WordPress.org

Make WordPress Core

Opened 3 years ago

Last modified 9 months ago

#17326 new enhancement

Allow new user registrations to be moderated

Reported by: Viper007Bond Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version: 3.1
Component: Users Keywords: needs-patch
Focuses: Cc:

Description

Summary

When registration is open, have the option to require manual approval of user accounts before they are granted default role status.

Details / Suggested Implementation

Create a new user role ("Moderated"?) which for all intents and purposes is the same as "Subscriber" (read capabilities).

If opted into, user moderation would assign new users this new role. Administrators would be able to see these users listed under the Users list and click an approve link which would change their role to the default user role (as per the General Settings).

This would also make it easier for plugins to implement private blogs while having open user registration.

See also: #12030

Change History (4)

comment:1 follow-up: scribu3 years ago

If you have the default user role set to 'Subscriber', then what advantage would there be to having an identical 'Moderated' role?

comment:2 in reply to: ↑ 1 Viper007Bond3 years ago

Replying to scribu:

If you have the default user role set to 'Subscriber', then what advantage would there be to having an identical 'Moderated' role?

The advantage is certainly less with that set as the default role, but it does provide a way to keep track of who is a legitimate user and who is a potential spammer.

The other thought behind this is making it easier to implement private blogs, either in core or a plugin. Sure, a plugin could create a custom role on it's own for this purpose, but it'd be nice to have a standardized method to do this.

I guess this ticket is a "throw it against the wall and see if it sticks" one. :)

comment:3 sillybean9 months ago

  • Cc steph@… added

This would be hugely helpful for bbPress and BuddyPress, where new users can immediately start spamming the forums and activity streams.

comment:4 nullvariable9 months ago

There are several plugins that offer this functionality.
Examples:

If this were to be added to core I would suggest some other form of flag and adding the user as the default role. Then the flag could be run against the user permissions checking instead of creating an additional role. Creating an extra role would likely break the setting for the default role to add users @

Settings > General > New User Default Role
Note: See TracTickets for help on using tickets.