User Roles & Access Control

What is the Super Admin role and why can't it be deleted?

The Super Admin is a seeded system role that holds all permissions across every module. It exists so there is always an account capable of administering the entire system — creating other roles, assigning permissions, and recovering from misconfiguration. It is deliberately undeletable and protected: if it could be removed or stripped of permissions, an organization could lock itself…

The Super Admin is a seeded system role that holds all permissions across every module. It exists so there is always an account capable of administering the entire system — creating other roles, assigning permissions, and recovering from misconfiguration. It is deliberately undeletable and protected: if it could be removed or stripped of permissions, an organization could lock itself out of its own platform entirely (imagine deleting the only role that can manage roles). By guaranteeing the Super Admin always exists with full rights, Okommerce ensures the system can never be administratively bricked. It's the root-of-trust for access control.

← Previous

How are permissions assigned to a role (module + action level)?

How are users scoped by country or vendor?