Only allow administrators and editors to access wp-admin

You’re correct in that you should be checking for a capability. However, manage options is only given to administrators by default. You should check against a capability that both editors and administrators have such as delete_others_posts.

function restrict_admin(){
//if not administrator, kill WordPress execution and provide a message
    if ( ! current_user_can( 'delete_others_posts' ) ) {
        wp_die( __('You are not allowed to access this part of the site') );
    }
}
add_action( 'admin_init', 'restrict_admin', 1 );

See roles and capabilities from the codex.

Related Posts:

  1. Only allow administrators and editors to access wp-admin
  2. Restrict Author role to only 3 wp-admin pages
  3. Is WordPress secure enough for a multi-user article directory?
  4. How to check if a user is in a specific role?
  5. How to prevent access to wp-admin for certain user roles?
  6. Check if user is admin by user ID
  7. Restrict admin access to certain pages for certain users
  8. create users to site with specific language
  9. Prevent from deleting any user role but subscriber
  10. What is the capability that permits access to WP-Admin?
  11. Moving wordpress from localhost to server throws admin panel access error?
  12. Displaying which Role the current user is assigned to
  13. How to hide a specific user role option in a user role list?
  14. Adding HTML/Text to Top of Subscriber’s Profile Backend Page
  15. Custom role based users are not able to access wp-admin
  16. How to inhibit dashboard and profile management access to normal users?
  17. Custom roles showing HTML entities in title form field
  18. Users Unable to Access Dashboard/Posts/Pages
  19. Can’t access WordPress as an admin – but I can log in as a user!
  20. Redirect non-admin users away from wp-admin/index.php (main dashboard page) to wp-admin/profile.php
  21. Allow administrators to pick post author on custom post type edit screen
  22. admin_post action not usable if admin access denied to user
  23. Adding Custom Capabilites
  24. Why is unfiltered_upload not working despite being enabled?
  25. Logout USER form backoffice after 30 minutes of inactivity [closed]
  26. I can´t access my admin panel. I tried all possible solutions
  27. Lost administrator privileges and can’t find a fix
  28. Downgrade admin account by mistake
  29. How to set where user is redirected to after logging in at wp-login?
  30. How to remove dashboard access (wp-admin) for author but not disable the capabilities?
  31. Deploying WordPress for clients – what do they have access to?
  32. How to Find The Email of a WP Admin Account
  33. User Capabilities are not available in WP REST permission callback?
  34. Change users.php WP_User_Query
  35. User Roles: How to hide a plugin from showing in WP-Admin?
  36. define two login page url
  37. Newly created user role not displaying on users screen
  38. Admin Page access
  39. How to check if a user is in a specific role?
  40. Not able to access WP Admin, it says “Sorry, you are not allowed to access this page.”
  41. How to logout the current user without notices and warnings?
  42. Give wp-admin access for shop managers
  43. restrict admin panel sections to users
  44. adding existing menu page on new customer user role
  45. Localhost install: Administrator lost administrator access; cannot access Dashboard
  46. WordPress blog fails to open
  47. Is it possible to tell if a user is logged into WordPress from looking at the cookies which are set?
  48. Extend user search in the users.php page to allow for searching by role and excluding specified email domains from the “users search” input box
  49. After Upgrade: $user becomes unknown (id: 0) after successful login?
  50. how to Hide all products except the General Manager role in the WordPress admin panel?
  51. how do I force a single column layout in screen layout
  52. Sortable admin columns, when data isn’t coming from post_meta
  53. wp_list_table search box does not show
  54. How to remove the site health dashboard widget?
  55. Can I rename the wp-admin folder?
  56. What’s the purpose of admin canonical tag?
  57. Copy my user account’s wp-admin dashboard layout to other users?
  58. How to display multiple custom columns in the wp-admin users.php?
  59. WordPress custom permalinks not working on OS X localhost
  60. How to Remove Checkbox for Excerpt Under Screen Options
  61. pre_get_posts Remove posts based on meta value with ‘post__not_in’
  62. Remove order field from Page Attributes box
  63. Restrict dashboard access for specific user roles to specific actions
  64. Disable the administration email address verification (new in 5.3)
  65. https://mydomain/wp-admin redirects to wp-login.php?redirect_to=https%3A%2F%2Fmydomain%2Fwp-admin%2F&reauth=1
  66. How to redirect specific post type with user role
  67. Get which template being in use within WordPress-admin
  68. /wp-admin/ works but website doesn’t load
  69. Add column to pages table
  70. My email address is displaying an email which does not work. What do i do?
  71. Removing Dashboard Menu Items Through The Database
  72. Is there any way to make myself an admin?
  73. Can log as admin but dashboard missing [closed]
  74. WordPress Login redirection according to user role
  75. Customising Word press Admin – Add Post Page functionality to another similar page
  76. How to allow WordPress updates to only one specific administrator?
  77. How can I remove commas when adding tags?
  78. Displaying Title in Title Tag on Edit page?
  79. Cannot change Connection Information in admin interface
  80. How can I remove unwanted word on my WP site?
  81. WordPress blog clone.. wp-admin issue
  82. How to take the help button and link off the dashboard
  83. How do I fix wp-admin error when exporting reusable blocks?
  84. issue with wordpress [wp-admin] redirects, when using kubernetes ingress hosting two wordpress websites using path
  85. Can’t acces login on new site
  86. Infinite redirects at front end if logged in user is not an Admin (Toolset Access)
  87. WordPress Admin Panel Left Sidebar No showing on Post create page
  88. wp-config.php not affecting my site
  89. How to prevent spams from admin-ajax.php file?
  90. Custom user roles are unable to login
  91. After changing Site http to https, can’t access wp login page with a digitalocean hosting
  92. Strange wp-admin problem for all users/adminstrators except the original one?
  93. stop customize.php redirect to login page if admin is not logged in
  94. How can I remove “Add new” button on custom post type
  95. Organising and display thousands of photos in media library
  96. Checkbox not showing as checked on UserProfile (even with checked=”checked”)
  97. Get URL of current featured image with JS in edit post view
  98. Block tools menu in wp-admin?
  99. WordPress Admin: open popup window on a custom button
  100. Cannot Access wp-admin

Leave a Comment

tech