Skip to content

Refresh: Settings: Warn when open registration and new user default is privileged #10251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
shail-mehta wants to merge 11 commits into from
Closed

Refresh: Settings: Warn when open registration and new user default is privileged #10251

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
5c2fae4
Refresh Patch
shail-mehta Oct 14, 2025
9288c4a
Fix PHPCS Error
shail-mehta Oct 14, 2025
d2e315c
Merge branch 'trunk' into refresh-43936-patch
shail-mehta Jan 28, 2026
1152fd7
Update version number for editable_roles parameter
shail-mehta Jan 28, 2026
9bab0b1
Update version number in get_test_insecure_registration
shail-mehta Jan 28, 2026
2285a51
Update version number in role exclusion filter comment
shail-mehta Jan 28, 2026
df7bbc7
Merge branch 'trunk' into refresh-43936-patch
audrasjb Feb 3, 2026
3231eb4
Merge branch 'trunk' into refresh-43936-patch
shail-mehta Feb 13, 2026
2bf754c
Merge branch 'trunk' into refresh-43936-patch
shail-mehta Feb 15, 2026
d63ffe1
Update src/wp-admin/options-general.php
audrasjb Feb 19, 2026
d6960c5
Merge branch 'trunk' into refresh-43936-patch
audrasjb Feb 19, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 40 additions & 0 deletions src/wp-admin/includes/class-wp-site-health.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1882,6 +1882,42 @@ public function get_test_available_updates_disk_space() {
return $result;
}

/**
* Tests if registration is open to everyone and the default role is privileged.
*
* @since 7.0.0
*
* @return array The test results.
*/
public function get_test_insecure_registration() {
$users_can_register = get_option( 'users_can_register' );
$default_role = get_option( 'default_role' );

$result = array(
'label' => __( 'Open Registration with privileged default role' ),
'status' => 'good',
'badge' => array(
'label' => __( 'Security' ),
'color' => 'blue',
),
'description' => '<p>' . __( 'The combination of open registration setting and the default user role may lead to security issues.' ) . '</p>',
'actions' => '',
'test' => 'insecure_registration',
);

if ( $users_can_register && in_array( $default_role, array( 'editor', 'administrator' ), true ) ) {
$result['description'] = __( 'Registration is open to anyone, and the default role is set to a privileged role.' );
$result['status'] = 'critical';
$result['actions'] = sprintf(
'<p><a href="%s">%s</a></p>',
esc_url( admin_url( 'options-general.php' ) ),
__( 'Change these settings' )
);
}

return $result;
}

/**
* Tests if plugin and theme temporary backup directories are writable or can be created.
*
Expand Down Expand Up @@ -2889,6 +2925,10 @@ public static function get_tests() {
'label' => __( 'Autoloaded options' ),
'test' => 'autoloaded_options',
),
'insecure_registration' => array(
'label' => __( 'Open Registration with privileged default role' ),
'test' => 'insecure_registration',
),
'search_engine_visibility' => array(
'label' => __( 'Search Engine Visibility' ),
'test' => 'search_engine_visibility',
Expand Down
10 changes: 7 additions & 3 deletions src/wp-admin/includes/template.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -967,13 +967,17 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post
* Prints out option HTML elements for role selectors.
*
* @since 2.1.0
* @since 7.0.0 Added $editable_roles parameter.
*
* @param string $selected Slug for the role that should be already selected.
* @param string $selected Slug for the role that should be already selected.
* @param array $editable_roles Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit.
*/
function wp_dropdown_roles( $selected = '' ) {
function wp_dropdown_roles( $selected = '', $editable_roles = null ) {
$r = '';

$editable_roles = array_reverse( get_editable_roles() );
if ( null === $editable_roles ) {
$editable_roles = array_reverse( get_editable_roles() );
}

foreach ( $editable_roles as $role => $details ) {
$name = translate_user_role( $details['name'] );
Expand Down
22 changes: 21 additions & 1 deletion src/wp-admin/options-general.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -304,7 +304,27 @@ class="<?php echo esc_attr( $classes_for_button ); ?>"
<tr>
<th scope="row"><label for="default_role"><?php _e( 'New User Default Role' ); ?></label></th>
<td>
<select name="default_role" id="default_role"><?php wp_dropdown_roles( get_option( 'default_role' ) ); ?></select>
<?php
/**
* Filters the roles to be excluded from the default_role option.
*
* @since 7.0.0
*
* @param string[] $roles_to_exclude Array of roles to exclude from the dropdown. Defaults to administrator and editor.
*/
$excluded_roles = (array) apply_filters( 'default_role_dropdown_excluded_roles', array( 'administrator', 'editor' ) );

$editable_roles = array_reverse( get_editable_roles() );

$selected = get_option( 'default_role' );

foreach ( $editable_roles as $role => $details ) {
if ( in_array( $role, $excluded_roles, true ) && $role !== $selected ) {
unset( $editable_roles[ $role ] );
}
}
?>
<select name="default_role" id="default_role"><?php wp_dropdown_roles( $selected, $editable_roles ); ?></select>
</td>
</tr>

Expand Down
Loading