed to li.editor).

This fix is pretty weak – anyone can still inspect the page and reveal the link, and nothing is preventing them from altering the URL to point to the URL filtering TDF administrators.

Related Posts:

  1. Getting users by specific capability, not role
  2. Editor can create any new user except administrator
  3. Remove Ability for Other Users to View Administrator in User List?
  4. Groups of capabilities: users with multiple roles?
  5. User-edit role setting distinct from wp_capabilities? [closed]
  6. How to let contributors to create a new revision(draft) editing their published posts
  7. Disallowing Users of a Custom Role from Deleting or Adding Administrators?
  8. How to update user role without logout
  9. How to check user role without using current_user_can()
  10. Do not allow users to create new posts and pages
  11. \WP_User Object | What’s the Difference Between {caps} and {allcaps}?
  12. How to enable the theme editor cap for an editor role?
  13. How to assign capabilities to user NOT to User Role
  14. How-to Delay The Capability To Publish Posts?
  15. Is there a simple way to manage capabilities per user?
  16. Get User Role by ID not working
  17. Are User Levels Still Currently Used?
  18. Remove Capabilities from WP admin for specific user role
  19. Add a role and give admin priviledges
  20. Where are $current_user->allcaps set?
  21. How change user type from contributor to author
  22. What’s the correct way to add capabilites to user roles?
  23. Can I Create a Second Admin Level User Role?
  24. Assigning multiple or additional capabilities to specific users or how to create additional roles like bbpress roles?
  25. how do I add role and capability after I create a new user
  26. SQL to set Display Name to First Name + Last Name
  27. How to make WordPress ‘editor’ role to list/view/add/edit users only with the role ‘author’?
  28. Find count of WordPress users by role and search string for user name
  29. fine-grained capabilities for user related capabilities
  30. Disabling user capability to edit_posts or delete_posts in the front-end
  31. Groups roles & capabilities
  32. Subscriber role – blank page
  33. current_user_can() returning true for capability when the user and role do not have the capability
  34. Show only users with the same role in Dashboard user list
  35. Getting a List of Currently Available Roles on a WordPress Site?
  36. How to allow an user role to create a new user under a role which lower than his level only?
  37. List users by last name in WP_User_Query
  38. What’s the difference between the capability remove_users and delete_users?
  39. alphabetically order role drop-down selection in dashboard
  40. How to hide media uploads by other users in the Media menu?
  41. Show admin bar only for some USERS roles
  42. Wp_User_Query not sorting by meta key
  43. pre_user_query meta_query admin user list
  44. Prevent user creating new users with specific roles
  45. How to stop a user from updating the post date
  46. BuddyPress | Check if user is in current group [closed]
  47. Return ID of authors who have at least one post
  48. Getting users who registered 360 days from current date
  49. Querying Email Addresses for a List of Users with Same Last Name?
  50. WordPress edit_user_profile_update update secondary role
  51. How to restrict specific post types from being read or added by specific user roles (eg. author)?
  52. How to get the Role Name of the current user? (WordPress)
  53. set_role has no effect
  54. WP_User->add_role producing unexpected results
  55. How to use search_columns in WP_User_Query?
  56. How do I list in the backend all users that were assigned to a custom role?
  57. How to query users who have empty first_name?
  58. How to add local users to wordpress without email password?
  59. WP User Query fails when searching meta queries and search columns
  60. Managing Users and Creating Groups [closed]
  61. Restricted registrations or removing the ability to edit your password/email
  62. Error: How to allow the “contributor” to upload media in wordpress
  63. how to know when the user is in specific part of the website and when he leaves that part and display the data in the admin dashboard
  64. Fix permissions for users role
  65. How can I allow an User to publish only 5 posts per month?
  66. Is possible to allow user to login with different role?
  67. Disable user from updating certain posts
  68. How to activate the user search
  69. How do I let contributors edit their posts after being approved once?
  70. How to get a users list by who created them?
  71. Does wordpress support natively the concept of logging-in users? (not admins, but users of the website)
  72. How to copy user_nicename value into user_login
  73. How many people are allowed to use same wordpress account at the same time?
  74. SQL Bulk update all WordPress user’s nicknames to firstname + lastname format
  75. How to hide user profile fields based on the role of the viewed user?
  76. Allow Users to Modify Some Values of Assigned WordPress Pods [closed]
  77. Customising “user ids” and add to ‘user’ panel in the admin area
  78. How to hide some users to unlogged users [closed]
  79. List all users and current week entries
  80. Redirect admin 403 “Cheatin uh?” admin pages
  81. Privilege to recover trashed posts
  82. Get Authors Role
  83. WordPress user role with create user capability?
  84. Editor role can only create/edit/delete users who have one of two roles
  85. User can’t search himself on rest api
  86. Allow a user or role to view drafts and previews, but not other admin privileges?
  87. How to get image path from id using SQL
  88. Update user role for expired membership
  89. Cannot update newly added User field using wp_update_user
  90. Hook into add_user_role and update based on new and removed roles
  91. Create relationships between users or user roles
  92. Updated user role inncorrect when using wp_get_current_user()
  93. User Permissions on custom post type
  94. Custom User Role: Can Edit Own Page, Cannot Create New
  95. Show user details only
  96. A different role for each site in a multisite
  97. Access level seems to have gone from admin to editor
  98. Front end login and page restriction
  99. Limit roles displayed in users.php depending on custom role
  100. i need to let a user to add a role from a frontend form