To manage websites and users requires superuser status. Currently the program provides only one account with this status. If Piwik is being used to manage many websites this seems quite awkward administratively. I would like to request/suggest a superuser group which users can be assigned to, providing:
- An easy way to see who did what
- Revocation
- Better integration if login is tied to other systems (e.g. LDAP, basic auth)
- Perhaps later the ability to be superuser oever a subset of the websites, being able to manage users and settings of those only.
I can think of other reasons, but in essence I don’t think the current single superuser method is comfortable or beneficial. I understand the security aspect but anyway on a larger system I don’t feel really provides that by having one account to hand out.