Permissions can be a hustle to deal with when developing an api. Suppose we have a number of api views and endpoints where the access permissions are very similar to one another with only slight variations..
We could create different permission classes with the slight changes that fit the specific endpoint’s needs. That works, but that involves a lot of repetition and duplicated code that can be hard to update later down the line.