The Domain of One's Own - Version 2 WordPress plugin creates three custom WordPress roles to manage permissions on a Domain of One's instance's WordPress portal. The roles in ascending order of permissions are:
- DoOO Requester
- DoOO User
- DoOO Admin
The DoOO Requester role is meant to be the default role for new Domain of One's Own WordPress portal. On login, a user with this role will be redirected to the interest form so that they may request elevation of their role to a DoOO User. Otherwise, they are only granted permission to read content on the the WordPress portal.
The DoOO User role is the standard role in a Domain of One's Own WordPress portal, and this role allows a user to actually access (and if they are under the self-service limit, create) cPanel accounts. They are also able to access user-level documentation; no other permissions besides the ability to read content on the the WordPress portal are granted.
The DoOO Admin role grants higher-level access to the Domain of One's Own WordPress portal, albeit less than that of a full WordPress Administrator; mostly cosmetic and user-management features including the ability to bypass limits on the user dashboard, access admin-level pages and docs, promote/demote/add/delete users, edit/add/delete the site's theme/posts/pages, and so on.
Additional information on custom roles and capabilities can be found in the embedded Admin Doc titled "DoOO Roles and Capabilities".