I’m working on a project which requires that certain people have limitted access to the admin area. I have created a new Role for this type of admin user, but I also need the following for this specific set of users:

• A few additional fields, like “Company Name” and “Phone Number”
• Ability to hide these users from System -> Permissions -> Users
  • They will appear in a separate grid somewhere else
• Maintain the ability for them to login to the admin area, reset their password if forgotten, etc
• All of these ‘specialized’ users will always have the same role.

I have the following ideas, but I’m not sure which (if any) are best practices:

• Storing the data in the db
  • Use the extras field for storage
  • Create a new table with the same PK as the user, plus the additional fields
• Implementing the model
  • Extend Mage_Admin_Model_User and the collection; use these within my module only instead of the standard classes
  • Extend & override the above so that all admin user objects have the functionality

My question: What approach would work best for this scenario? Maybe you have an even better idea than I do

Bonus: free internets will be given for including any sample code, tutorials, references, etc which demonstrate how to do accomplish the given approach.

Edit 1: The more I think about it, the more I feel the non-crossed-out options above would work best. My custom modules are the only ones who really need that extra functionality. The only override would be for the original user collection, to add a filter to exclude these ‘other users’ from the default user admin screens.