Enforce strict user capability checks when deleting test orders

[vladolaru]

Related to #11103

Changes proposed in this Pull Request

Better safe than sorry: even if the WooCommerce Debug Tools have access checks, we should make sure we have backstops in place. When deleting test orders we add an explicit check for the manage_woocommerce capability.

Also, we were missing the right parameter to force delete test orders and skip trash.

Testing instructions

• Follow the testing instructions of the original PR: Add ability to delete test orders. #11103

---

• Run npm run changelog to add a changelog file, choose patch to leave it empty if the change is not significant. You can add multiple changelog files in one PR by running this command a few times.
• Covered with tests (or have a good reason not to test in description ☝️)
• Tested on mobile (or does not apply)

Post merge

• Link to testing instructions from release testing doc following these instructions : Add link here / 'QA Testing Not Applicable'
• Add or update critical flows and testing instructions for critical flows, if applicable.
• Add what's changed (description, screenshot, demo videos etc.) to the release announcement post, if applicable.

[github-actions]

Test the build

Option 1. Jetpack Beta

• Install and activate Jetpack Beta.
• Use this build by searching for PR number 11122 or branch name update/verify-user-access-when-deleting-test-orders in your-test.site/wp-admin/admin.php?page=jetpack-beta&plugin=woocommerce-payments

Option 2. Jurassic Ninja - available for logged-in A12s

🚀 Launch a JN site with this branch 🚀

ℹ️ Install this Tampermonkey script to get more options.

---

Build info:

• Latest commit: 3a14cd9
• Build time: 2025-11-04 20:08:31 UTC

Note: the build is updated when a new commit is pushed to this PR.

[github-actions]

