New to the community? Start here

Why are so many "user" plug-ins reliant on the admin menu?

Sorry if I am missing something or if I come across negative, I don’t mean to be.

I have just started to drag a couple of my sites through Beta and finding wpmudev’s plugins a great help in this.

However, it seems that (IMHO) there is too much focus on users (not hosted site owners) having to use the admin menu.

Couple of examples:

Wordpress Friends Plugin: “Search for and add friends by navigating to: Admin > Friends > Find Friends”

Why can’t this be a widget and perhaps even an addon to allow people to “friend” others directly from posts?

WordPress InvitePlugin: “Invite ability is available under any Site Admin > Users > Invites.”

I know that many users that also have hosted websites would use this to invite people to their own blog but if this was a widget, normal users could use it to invite their friends to the site they are using.

There are many examples like this… They are very useful and well written but I may just not be seeing this right. Here’s a textual description (for want of a better phrase) of the flow diagram of how users generally progress on the sites I have owned, maintained or used over the past 20 years (including some land-line based BBSes).

Visitor joins main hub site (www.somesite.com), has a look around and signs up.

The visitor posts some messages, asks questions and generally acts like a user.

*Here is where we get a fork in the road*

Left > User stays as a user and continues to post and read, maybe look at hosted sites (otherblog.somesite.com).

Right> After a while, this user decides they might like to make a site, they apply or whatever is needed and they start their own site and become a mini-admin *j/k*.

Right > After a length of time of being active, intelligent and communicative, the “mini-admin” gets asked to become a global moderator or some other kind of admin.

This is all good, but what about the user that just wants to use other peoples’ sites? The more I have looked at some of the plugins on a live site with both admin and user accounts, I’m starting to see that some very useful user options are being hidden away in the admin menu.

I’m honestly not “knocking” the work that has been put into these addons and I might just not be seeing things right but I’m at a loss to why this is.

One last thing, although I am not ashamed of WordPress, I have used the Branding addon to hide WordPress mentioning but no matter what I do, in the “normal user” dashboard there’s the latest WordPress Blog showing things like “WordPress 3.4.2 Maintenance and Security Release […]”

Any way of turning those off?

Anyway, thanks for reading my musings but I would appreciate reading any others’ opinions.

Regards,

Bob.

Fri, 7 Sep 2012 8:10:10
  • aecnu
    • WP Unicorn

    Greetings Bob,

    Welcome to WPMU Dev!

    Thank you for your feedback and question, it is greatly appreciated.

    WordPress Friends Plugin: “Search for and add friends by navigating to: Admin > Friends > Find Friends”

    Why can’t this be a widget and perhaps even an addon to allow people to “friend” others directly from posts?

    The user must be logged in and a member of the blog/site before being allowed to look for friends, then they could access the dashboard and of course look them up.

    The security/privacy risks otherwise would be out of control of anyone and the ease to scalp “friends” information is unleashed without the necessity to log in, just like Facebook makes one do, you must be a Facebook member and log in or any of the other types of sites that you can look up “friends”.

    WordPress InvitePlugin: “Invite ability is available under any Site Admin > Users > Invites.”

    I know that many users that also have hosted websites would use this to invite people to their own blog but if this was a widget, normal users could use it to invite their friends to the site they are using.

    This had been tried in the past even outside of WordPress and the spam generated from them was beyond anyone control. just tell me your site with this feature and I will go there and send out a gazillion invites and watch how fast the site burned for spam – no more site.

    My regular profession is hosting and I have been doing it since 1998, I own hosting companies on both sides of the Atlantic, all it takes is a couple complaints of spam and I will warn you the first time and burn your account forever the second time, there is no third time for the same facilitator.

    Making them log in and doing it from the dashboard and controlling what they can see and do in the dashboard is in the security interest of both the site owner and the user themselves.

    One last thing, although I am not ashamed of WordPress, I have used the Branding addon to hide WordPress mentioning but no matter what I do, in the “normal user” dashboard there’s the latest WordPress Blog showing things like “WordPress 3.4.2 Maintenance and Security Release […]”

    Any way of turning those off?

    Of course you can turn them off using a plugin like the Ultimate Branding plugin –> Remove WP Dashboard Widgets, but as network admin you will still see many things on your end that end users and regular site admins will never see.

    Thank you for being a WPMU Dev Community Member!

    Cheers, Joe

  • PiOfCube
    • Design Lord, Child of Thor

    Hi there, Thanks for the reply. Very interesting.

    The user must be logged in and a member of the blog/site before being allowed to look for friends, then they could access the dashboard and of course look them up.

    Yeah, of course they would have to be logged in but what I mean is, why force them to use the dashboard? Visually, wordpress is not very appealing when seen from the dashboard.

    This had been tried in the past even outside of WordPress and the spam generated from them was beyond anyone control. just tell me your site with this feature and I will go there and send out a gazillion invites and watch how fast the site burned for spam – no more site.

    Again, I didn’t stay on point enough to get what I wanted to say… Though I was waiting to go to the dentists for either emergency root canal or extraction… Just got back with a tooth in a bag LOL.

    Yeah, keep the security, just if the hosts go to all the bother of making wonderful templates/themes, why send them to military grey pages in the dashboard?

    Of course you can turn them off using a plugin like the Ultimate Branding plugin –> Remove WP Dashboard Widgets, but as network admin you will still see many things on your end that end users and regular site admins will never see.

    I had them turned off and created a new standard account and saw, what I take to be, RSS feeds from WordPress.

    It’s nothing really to worry about but was just wondering.

    You are absolutely right about security, over 20 years in IT… I took a couple of years off to teach j/k… has taught me one thing… You build a better software device, the black/grey/white hats will always build a better one.

    Right now I have a real bugbear about salted hashes but that’s one for another time.

    All the best and thanks for all the work you’ve all put into wpmudev. Saved me from having to sit down and write my own.

    Bob.

  • aecnu
    • WP Unicorn

    Greetings Bob,

    Thank you for your additional input, it is truly appreciated.

    You do not have to have that ugly backend/dashboard :smiley:

    It is possible to totally change the way the back end looks using the Easy Blogging plugin

    That way it looks totally customized and not like Word Press at all.

    Look it over and let me know what you think of that idea.

    Please advise.

    Cheers, Joe

  • PiOfCube
    • Design Lord, Child of Thor

    That looks really good. Particularly for free sites, can you configure it so everyone gets that interface but has the option to “upgrade” with the support plugin?

    I’ll definitely have a good look at it as one of my sites is aimed at a certain on-line game audience LOL j/k.

    Bob.