I'd like to have it as a separate model to keep information that a regular user wouldn't have. And to have different references with other models. And one more thing. I'd like users to have roles and administrators to have permissions, that is, each user will act only within the limits of its role (author, company, etc), but administrators could have different permissions (moderate, create new user, etc) which may change over time.
Is something like that possible with declarative_authorization? Or maybe any other ideas?