Auth : User Access Requires Manual DB Update for "is_superuser" Flag

[nishika26]

Describe the bug
Currently, to access any endpoint you have to be a superuser but once a user is designated as a superuser, they have unrestricted access to all endpoints. This is problematic because it allows superusers to access endpoints that should be restricted to specific internal or external teams, violating access control rules. External team members should not have full access to all endpoints and so a structured access control system is needed which gives access according to the role of the user.

Additionally, if a better access control model is implemented we won't have to go into the database to change the is_superuser flag to true is someone has to use the platform, someone being a person outside of external team

[nishika26]

We have an endpoint for update user, we can use this endpoint to update the status of a superuser from false to true, or vice versa