WordPress.org

Make WordPress Core

Opened 4 months ago

Last modified 4 months ago

#47338 new defect (bug)

is_super_admin() should check a different capability

Reported by: lllor Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version:
Component: Role/Capability Keywords: needs-patch
Focuses: multisite Cc:

Description

Currently is_super_admin() returns true in case the user has the delete_users cap (in case of a single site).
Since admins may want to delegate users managemente capability, IMHO a more appropriate capability to check is 'activate_plugins' or, better, check more than a single capability.

Change History (2)

#1 @johnbillion
4 months ago

  • Version 5.2 deleted

Related: #37616

#2 @SergeyBiryukov
4 months ago

  • Component changed from General to Role/Capability
  • Focuses multisite added
Note: See TracTickets for help on using tickets.