WordPress Access Control Documentation Version 3.1

The complete guide this plugin

First Things First

WordPress Access Control is an access control plugin for WordPress, and was built by Brandon Wamboldt. If you have questions outside of the scope of this help file, require assistance, want to report a bug, request a feature or anything else, please email me or leave a comment on my blog, http://brandonwamboldt.ca/plugins/members-only-menu-plugin/.

Table Of Contents

1. Introduction
2. Requirements
3. Installation & Configuration
4. Settings
   1. General Options
   2. Override Permisisons
   3. Menu Options
   4. Post/Page Default Options
   5. Search/Archive Options
5. Shortcodes
6. Posts/Pages Interface
7. Widgets Interface
8. Nav Menus Interface
9. Changelog
10. Sources and Credits

A) Introduction - top

The purpose of WordPress Access Control is to provide an easy interface to users for restricting access to content. It was designed for use on members sites where not all content should be accessible by the public, such as with organizations or pay-sites.

WPAC gives you the ability to restrict content to members, specific roles, or even non-members on a per-page/per-post basis, or using shortcodes. You can still add restricted pages to the navigation, and by default they will only show up to users with the required access. This is an option however.

WPAC also gives you the ability to customize search/archive pages, completing hiding restricted posts/pages from search results if a user can't access them, showing just the title with a customizable message where the excerpt would be, or showing the title and excerpt.

WPAC now gives admins the ability to set the visibility of certain widgets to members only or non-members only, as well as create member only versions of all WordPress nav menus.

This plugin supports custom post types via an easy to use admin option.

B) Requirements - top

WordPress Access Control has only been tested with WordPress 2.9 and greater. WordPress Access Control requires PHP4 or higher, although PHP5 is recommended.

WordPress Access Control may not work with all themes. If you find are using WPAC with a theme and it's not working well, please contact me with the name of the theme as well as a link to the theme, and your PHP version.

C) Installation & Configuration - top

Installation is simple, just follow these steps and you should have no problems.

1. Upload the wordpress-access-control/ folder included in the zip to your WordPress installation's plugin folder. The default location should be /wp-content/plugins/
2. Login to your WordPress administration panel, located by default at http://your-site-here.com/wp-admin/
3. Click on Plugins on the left menu
4. Scroll down to “WordPress Access Control” and click the "Activate" link
5. Scroll back down to “WordPress Access Control” and click "Visit options page". Alternatively, you can access this from Settings > Members Only
6. Set your default settings. An explanation of the settings can be found below.
7. Finished!

D) Settings - top

Using the settings screen, you can set many default options for the plugin, which is useful for saving time if most of your pages/posts will have similar access settings. Most of these settings can be overwritten on a per-page/per-post basis.

A) General Options - top

Make Blog Members Only
This setting will make the blog page itself, as well as any archive pages restricted to members. Regular pages will still be accessible to non-members however. This setting uses the is_home() and is_archive() functions to determine blog/archive pages.

Members Blog Redirect
This setting is a website address to redirect users to if they try to access the blog or archive pages with the "Make Blog Members Only" setting active. By default, it will redirect to the login page.

Custom Post Types
This setting allows you to enable the Members Only controls for custom post types. This setting only works if the custom post type uses the standard WordPress interface. This option will not be displayed if there are no custom post types.

B) Override Permisisons - top

Always Accessible By
This will override any per-page or per-post settings and allow the specified user groups to always have access to members only content. This was to fix a scenario in which a lesser user such as a Contributor could make content invisible to a higher user such as an administrator.

C) Menu Options - top

Display In Menus
This setting determines how menu items work when a restricted page/post is added to the navigation and a user doesn't have access to it. You can show the menu only if a user has access to it, or you can show it all the time. If you decide to show it all the time, a user who clicks on a menu item but does not have access to view it will be redirected.

D) Post/Page Default Options - top

Default Post State
This setting determines the default option when creating a new post. Public is the default setting and means the post will be accessible to all. Members Only restricts the post to authenticated users, and Non-Members restricts the post to unauthenticated users.

Posts: Only Accessible By
This setting determines the default option when creating a new page for which roles can access the post. This setting is only used if the post is set for Members Only. Roles are managed using plugins.

Default Page State
This setting determines the default option when creating a new page. Public is the default setting and means the page will be accessible to all. Members Only restricts the page to authenticated users, and Non-Members restricts the page to unauthenticated users.

This setting also acts as the default for custom post types.

Pages: Only Accessible By
This setting determines the default option when creating a new page for which roles can access the page. This setting is only used if the page is set for Members Only. Roles are managed using plugins.

This setting also acts as the default for custom post types.

Default Redirect For Members Only Pages
This is the default URL to redirect users to when they attempt to access a restricted page/post.

The link provided here is automatically appended with a redirect_to query argument, so that the page may redirect the user back if they wish.

