Make WordPress Core

Opened 4 weeks ago

Last modified 8 days ago

#51703 new enhancement

Add fine grained capabilities for managing app passwords

Reported by: TimothyBlynJacobs Owned by:
Milestone: 5.7 Priority: normal
Severity: normal Version: 5.6
Component: Application Passwords Keywords:
Focuses: rest-api Cc:


Currently, app passwords check the edit_user meta capability. Ideally, we'd introduce a set of more fine grained capabilities for managing app passwords. This might be as simple as an manage_app_passwords meta cap that follows the same mapping as edit_user, or we could be more fine-grained and have list_app_passwords, create_app_passwords, etc...

Change History (2)

#1 @carike
4 weeks ago

Watching because I'm interested to see if there are any good alternatives to introducing new primitive caps.
If it is time to introduce new primitive caps (perhaps in a "staggered" way so that a DB upgrade is not needed), the privacy component and media are also sorely in need of new caps, so co-ordination on this would be great.

#2 @TimothyBlynJacobs
8 days ago

  • Component changed from Login and Registration to App Passwords
Note: See TracTickets for help on using tickets.