• I’m working on a plugin that creates a custom post type and an associated user role.

    The cpt does not have a public facing side.

    Also only want to show the CPTs to the publisher and administrator.

    So basically what I have so far in it’s current state:

    However with this configuration merchants are able to see others posts and the administrator can not see the cpt.

    
    $post_type = register_post_type('credit_app',
                array(
                    'labels' => array(
                        'name'                 => __( 'Credit Application', $this->plugin_name ),
                        'singular_name'        => __( 'Credit Application', $this->plugin_name ),
                        'menu_name'            => __( 'Credit Applications', $this->plugin_name ),
                        'name_admin_bar'       => __( 'Credit Applications', $this->plugin_name ),
                        'add_new'              => __( 'Credit Application', $this->plugin_name ),
                        'add_new_item'         => __( 'Credit Application', $this->plugin_name ),
                        'new_item'             => __( 'Credit Application', $this->plugin_name ),
                        'not_found'            => __( 'Application Not Found', $this->plugin_name ),
                        'all_items'            => __( 'All Credit Applications', $this->plugin_name ),
                        ),  
                    'exclude_from_search' => true,  
                    'publicly_queryable'  => false, 
                    'show_ui'             => true,  
                    'show_in_menu'        => true,  
                    'show_in_nav_menus'   => false,
                    'has_archive'         => false,
                    'supports'            => array( 'title', 'editor', 'author', 'custom-fields' ),
                    'rewrite'             => false,
                    'capability_type'     => 'credit_app',
                    'map_meta_cap'        => true
                    )
                );          
    
    
    $result = add_role('ebf_merchant', __('Merchant'), 
                            array(
                                    'read'                 => true,
                                    'credit_app'           => true,
                                    'edit_credit_apps'     => true,
                                    'publish_credit_apps'  => true
                            )
                    );
    
                    $admin_role = get_role( 'administrator' );
                    $admin_role->add_cap( 'credit_app' );
                    $admin_role->add_cap( 'edit_others_credit_apps' );
    
    

    Also receiving some notices and warnings:

    
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'capability_type' of non-object in //wp-includes/post.php on line 1261
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'capability_type' of non-object in //wp-includes/post.php on line 1262
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'capability_type' of non-object in //wp-includes/post.php on line 1262
    [16-Mar-2018 13:55:53 UTC] PHP Warning:  Attempt to assign property 'capability_type' of non-object in //wp-includes/post.php on line 1262
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'capability_type' of non-object in //wp-includes/post.php on line 1265
    [16-Mar-2018 13:55:53 UTC] PHP Notice: //wp-includes/post.php on line 1280
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'capabilities' of non-object in //wp-includes/post.php on line 1293
    [16-Mar-2018 13:55:53 UTC] PHP Warning:  array_merge(): Argument #2 is not an array in //wp-includes/post.php on line 1293
    [16-Mar-2018 13:55:53 UTC] PHP Notice:  Trying to get property 'map_meta_cap' of non-object in //wp-includes/post.php on line 1300
                                                       
    
Viewing 8 replies - 1 through 8 (of 8 total)
  • Hey mate,
    I think this bit is the issue,

    'capability_type' => 'credit_app',

    look here to see what you can have:
    https://developer.www.ads-software.com/reference/functions/get_post_type_capabilities/

    start with that first and if you still get errors, or undesired results come back.

    Thread Starter Ken Stone

    (@wpstoneblue)

    Thank you Mr Case I will check it out now.

    I’ve been through quite a few iterations of this both with and without the capabilities array, tried using the map_meta_cap filter, you name it.

    Thanks again for the pointer I will check it out now!

    Could be the cloudy weather here in Houston today fogging my brain…

    Thread Starter Ken Stone

    (@wpstoneblue)

    I managed to obtain the opposite of my intent.
    An Author is able to see the CPT and a Merchant is not.

    
    $rpt_arg = array(
                'labels' => array(
                    'name'                 => __( 'Credit Application', $this->plugin_name ),
                    'singular_name'        => __( 'Credit Application', $this->plugin_name ),
                    'menu_name'            => __( 'Credit Applications', $this->plugin_name ),
                    'name_admin_bar'       => __( 'Credit Applications', $this->plugin_name ),
                    'add_new'              => __( 'Credit Application', $this->plugin_name ),
                    'add_new_item'         => __( 'Credit Application', $this->plugin_name ),
                    'new_item'             => __( 'Credit Application', $this->plugin_name ),
                    'not_found'            => __( 'Application Not Found', $this->plugin_name ),
                    'all_items'            => __( 'All Credit Applications', $this->plugin_name ),
                    ),
                'exclude_from_search' => true,
                'publicly_queryable'  => false,
                'show_ui'             => true,
                'show_in_menu'        => true,
                'show_in_nav_menus'   => false,
                'has_archive'         => false,
                'supports'            => array( 'title', 'editor', 'author', 'custom-fields' ),
                'rewrite'             => false,
                'capability_type'     => 'post',
                'map_meta_cap'        => true,
                );  
                    
            $post_type = register_post_type('credit_app', $rpt_arg);
            
            $caps = get_post_type_capabilities($rpt_arg);
    

    caps gets set to:

    
    caps: stdClass Object
    (
        [create_posts] => 
    )
    

    add_role I have set to:

    
     $result = add_role('ebf_merchant', __('Merchant'), 
                array(
                    'read'                     => true,
                    'edit_credit_app'          => true,
                    'read_credit_app'          => true,
                    'delete_credit_app'        => true,
                    'publish_credit_apps'      => true
                )
            );
    
    

    which gives this:

    
    merchant_role: WP_Role Object
    (
        [name] => ebf_merchant
        [capabilities] => Array
            (
                [read] => 1
                [edit_credit_app] => 1
                [read_credit_app] => 1
                [delete_credit_app] => 1
                [publish_credit_apps] => 1
            )
    
    )
    
    Thread Starter Ken Stone

    (@wpstoneblue)

    Actually this makes sense because I have the type set to ‘post’
    I don’t want Merchants being able to do anything except view/edit the CPT. So since I have capability type set to ‘post’ the Merchants can’t see it?

