Due to WP admin architecture this would be really inconvenient list to compile and maintain reliably. My best educated guess is that many (but possibly not all and not just) of these files would need to require admin bootstrap (wp-admin/admin.php) to function. I ran a quick search on respective directive with following results: C:\server\www\dev\wordpress\src>ack –files-with-matches … Read more
You set a custom url after rewrite from a login. A small example, usable in a template of the theme to login. <?php $redirect = esc_url( ‘your-url’ ); if ( ! is_user_logged_in() ) { $link = ‘<a href=”‘ . get_option( ‘siteurl’ ) . ‘/wp-login.php?redirect_to=’ . home_url( “https://wordpress.stackexchange.com/” ) . ‘”>’ . esc_attr__( ‘Login’, ‘documentation’ ) … Read more
#Update: Wow, I feel like such a buffoon… haha. WP_Role::has_cap I can’t (role) my eyes hard enough. $caps = array( ‘cap_1’, ‘cap_2’, ‘cap_3’ ); $roles = array( ‘administrator’, ‘editor’ ); foreach( $roles as $role ) { if( $role_object = get_role( $role ) ) { foreach( $caps as $cap ) { if( !$role_object->has_cap( $cap ) ) … Read more
Here’s my approach. Bear in mind that it covers the basic needs you’ve described but could be easily expanded into more robust solution. Few steps to follow (all code goes to your functions.php): 1. Save company name as user meta The first thing we need to do is assigning a company name to a user … Read more
If I understand you correctly, you want all attachment status set to ‘publish’ on upload in stead of ‘inherit’ to prevent that status changing when the parent post status changes. Let’s take a look at wp_insert_post if it offers any possibilities. First on line 3483 (current version) the post status is set to ‘inherit’ in … Read more
Message you quoted is being generated by members_content_permissions_protect() function. By default it is used as a filter on the_content() and the_excerpt() functions. Since your custom template doesn’t use these – there is no case for function to run. Try something like this in template: $content=”Content to protect”; echo members_content_permissions_protect( $content ); Another idea: $protected = … Read more
Wp-content contains plugins and themes. So, if I can read and write into those files, I could add malicious code very easily. This malicious code can then do interesting things. You are basically inviting a lot of trouble. As for not understanding permissions: http://www.thegeekstuff.com/2010/04/unix-file-and-directory-permissions/ http://codex.wordpress.org/Changing_File_Permissions
I think setting a cron job to automatically turn permissions on and off might be a bit of an extreme workround 🙂 I think it is probably worth spending the time to set up working permissions on your server, rather than a cron job which could introduce other problems. This has been a good resource … Read more
This sounds like it’s probably caused by mod-evasive (or similar) plugin in Apache (or similar), blocking multiple consecutive requests as it thinks you are trying to run a denial of service (DOS) attack against the server. Try disabling any security plugins (Apache / web server ones, not WordPr
Standard permissions for most WordPress installations is 755 for directories and 644 for files. For media uploads, auto plugin installation and updates the directories need to be owned by the same user PHP is running under. Usually this is nobody:nobody or www-data:www-data.