E) Search/Archive Options - top

Search Options
This setting determines how restricted posts/pages will appear in search or archive pages. This setting uses is_search() and is_archive() to determine use.

If you do not check "Show restricted post excerpts in search results?" the excerpt will be replaced with text from the below options.

The page settings for this setting determine defaults for custom post types.

Search Excerpt (Posts)/Search Excerpt (Pages)
This text is displayed instead of the post/page excerpt in archive/search pages to users without the required access, but only if the post/page is set to now show it's excerpt.

E) Shortcodes - top

There are two shortcodes available for use with this plugin.

A) members - top

[members][/members] will hide the content within them unless the user is authenticated. Also works during searching, so that if a user searches for a term found in the shortcodes, but is not logged in, the page/post will not show up in the results.

role attribute
This shortcode also has an option to specify a specific role, using the following syntax:

[members role="rolename"][/members]

If you want to specify a list of roles that are able to view the content, the syntax uses the or keyword:

[members role="or:author,contributor,editor"]

You can also specify a single role or multiple roles that cannot see it:

[members role="not:guest"]

A) nonmembers - top

[nonmembers][/nonmembers] will hide the content within them unless the user is not authenticated. Also works during searching, so that if a user searches for a term found in the shortcodes, but is logged in, the page/post will not show up in the results.

F) Posts/Pages Interface - top

By default, when you edit/add a new post/page, the control interface should be displayed on the right, directly above the "Publish" box. If you do not see it, please ensure it is set to display under the "Screen Options" panel.

The default interface is very small, and lacks many options. More options will appear once you've checked an option.

If you select "Only accessible by members?", several new options appear. The default values are governed by the options screen, and an explanation of the options are available above as well.

If you select "Only accessible by non-members?", one new option appears. This is the URL to redirect a user to, such as the my profile page or even a logout page.

G) Widgets Interface - top

Now, when you add certain supported widgets to a widget area, you have the option to select the visibility of the widget as members only or non-members only. Currently, the only supported widget is the Custom Menu widget. If you would like more widgets added, please contact the developer.

The additional options are limited. You can select "Only visible by members" and the widget will only be displayed to users who are logged in. If you select "Only visibile by non-members" the widget will only be displayed to users who are NOT logged in.

H) Nav Menus Interface - top

Admins now have the ability of creating a second version of any menu that their theme supports, which will only be visible to logged in users.

The second menu in the list, "Primary Menu - Members Only" is automatically generated by this plugin. If you assign it a menu that is not empty, it will be displayed instead of it's regular version to any logged in user.

I) Changelog - top

Version 3.1.4 - August 30, 2012

• Added not/or keywords to the role option of the members shortcode, syntax: [members role="not:guest,banned"][/members] and [members role="or:editor,author,contributor"] (Thanks to Dave Amphlett for the idea)

Version 3.1.3 - August 30, 2012

• Fixed a PHP warning about load_plugin_textdomain using a deprecated argument
• Fixed a PHP error if no nav menu is set
• Added a role option to the members shortcode (Use like [members role="administrator"][/members])

Version 3.1.2 - December 7, 2011

• Fixed a PHP error when there are no nav menus

Version 3.1.1 - December 7, 2011

• Fixed a bug that might cause memory issues

Version 3.1 - December 7, 2011

• Custom Post Type section is no longer displayed on the options page if there are no custom post types
• Members Only Blog now properly restricts the entire site
• Admins now have the ability to override permissions to prevent lower level users from denying admins access to posts
• Admins may now create menu widgets that are only visible to members or non-members from the Widgets screen
• Admins may now create WordPress nav menus that are only visible to members
• Updated the documentation
• Added new screenshots

Version 3.0.5 - June 6, 2011

• Fixed the PHP issue properly this time

Version 3.0.4 - June 6, 2011

• Fixed a PHP issue if a second argument wasn't supplied to several functions

Version 3.0.3 - June 5, 2011

• Added an option to apply members settings to all children of a page
• Fixed a bug where the page navigation for posts/archives was broken
• Fixed a bug where themes that used the_content on archive/search pages could show all the contents of a post instead of the no excerpt message

Version 3.0.2 - June 2, 2011

• Added do_shortcode commands to allow nested shortcodes in the [members] and [nonmembers] shortcodes

Version 3.0.1 - June 1, 2011

• Fixed an issue where a members only blog with no redirect link specified would cause an infinite loop

Version 3.0 - May 26, 2011

• Added an admin options page
• Added an option to allow pages to show up in menus even if a user cannot access them
• Added support to make an entire blog members only
• Added options to set the defaults of all options for pages and posts
• Added support for posts
• Added support for searching/archives
• Added better support for custom post types
• Added a redirect_to argument even when using custom redirect links
• Added [member][/member] and [nonmember][/nonmember] shortcodes

J) Sources and Credits - top

• I'd like to thank the WordPress community for making such an awesome development platform.
• Made use of the WordPress codex extensively http://codex.wordpress.org/