Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Plugin audit & permissions troubleshooting #22

Open
MirandaEcho opened this issue May 22, 2020 · 6 comments
Open

Plugin audit & permissions troubleshooting #22

MirandaEcho opened this issue May 22, 2020 · 6 comments
Assignees
@joshdarby
Labels
High Priority
Milestone
FFFJ-002

Comments

@MirandaEcho
Copy link
Collaborator

Audit only, see separate issue for updates/clean up

Roddy's account permissions for plugin management are broken.
@MirandaEcho MirandaEcho added this to the FFFJ-002 milestone May 22, 2020
@joshdarby joshdarby self-assigned this May 22, 2020
@joshdarby
Copy link

I'm going to guess that the reason he's not able to manage plugins is because this all the wp_capabilities meta value for his user is:

a:1:{s:13:"administrator";b:1;} as opposed to our largoproject user which has

a:10{s:13:"administrator";b:1;s:15:"install_plugins";b:1;s:16:"activate_plugins";b:1;s:12:"edit_plugins";b:1;s:14:"install_themes";b:1;s:13:"switch_themes";b:1;s:11:"edit_themes";b:1;s:11:"update_core";b:1;s:14:"update_plugins";b:1;s:13:"update_themes";b:1;}

@joshdarby
Copy link

☝️ the above is strange because all of those capabilities are added when adding a new test admin user

@joshdarby
Copy link

joshdarby commented May 22, 2020
edited
Loading

Plugins active:

  • Askimet
  • Classic Editor
  • Client Hosting Manager
  • Disqus
  • Insert Headers and Footers
  • No-Nonsense Google Analytics
  • Redirection
  • Yoast SEO

Plugins inactive:

  • Better WordPress Google XML Sitemaps
  • Co-Authors Plus

We can probably remove CAP (unless they plan to use it) and Insert Headers and Footers since it's empty. We can also probably remove Client Hosting Manager

This was referenced May 22, 2020
Open
Merged
@joshdarby
Copy link

@MirandaEcho I had Flywheel run this WP CLI command on their staging site:

wp cap add administrator install_plugins activate_plugins edit_plugins update_plugins

Can we have Rody try and log in on staging and see if that fixed it? Or am I allowed to update his password on staging and test myself?

Staging url: http://ffj-online.flywheelstaging.com/

@joshdarby
Copy link

Looks like that worked on staging so we can have Flywheel run that command on Tuesday for production.

@joshdarby
Copy link

joshdarby commented May 26, 2020
edited
Loading

Since Flywheel refuses to run the above command on prod without explicit approval from the site owner, @MirandaEcho here are our options for fixing the permissions issue with Rody's account:

  1. ask Rody to log into his Flywheel account and ask them to run the command
  2. download the prod db, make the update ourselves in the downloaded copy, re-upload the db to prod (has potential for downtime)
  3. modify the live db and just replace the specific string in the db with the new string needed (also has potential for downtime if messed up)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@joshdarby joshdarby

Labels
High Priority
Projects
None yet
Milestone
FFFJ-002
Development

No branches or pull requests
2 participants
@joshdarby @MirandaEcho