I have database full of useful information, which I want to develop an API for using Django rest framework. This API will be used by mobile app so user and user authentication. I want the users of this App to pay a subscription fee for the services. What is the best way to go about this using django??
I just need a direction, I thought about dividing user to groups paid and unpaid Paid group have access to all, unpaid only have a portion of every service, using django permissions group. I do have a strong feeling that this not secure or the way to do it.
I also thought about Token Authorisation, meaning people who have the token have access others have limited access. Is this good strategy?
Please any help is immensely appreciated