from rest_framework.permissions import BasePermission


class EsPersonalAdministrativo(BasePermission):
    """Solo usuarios staff (administradores) pueden usar los endpoints de gestion."""
    def has_permission(self, request, view):
        return bool(request.user and request.user.is_authenticated and request.user.is_staff)