    And an Author can ‘post’. So maybe I need to look again at

    
    'capability_type'     => 'post',
    

    maybe try adding capabilities to all roles you want to be able to edit that custom post type and see if it works

    function add_custom_caps() {
        $roles = array('ebf_merchant', 'editor','administrator');
        foreach($roles as $the_role) {
            $role = get_role($the_role);
            $role->add_cap( 'read' );
            $role->add_cap( 'read_credit_app');
            $role->add_cap( 'read_private_credit_app' );
            $role->add_cap( 'edit_credit_app' );
            $role->add_cap( 'edit_others_credit_app' ); //maybe not?
            $role->add_cap( 'edit_published_credit_app' );
            $role->add_cap( 'publish_credit_app' );
            $role->add_cap( 'delete_others_credit_app' ); //maybe not?
            $role->add_cap( 'delete_private_credit_app' );
            $role->add_cap( 'delete_published_credit_app' );
        }
    }
    add_action('admin_init', 'add_custom_caps', 5 );
    Thread Starter Ken Stone

    (@wpstoneblue)

    Pretty close to what I’m looking to achieve only one thing is that Merchant_1 is able to see Merchant_2, etc. in the admin list of the CPT posts, but they can not read, edit, delete, etc.

    I tried many combinations of capabilities but nothing seems to affect that. Possibly maybe I can hook into the admin table that displays the CPT and only output a row if the publisher matches the current user or is an administrator.

    remove_role('ebf_merchant');
            $result = add_role('ebf_merchant', __('Merchant'),
                array(
                    'edit_credit_app'                 => true,
                    'edit_credit_apps'                => true,
                    'edit_published_credit_apps'      => true,
                    'delete_credit_app'               => true,
                    'delete_published_credit_apps'    => true,
                    'publish_credit_apps'             => true,
                )
            );
    
            $admin_role = get_role( 'administrator' );
            $admin_role->add_cap( 'read_credit_app' );
            $admin_role->add_cap( 'read_credit_apps' );
            $admin_role->add_cap( 'edit_credit_app' );
            $admin_role->add_cap( 'edit_credit_apps' );
            $admin_role->add_cap( 'edit_others_credit_apps' );
            $admin_role->add_cap( 'edit_private_credit_apps' );
            $admin_role->add_cap( 'edit_published_credit_apps' );
            $admin_role->add_cap( 'publish_credit_apps' );
            $admin_role->add_cap( 'delete_credit_app' );
            $admin_role->add_cap( 'delete_others_credit_apps' );
            $admin_role->add_cap( 'delete_private_credit_apps' );
            $admin_role->add_cap( 'delete_published_credit_apps' );
    
    
    $rpt_arg = array(
                'labels' => array(
                    'name'                 => __( 'Credit Application', $this->plugin_name ),
                    'singular_name'        => __( 'Credit Application', $this->plugin_name ),
                    'menu_name'            => __( 'Credit Applications', $this->plugin_name ),
                    'name_admin_bar'       => __( 'Credit Applications', $this->plugin_name ),
                    'add_new'              => __( 'Credit Application', $this->plugin_name ),
                    'add_new_item'         => __( 'Credit Application', $this->plugin_name ),
                    'new_item'             => __( 'Credit Application', $this->plugin_name ),
                    'not_found'            => __( 'Application Not Found', $this->plugin_name ),
                    'all_items'            => __( 'All Credit Applications', $this->plugin_name ),
                    ),
                'exclude_from_search' => true,
                'publicly_queryable'  => false,
                'show_ui'             => true,
                'show_in_menu'        => true,
                'show_in_nav_menus'   => false,
                'has_archive'         => false,
                'supports'            => array( 'title', 'editor', 'author', 'custom-fields' ),
                'rewrite'             => false,
                'capability_type'     => array('credit_app','credit_apps'),
                'map_meta_cap'        => true,
                );
    
            $post_type = register_post_type('credit_app', $rpt_arg);
    
    
    Thread Starter Ken Stone

    (@wpstoneblue)

    Actually just looking at the ‘supports’, probably don’t need editor.

    A customer fills out a form to publish a credit_app and the publisher is based on what they enter or by a query string in the URL so the CPTs are published by random people on the front end. So probably I just need title, author, and custom-fields.

    Thread Starter Ken Stone

    (@wpstoneblue)

    I ended up using the pre_get_posts hook:

    
    $this->loader->add_action('pre_get_posts', $plugin_admin, 'query_set_only_author');
    
    

    As time permits I’ll clean up the post counts at the top of the table

    
     public function query_set_only_author($query){
    
                    global $pagenow;
            
                    if('edit.php' != $pagenow) return $query;
                    
                    if( is_admin() && ProtectTheInnocent_Public::is_merchant() ) {
                            $curr_usr_id = get_current_user_id();
                            $query->set( 'author', $curr_usr_id );
                            //add_filter('views_edit-post', 'fix_post_counts');
                            //add_filter('views_upload', 'fix_media_counts');
                    }
                    
                    return $query;
                    
            }
    
    
Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘Custom Post Type and User Role’ is closed to new replies.