uiXpress
Security

Features

Detailed documentation of all security features and capabilities.

Role Editor Features

Role Management

Role Creation:

  • Create custom roles
  • Set role name
  • Auto-generate slug
  • Assign initial capabilities
  • Validation and error handling

Role Editing:

  • Edit role names
  • Manage capabilities
  • Capability grouping
  • Bulk capability selection
  • Real-time updates

Role Deletion:

  • Safe deletion with user count check
  • Protection for default roles
  • Confirmation dialogs
  • Automatic list refresh

Capability Management

Capability Categories:

  • General capabilities
  • Posts capabilities
  • Pages capabilities
  • Media capabilities
  • Users capabilities
  • Plugins capabilities
  • Themes capabilities
  • Settings capabilities
  • Other capabilities

Capability Assignment:

  • Individual selection
  • Category selection
  • Select all in category
  • Deselect all in category
  • Visual indicators
  • Capability count display

Security Features

Authentication:

  • Full capability checks
  • manage_options required
  • CSRF protection
  • Nonce verification
  • Input validation

Data Protection:

  • Input sanitization
  • Output escaping
  • Role slug validation
  • Capability validation
  • Frontend validation

Activity Logger Features

Action Tracking

Tracked Actions:

  • Post created
  • Post updated
  • Post deleted
  • Post trashed
  • Post restored
  • User created
  • User updated
  • User deleted
  • Role changes
  • Comment actions
  • Plugin activations
  • Plugin deactivations
  • Settings changes
  • Media actions
  • Login/logout events

Log Data

Stored Information:

  • User ID (who did it)
  • Action type (what happened)
  • Object type (post, user, etc.)
  • Object ID (which item)
  • Old value (before change)
  • New value (after change)
  • IP address
  • User agent
  • Timestamp
  • Metadata (JSON)

Retention Management

Retention Period:

  • Configurable days (1-365)
  • Default: 90 days
  • Automatic cleanup option
  • Manual cleanup available
  • Storage optimization

Log Levels:

  • All Actions: Log everything
  • Important Only: Critical actions only
    • Deletions
    • Role changes
    • User changes
    • Security events

Auto Cleanup:

  • Automatic deletion
  • Based on retention period
  • Configurable toggle
  • Scheduled cleanup
  • Storage management

Log Viewing

Interface Features:

  • Modern log viewer
  • Filter by action type
  • Filter by user
  • Filter by date range
  • Search functionality
  • Pagination
  • Export options

Log Details:

  • Full action details
  • Before/after values
  • User information
  • Timestamp
  • IP address
  • User agent
  • Metadata

Settings Configuration

Role Editor Settings

Enable Role Editor:

  • Toggle: Enable/disable
  • Type: Boolean
  • Default: false
  • Activation: No license required
  • Location: Settings → Security

Activity Logger Settings

Enable Activity Logger:

  • Toggle: Enable/disable
  • Type: Boolean
  • Default: false
  • Activation: No license required
  • Location: Settings → Security

Retention Period (Days):

  • Type: Number input
  • Range: 1-365 days
  • Default: 90 days
  • Condition: Shown when logger enabled
  • Location: Settings → Security

Log Level:

  • Type: Select dropdown
  • Options: All Actions, Important Only
  • Default: Important Only
  • Condition: Shown when logger enabled
  • Location: Settings → Security

Auto Cleanup:

  • Toggle: Enable/disable
  • Type: Boolean
  • Default: true
  • Condition: Shown when logger enabled
  • Location: Settings → Security

Security Best Practices

Role Editor

  • Review capabilities regularly
  • Use principle of least privilege
  • Test role changes in staging
  • Document custom roles
  • Monitor role assignments

Activity Logger

  • Set appropriate retention period
  • Use "Important Only" for performance
  • Enable auto cleanup
  • Review logs regularly
  • Export logs for compliance
  • Monitor security events

Technical Details

Database Structure

Activity Log Table:

  • Custom table: wp_uixpress_activity_log
  • Indexed columns: user_id, action, object_type, timestamp
  • JSON columns for old_value, new_value, metadata
  • Efficient querying and cleanup

API Endpoints

Role Editor:

  • GET /uixpress/v1/roles - List roles
  • POST /uixpress/v1/roles - Create role
  • PUT /uixpress/v1/roles/:id - Update role
  • DELETE /uixpress/v1/roles/:id - Delete role

Activity Logger:

  • GET /uixpress/v1/activity-log - List logs
  • GET /uixpress/v1/activity-log/stats - Get statistics
  • POST /uixpress/v1/activity-log/cleanup - Manual cleanup
  • GET /uixpress/v1/activity-log/:id - Get single log

Security Measures

Authentication:

  • WordPress capability checks
  • Nonce verification
  • CSRF protection
  • Input validation
  • Output escaping

Data Protection:

  • SQL injection prevention
  • XSS protection
  • Input sanitization
  • Output escaping
  • Role validation

Security

Comprehensive security and administration tools including role management and activity logging

Users

Powerful, intuitive interface for managing WordPress users with bulk operations, CSV import/export, and role management