Are there any articles or code references to making a more advanced permissions system. I have to create a system where the admin can make another user and assign any permissions to them, even admin permissions at the littlest detail where say this new admin can do everything except delete on a few article types. However this admin can create other admins under him and can only assign permissions he has and the new users and so on as many times until there are almost no permissions left. So it is like there is a permissions system ontop of the permissions almost.
On top of that there is a lot of dynamic data (estimated 10,000-20,000) records imported daily linked to about 10,000ish unique organizations within the system. There are are very specific requirements for limiting users to data by organization and within an organization down to very specific details like contract numbers, total dollar values (multiple ranges), about 10 other very precise things within the records I won't go into the details. Basically higher level "users" will create users under them with more specific permissions (passing responsibility down the chain to the "workers") through multiple (infinite) tiers based on the size of the org like national->regions->states->state regions->districts etc.
I have never done anything like this and cannot find any information on a permission system of this scale and robustness. Does anyone have any advice for me? Any articles that deal with a system like this? Pretty much any advice I can get would be great, thank you very much.
