Give a temporary limited admin. access to themes designers, plugins developers and support agents.
The plugin is simple and clean, it helps the administrator to create a user with a temporary access and choose which pages in your admin area which you don’t want the user to access. send the details to the user and when he finished his task, you can easily deactivate the account and activate it later.
The plugin will allow you to select admin menu items that you want to restrict for the created admin. Not only the plugin will hide the menu item from the admin but it also will block the page if they access it in some other way.
You may don’t want to give access indefinitely, the plugin allows you to set an expiration time for the restricted admin account. After the account expires, the account will no longer be able to login into the admin dashboard. Moreover, you can always extend the expiry time or change it.
Hide Admin Bar
WordPress offers an admin bar to provide quick access to some pages or to perform some actions. Using the plugin, you can hide the admin bar links at the top of the page will be hidden in both the frontend and admin areas.
You can always disable the restricted admin account at any time. For example, if you gave a developer access to fix a bug or install a theme, when they finish the task you can disable their account. This will block login in using the account but it will retain the account’s information in case you wanted to give them access in the future.
Plugins Internal Pages
Take more control and restrict access to plugins’ internal pages. For example, you would like to give access to the WooCommerce Settings page, but you do not want the account to see the Payments Gateways tab. Currently, the plugin supports WooCommerce, Easy Digital Downloads and BuddyPress. In the future, we will add support for more plugins.
No Password Login
Add some convenience when sending access to the user, you can generate a secure login URL for the user, and the user will use the link to login into the dashboard without the need for a password. You can also disable login by a password for restricted admins, this will restrict the admin from login in using a password or sending a reset password email.
Keep track of what restricted admins have done while logged in, the plugin will log more than 20 actions such as activating/deactivating/deleting a plugin, switching a theme, deleting a theme, exporting data, publishing/deleting a post and uploading a file.
At any given time, you can force logging out any restricted admin if you no longer need them logged in the admin dashboard. This action will log them out on all logged-in devices and locations.
controlled-admin-accessfolder to the
- Activate the plugin through the ‘Plugins’ menu in WordPress
- In the dashboard, click on
Controlled Admin Access
Contributors & Developers
“Controlled Admin Access” is open source software. The following people have contributed to this plugin.Contributors
Removed the legacy admin menu in Users => Controlled Admin Access.
Fixed: blocking options.php POST requests were preventing other plugins from saving options.
- Fixed: A migration issue that was causing the updating user process not working.
- Fixed: parent_file filter was missing a parameter that prevents correct menu filtering.
- Fixed: prefix ajax actions to prevent any collisions.
- Fixed: Docs link in the plugin’s page was incorrect.
- Added: Prevent restricted admins from editing the plugin’s code in the Plugins Editor.
- Fixed: PHP warning in migrations.
- Fixed: Restricting main admin when creating a user.
- Added: A button to reset the user restrictions.
- Fixed: Unused class declaration has been removed.
- Complete redesign of the plugin’s UI.
- Added: Expiration times: One hour, One Month and One Week.
- FIXED: Admin bar was visible for non logged users.
- ADDED: The admin bar in frontend and admin area is hidden from created users.
- FIXED: some plugins settings pages were not accessibly.
- FIXED: The plugin should not redirect super admin on login.
- FIXED: Access to the settings page for an uncontrolled admin user.
- FIXED: security issues that can grant the created admin uncontrolled access.
- FIXED: Allow access to customization.
- FIXED: Editing and Deleting users links were not working.
- FIXED: Complete sanitizing user inputs in the admin page.
- FIXED: Sanitizing user inputs in the admin page.
- ADDED: Add 15 days option to the User Expiry period.
- FIXED: Add Theme Customize, and Options pages to the not allowed pages.
- ADDED: Allow access to the Plugins editor.
- FIXED: If the user does not have access to the Dashboard page, he will be redirected to his profile.
- FIXED: deleting empty CSS and JS files.
- FIXED: Users with unexpired login were able to login again even after deactivation.
- FIXED: The Your Profile access was not saved correctly.
- FIXED: Redirect to the first accessible page. 404 not found pages were fixed.
- FIXED: ignore menu items of the customizer to avoid menu duplication.
- FIXED: empty user password should not be processed when user is being updated
- FIXED: make activate link green only for the plugin users table
- FIXED: remove warning message for defining scalar constants for php less than 5.6
- FIXED: Users were prevented from accessing post type pages.
- FIXED: Restrict users from editing any other user.
- ADDED: Redirect the user to the first accessible page after login
- FIXED: Add backward compatibility for PHP 5.x
- ADDED: Allow the access to the Plugins page.
- ADDED: Spanish language translations.
- FIXED: Users could access the Plugins page by typing the URL in the browser.
- FIXED: Deactivating users bug.
- FIXED: PHP warning when slecting user roles.
- FIXED: Users and Plugins plugins prevent access when the user has been edited.
ADDED: Our Blog posts widget.
- FIXED: Users and Plugins prevent access.
- FIXED: Display the menu items title.
- Initial Release