Flask-Authorize provides utilities to help with user/role/group based app permissions and content CRUD authorization.