fix: check action on currency viewset to avoid unwanted operations

apps/currency/views.py

@@ -18,6 +18,9 @@ def get_queryset(self):
         if not self.request.user.is_authenticated:
             raise NotAuthenticated()
 
+        if self.action not in ("list", "retrieve"):
+            raise NotImplementedError()
+
         queryset = Currency.objects.filter()
         return queryset
 
@@ -60,9 +63,3 @@ def retrieve(self, request, *args, **kwargs):
         serializer = serializer_class(currency)
 
         return Response(data=serializer.data)
-
-    def update(self, request, *args, **kwargs):
-        return Response(status=HTTPStatus.UNAUTHORIZED)
-
-    def delete(self, request, *args, **kwargs):
-        return Response(status=HTTPStatus.UNAUTHORIZED)