Size Change: 0 B

Total Size: 873 kB

ℹ️ View Unchanged

Filename	Size
release/woocommerce-payments/assets/css/admin.css	1.45 kB
release/woocommerce-payments/assets/css/admin.rtl.css	1.45 kB
release/woocommerce-payments/assets/css/success.css	1.06 kB
release/woocommerce-payments/assets/css/success.rtl.css	1.06 kB
release/woocommerce-payments/dist/blocks-checkout-rtl.css	2.8 kB
release/woocommerce-payments/dist/blocks-checkout.css	2.8 kB
release/woocommerce-payments/dist/blocks-checkout.js	54.5 kB
release/woocommerce-payments/dist/cart-block-rtl.css	113 B
release/woocommerce-payments/dist/cart-block.css	112 B
release/woocommerce-payments/dist/cart-block.js	16.7 kB
release/woocommerce-payments/dist/cart.js	5.27 kB
release/woocommerce-payments/dist/checkout-rtl.css	1.13 kB
release/woocommerce-payments/dist/checkout.css	1.13 kB
release/woocommerce-payments/dist/checkout.js	34.6 kB
release/woocommerce-payments/dist/express-checkout-rtl.css	367 B
release/woocommerce-payments/dist/express-checkout.css	367 B
release/woocommerce-payments/dist/express-checkout.js	16.9 kB
release/woocommerce-payments/dist/frontend-tracks.js	833 B
release/woocommerce-payments/dist/index-rtl.css	21.2 kB
release/woocommerce-payments/dist/index.css	21.2 kB
release/woocommerce-payments/dist/index.js	153 kB
release/woocommerce-payments/dist/multi-currency-analytics.js	1.08 kB
release/woocommerce-payments/dist/multi-currency-rtl.css	3.82 kB
release/woocommerce-payments/dist/multi-currency-switcher-block.js	18.2 kB
release/woocommerce-payments/dist/multi-currency.css	3.83 kB
release/woocommerce-payments/dist/multi-currency.js	24.6 kB
release/woocommerce-payments/dist/order-rtl.css	740 B
release/woocommerce-payments/dist/order.css	740 B
release/woocommerce-payments/dist/order.js	21.2 kB
release/woocommerce-payments/dist/plugins-page-rtl.css	484 B
release/woocommerce-payments/dist/plugins-page.css	484 B
release/woocommerce-payments/dist/plugins-page.js	2.64 kB
release/woocommerce-payments/dist/product-details-rtl.css	433 B
release/woocommerce-payments/dist/product-details.css	436 B
release/woocommerce-payments/dist/product-details.js	12.3 kB
release/woocommerce-payments/dist/settings-rtl.css	11.8 kB
release/woocommerce-payments/dist/settings.css	11.7 kB
release/woocommerce-payments/dist/settings.js	140 kB
release/woocommerce-payments/dist/subscription-edit-page.js	703 B
release/woocommerce-payments/dist/subscription-product-onboarding-modal-rtl.css	527 B
release/woocommerce-payments/dist/subscription-product-onboarding-modal.css	527 B
release/woocommerce-payments/dist/subscription-product-onboarding-modal.js	1.98 kB
release/woocommerce-payments/dist/subscription-product-onboarding-toast.js	730 B
release/woocommerce-payments/dist/subscriptions-empty-state-rtl.css	120 B
release/woocommerce-payments/dist/subscriptions-empty-state.css	120 B
release/woocommerce-payments/dist/subscriptions-empty-state.js	1.9 kB
release/woocommerce-payments/dist/success.js	6.03 kB
release/woocommerce-payments/dist/tos-rtl.css	235 B
release/woocommerce-payments/dist/tos.css	235 B
release/woocommerce-payments/dist/tos.js	3 kB
release/woocommerce-payments/dist/woopay-direct-checkout.js	5.68 kB
release/woocommerce-payments/dist/woopay-express-button.js	22.8 kB
release/woocommerce-payments/dist/woopay-rtl.css	4.29 kB
release/woocommerce-payments/dist/woopay.css	4.27 kB
release/woocommerce-payments/dist/woopay.js	70.8 kB
release/woocommerce-payments/includes/subscriptions/assets/css/plugin-page.css	625 B
release/woocommerce-payments/includes/subscriptions/assets/js/plugin-page.js	814 B
release/woocommerce-payments/vendor/automattic/jetpack-assets/build/i18n-loader.js	2.46 kB
release/woocommerce-payments/vendor/automattic/jetpack-assets/build/jetpack-script-data.js	957 B
release/woocommerce-payments/vendor/automattic/jetpack-assets/src/js/i18n-loader.js	1.02 kB
release/woocommerce-payments/vendor/automattic/jetpack-assets/src/js/script-data.js	69 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/babel.config.js	163 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/identity-crisis.css	2.47 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/identity-crisis.js	14.3 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/identity-crisis.rtl.css	2.47 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-connection.css	10.1 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-connection.js	29.7 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-connection.rtl.css	10.1 kB
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-admin-create-user.css	198 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-admin-create-user.js	280 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-admin-create-user.rtl.css	198 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-login.css	625 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-login.js	333 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-login.rtl.css	626 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-sso-users.js	417 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/jetpack-users-connection.js	161 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/tracks-ajax.js	521 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/dist/tracks-callables.js	585 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/src/sso/jetpack-sso-admin-create-user.css	215 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/src/sso/jetpack-sso-admin-create-user.js	521 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/src/sso/jetpack-sso-login.css	721 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/src/sso/jetpack-sso-login.js	412 B
release/woocommerce-payments/vendor/automattic/jetpack-connection/src/sso/jetpack-sso-users.js	625 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/about.css	1.04 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/admin-empty-state.css	294 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/admin-order-statuses.css	408 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/admin.css	3.59 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/checkout.css	301 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/modal.css	746 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/view-subscription.css	574 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/css/wcs-upgrade.css	414 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/admin-pointers.js	543 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/admin.js	9.4 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/jstz.js	6.78 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/jstz.min.js	3.84 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/meta-boxes-coupon.js	545 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/meta-boxes-subscription.js	2.52 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/moment.js	22.2 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/moment.min.js	11.7 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/payment-method-restrictions.js	1.29 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/admin/wcs-meta-boxes-order.js	507 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/frontend/payment-methods.js	358 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/frontend/single-product.js	428 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/frontend/view-subscription.js	1.38 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/frontend/wcs-cart.js	782 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/modal.js	1.09 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/assets/js/wcs-upgrade.js	1.26 kB
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css	391 B
release/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.js	3.04 kB

_{compressed-size-action}

[elazzabi]

Better safe than sorry. Good addition

[dmallory42]

Looks good to me. Change makes sense and works as expected, thanks for adding this!

[vladolaru]

This PR was cherry-picked into the release/10.2.0 branch.