backend-v1/core/apps/accounts/permissions.py

from rest_framework.exceptions import PermissionDenied
from rest_framework.permissions import BasePermission

from core.apps.accounts.choices import RoleChoice


class IsAdminRole(BasePermission):
    def has_permission(self, request, view):
        if not request.user.is_authenticated:
            return False

        if request.user.role not in [RoleChoice.ADMIN ,RoleChoice.SUPERUSER]:
            raise PermissionDenied("Only admin can access this")
        return True