2đ
What you can do is creating two projects, one for serving your âfront endâ with a disabled admin (simply remove the âadminâ in your projectâs urls.py) and another one for managing the django admin and only accessible from inside your companyâs network.
Make them share the same database where the database server should only be accessible from within your companyâs network, as well. Be sure to only create the models only in one app, preferably in the front end app as you might want to have user input handled by django forms.
Register the âfront-endâ app models in the âback-endâ project via the admin.py in the âback endâ app. That should allow you accessing the data stored in the db.
When it comes to third party apps and plugins be sure to check their urls.py (and disable the admin in case), models.py and admin.py in order to implement it in your âback-endâ.
Hope that helps!