Add permission requirement for /user route

apps/core/management/commands/init_groups.py

 from django.core.management.base import BaseCommand
 from django.contrib.auth.models import User, Group, Permission
 
-groups = ["jedi", "padawan"]
+groups = ["droid", "jedi", "padawan"]
 permissions = {
+    "droid": [],
     "jedi": [
-        "can_change_status", "can_change_priority", "can_vote", "can_edit"
+        "can_change_status", "can_change_priority", "can_vote", "can_edit", "can_edit_users"
     ],
     "padawan": ["can_vote", "add_article"]
 }

apps/rp/views/users.py

 from django.contrib.auth.models import User
+from django.contrib.auth.mixins import PermissionRequiredMixin
 
 from django.views.generic.list import ListView
 
-class UserListView(ListView):
+class UserListView(PermissionRequiredMixin, ListView):
     model = User
     paginate_by = 20
-    template_name = "rp/user_list.html"
+    template_name = 'rp/user_list.html'
+    permission_required = 'can_edit_users'
 
     def get_queryset(self):
         qs = super().get_queryset()