centurion_erp/app/access/functions/permissions.py

from django.contrib.auth.models import Permission

def permission_queryset():
    """Filter Permissions to those used within the application

    Returns:
        list: Filtered queryset that only contains the used permissions
    """

    apps = [
        'access',
        'assistance',
        'config_management',
        'core',
        'django_celery_results',
        'itam',
        'itim',
        'settings',
    ]

    exclude_models = [
        'appsettings',
        'chordcounter',
        'comment',
        'groupresult',
        'usersettings',
    ]

    exclude_permissions = [
        'add_organization',
        'add_taskresult',
        'change_organization',
        'change_taskresult',
        'delete_organization',
        'delete_taskresult',
    ]

    return Permission.objects.filter(
            content_type__app_label__in=apps,
        ).exclude(
            content_type__model__in=exclude_models
        ).exclude(
            codename__in = exclude_permissions
        )