This sort of thing is called roles (admins, consumers) and authorization (purchasing, updating). Gems are available which can help you with both.
I use CanCan for the authorization and make my own roles table. I'd recommend looking at Rubytoolbox to find out what your options are: https://www.ruby-toolbox.com/categories/rails_authorization