Rights

Admin: An admin user sees everything and can manage everything (create, modify, delete): users, models, generation of data.
User: A user has limited power restricted by policies managed by admin and itself on its resources.

Once users are logged in, they have a role assigned among: