I understand that IVT > Settings > Permissions is for plugin admins. This request is to add User/Viewer Permissions.
User Permissions should be based on Capability, not Role. This way we can link video viewing access to membership, subscriptions, and other non-admin guest access.
The current settings page for Permissions says:
> User Permissions
> Configure which user roles can access and configure plugin’s settings.
I see this has caused some confusion which is easily remedied by changing the word ‘User’ to ‘Management’. The Roles are for video management.
The text “Choose which user roles…” fits common WP usage so personally I think that shouldn’t change.
With that section clearly recognized as Management Permissions and Management Roles, the new section I propose for actual User Permissions becomes very clear in its purpose.
Actually, we tend to over-Use the term User, and a better term here might be Viewer.
In summary: In the Permissions page I propose changing User Permissions to Management Permissions, User Roles to Management Roles, and adding a Viewer Permissions section.
Side notes:
Frankly, our friends in DEV development often confuse Roles with Capabilities. We see a lot of features and access based on a hard-coded “manage_options” capability, where specific capabilities should be created to support specific features.
The permissions to maintain videos should be based on Capabilities as well, not role.
Someone who has access to video maintenance should not by default have access to text/content like an Editor.
Similarly, someone who has the ability to contribute content should not have the ability to modify site videos.
And we should not need to create a special Role for Video Manager.
If permissions here were based on capability, then we could assign that capability to whatever roles we wish.
I won’t ask in this request for the Management Permissions area to be changed to being Capability-based, but the ability to assign permissions based on role AND capabilities should be a part of all permissions settings for all plugins.
Please don’t make capability selection based on a dropdown or checkboxes. If configuration settings are moved to a different system, it might not yet have the same capabilities configured and this UI shouldn’t concern itself with “role or capability doesn’t exist” conditions. Just let us enter what we want, perhaps in a text area in addition to the option to use limited checks and dropdowns, and we’ll manage the details elsewhere of whether or not those permissions exist. Don’t make us do something elsewhere before we come back to these config settings – that might not work with our workflow at that moment and it serves no practical purpose to force the situation on us. I feel the same about role selection checkboxes but am not asking for any changes.
With my ongoing mantra of liberally adding and documenting hooks in these plugins, I really wish DEV would create and document access hooks in all places that permissions are checked, so that we can ignore the entry-level UI settings and control access more rigorously in code. Really, this is very easy: Just add filter hooks as a regular part of development, and point us to them in docs and forum support, and it won’t be necessary to put requests on forever-hold because there are no resources to allocate to make big UI changes.
Thanks.