The WordPress management system is built on two major concepts of roles and capabilities. A role is capabilities or permissions you can easily assign to WordPress users on WordPress site, while a capability is a particular action that the user is supposed to complete. This WordPress user permission allows you to give specific capability as editing posts or to define links to the user. Six default WordPress user roles consist of: Editor, Contributor, Author, Subscriber, Admin, and Super Admin. These user roles can give access to these capabilities to the user.
Moreover, capabilities such as creating pages, categories, managing WordPress security plugins, moderating all comments, and writing or editing posts can be assigned as well. Every WordPress user has roles assigned to them by WordPress website owners. This limits the user control over the website. WordPress has all the capabilities and role saved in the database.
Contributors' roles can create, read, and delete their tasks, but they can't publish their posts, neither can they upload any media. This means that if a contributor user wants to add some pictures to their posts, then they need someone with media library permissions to do it for them. They cannot add new categories but can add or create new tags. Contributors are limited in comments. They can view the comments awaiting moderation but cannot delete or approve comments. They also don't have access to plugins, settings, or themes.
The super admin role is not available in WordPress single-site, it is only available in WP- multisite installations. This gives the super admin all the capabilities and permissions. All high-level admin can get WordPress user role permissions by WP- multisite. These WordPress multisite capabilities are available to super admins:
- They can easily upgrade all sites on a multisite network
- They can easily assign admins to a single site network
- They can create and delete networks
- They can manage plugins, themes, and network users
Super admins in a multisite network can install themes and manage, enable those themes across the network. Super admins can control these individual sites and have all the WordPress user roles. The admins in the individual network have limited access as they can only activate and view themes that are already installed by super admins. These WordPress security plugins are limited to super admins so they can install the plugins and themes.