diff --git a/archivist/apps/api/permissions.py b/archivist/apps/api/permissions.py
index bc52a72..0ebdc6b 100644
--- a/archivist/apps/api/permissions.py
+++ b/archivist/apps/api/permissions.py
@@ -1,6 +1,15 @@
 # permissions.py
+from rest_framework import permissions
+
 
 def check_admin(user):
     """check for admin permission for restricted views"""
     return user.is_staff or user.groups.filter(name="admin").exists()
 
+
+class AdminOnly(permissions.BasePermission):
+    """allow only admin"""
+
+    def has_permission(self, request, view):
+        return check_admin(request.user)
+