For authenticated users, the API knows whether the user has rights to edit each event or not (already used for displaying fields such as created_by and last_modified_by, https://github.com/City-of-Helsinki/linkedevents/blob/master/events/api.py#L452).
Adding this field would be as easy as adding a field user_may_edit=True to only_admin_visible_fields.