User Roles & Permissions #
inPIPE integrates with WordPress’s role-based access control system to manage who can access and modify your marketing tracking data. This section explains how user roles and permissions work in inPIPE.
Role Hierarchy #
inPIPE uses a hierarchical role system that maps to WordPress roles:
| WordPress Role | inPIPE Role | Access Level |
|---|---|---|
| Administrator | Admin | Full access |
| Editor | Editor | Limited access |
| Author | Editor | Limited access |
| Contributor | Viewer | Read-only access |
| Subscriber | Viewer | Read-only access |
Role Capabilities #
Administrator Role #
- Full access to all plugin features
- Manage plugin settings
- Configure UTM tracking
- View and export all reports
- Manage user permissions
- Access premium features (if available)
Editor Role #
- View and export reports
- Access basic analytics
- View UTM tracking data
- No access to settings
- No access to user management
Viewer Role #
- View basic reports
- Access dashboard
- No export capabilities
- No configuration access
- No data modification rights
Permission Management #
inPIPE automatically maps WordPress roles to inPIPE roles based on the following hierarchy:
inPIPE provides three predefined roles:
- Administrator: Full access to all settings, data, and reports
- Editor: Can view reports and access limited settings
- Viewer: Read-only access to reports and dashboards
The system assigns the highest applicable role to each user. For example, if a user has both Editor and Author roles, they will receive Editor-level access in inPIPE.
By default, inPIPE maps WordPress user roles to inPIPE roles as follows:
-
WordPress Administrator → inPIPE Administrator
-
WordPress Editor → inPIPE Editor
-
WordPress Author → inPIPE Editor
-
WordPress Contributor → inPIPE Viewer
-
WordPress Subscriber → No access
-
Role-Based Access Control: Strict permission enforcement
-
API Security: Admin-only access to sensitive endpoints
-
Nonce Verification: Protection against unauthorized requests
-
Capability Checks: Regular validation of user permissions
Best Practices #
-
Role Assignment
- Assign Administrator role only to trusted users
- Use Editor role for marketing team members
- Limit Viewer role to stakeholders who need reports
-
Security Maintenance
- Regularly review user roles
- Remove unnecessary permissions
- Monitor access logs for suspicious activity
| Feature | Administrator | Editor | Viewer |
|---|---|---|---|
| View Reports | ✓ | ✓ | ✓ |
| Export Data | ✓ | ✓ | – |
| Configure UTM Tracking | ✓ | – | – |
| Manage Settings | ✓ | – | – |
| Manage Users | ✓ | – | – |
| View Raw Data | ✓ | ✓ | – |
Premium Features Access #
- Limit Administrator access to necessary personnel only
- Use Editor roles for marketing team members who need reporting capabilities
- Assign Viewer roles to clients or stakeholders who need read-only access
- Regularly review and update user permissions as team roles change
Properly configured user roles help maintain data security while ensuring team members have appropriate access to the marketing data they need.
