from rest_framework import permissions
from backend_app.utils import is_member


class IsDriOrReadOnly(permissions.BasePermission):
    """
    TODO
    """

    def has_permission(self, request, view):
        if request.method in permissions.SAFE_METHODS:
            return True
        else:
            return is_member("DRI", request.user) or request.user.is_staff