What Are The Different Types of Account?
When creating the WordPress User Account Types it is worth taking into consideration the actions and roles that the user will need to undertake. For example, a customer will not be able to do anything except delete their personal details whereas an Administrator could delete the entire website.
The standard WordPress User roles are:
Administrator
On a standard WordPress website install the Administrator is the most powerful user of them all. The Admin can do almost anything from creating, editing and deleting posts and pages, and adding plugins and themes and editing all the website data. The Admin can control all of the users on the site and change their passwords/ details and remove them (other Administrators too).
It is recommended that this role is reserved for website owners and developers. Be careful who you assign to the Administrator role.
Editor
Website users who have the Editor role on a WordPress website have full control over the content on the website. They have the ability to add, edit, publish and delete any post on the site. An Editor also has the role of moderating, deleting and accepting comments on the posts. Whilst the Editor is a powerful role in terms of access to website content they are unable to change site settings, install plugins, themes or add users.
Author
The website users who have this role can create posts and content. They can write, edit and publish their own posts, they are also able to delete their own posts.
Authors do not have the ability to create categories but they can use existing ones and create tags. They also have the ability to view accepted and pending comments but they cannot moderate, approve or delete comments.
This role is fairly low risk except for their ability to delete their own published posts.
Contributor
The website users who have this role can create posts and content. They can write, edit and publish their own posts, they are also able to delete their own posts.
Authors do not have the ability to create categories but they can use existing ones and create tags. They also have the ability to view accepted and pending comments but they cannot moderate, approve or delete comments.
This role is fairly low risk except for their ability to delete their own published posts.
Subscriber
Subscribers can log in to the WordPress website and update their own user profiles. They are also able to change their passwords but are unable to write posts, view un-approved comments or anything else within the WordPress Dashboard.
This user role is useful if you require people to log in before they can submit comments.
Conclusion
Whilst the user roles are fairly rigid as standard you are able to use plugins that allow the creation of new roles and the ability to edit existing ones. Be careful when editing roles in order not to allow roles access to things they do not need. If in doubt downgrade the user and grant permissions when they need them.