...
- RootOrg creation : Root org can be created only by system admin
- Admin user for RootOrg : RootOrg admin user can be created only by system admin
...
- Creation of another system
...
- admin :
...
- One system admin user can create another system admin
- Removing system
...
- admin : One system admin can remove another system admin.
Note: System admin details can store as same place as normal user or can be stored on different places all together.
Inside sunbird we can store this user details either in user Table or some new tables (sys_admin) both is having there own pros and cons.
...
* It won't have all the access as normal user , We need to add unnecessary check other api's.
* User search , here we need to hide system admin details details.
* Open-saber should not store system admin user details.
Storing System admin details in different table (Sys-admin)
...
* Overhead of one more table management
Managing system admin user in keyclaok:
If we allow system admin to do all operation as normal sunbird user can do then will create user under same realm other wise will create user another different realm , so that he/she should not be able to login.