Consider adding custom capability instead of using manage_options for Log page

I noticed that pretty much all of the functionality exposed in the WP Admin is behind the “manage_options” capability, which makes sense since the WordPress Admin/Super Admin roles have that, but this causes us some difficulty because it is quite common for us to need to unlock a user/IP after they have locked themselves out.

Due to the fact that this is a regular occurrence (we have and older clientele who often get confused about their passwords), we want our customer service employees who answer the phone calls and emails to be able to do these unlocks on the Logs page. However, the only way your plugin allows this is if we our customer service employees were granted Administrator role, which seems like overkill. They are currently in the role of Shop Manager (from Woocomerce) and we aren’t interested in giving them the ability to reconfigure the entire site with admin priviledges. Plus since we run Woocommerce we have PCI-DSS rules and we really try to limit users to what they need.

With all that said I wonder if you would consider updating this plugin so that it uses a new, custom capability to allow access to the “logs” page and allow users to unlock a user/IP? The codex discusses these custom capabilities here. From my perspective this capability should be given to Admin/Super Admin, and also to the Woocommerce role of Shop Manager. also users that use a permission-editing plugin like User Role Editor could control who has access to the Logs page.

And for clarity, it is really just the Logs page that I think should have it’s own permission/capability. The other pages/tabs in the admin ui make sense to be associated with the manage_options capability IMO.