Additional admin level

[torgeirl]

There's currently three user levels in Trix:

• Regular user
• Course admin: can manage assignments on a given course (no access to user data)
• (Django) Superuser: can manage courses, users, etc (limited access to user data)

Even thought superusers are limited in what user data they can see, that privilege should be used as limited as possible. For larger courses there's a use case for someone without superuser privileges to manage course admins.

Suggested solution

• Add course owner as an additional admin level.
• Equal to course admin, but the privilege to manage course admins for that course.

Note It could be good to keep in mind while implementing this that other functional differences between course owner and course admin might be added on a later point.

[Elthan]

Looking into this I fear that since Trix does not use the Django permission system, it uses cradmin instead, doing this may be a challenge without having to either using cradmin (further relying on a legacy system) or enabling the Django permission system. I'll investigate further how enabling the native permission system will interact with cradmin and if it's possible to use that instead - which would be a part of moving away from cradmin-legacy. There might be a third and simpler option, but it warrants further investigation.

[torgeirl]

Seems to be working as intended!