From 664d26d1da03f731baec1ef19ab3e0d83393e676 Mon Sep 17 00:00:00 2001
From: Wil Clouser <wclouser@mozilla.com>
Date: Tue, 1 Mar 2011 21:40:24 -0800
Subject: [PATCH] Rename poorly named has_perm to mysteriously unused but well
 named method

---
 apps/access/acl.py                            | 24 ++++------------
 apps/access/tests.py                          | 28 +++++++++----------
 apps/api/handlers.py                          |  2 +-
 apps/api/tests/test_oauth.py                  |  2 +-
 apps/devhub/helpers.py                        |  2 +-
 .../devhub/addons/listing/item_actions.html   |  6 ++--
 .../devhub/templates/devhub/addons/owner.html |  2 +-
 .../templates/devhub/addons/payments.html     |  2 +-
 apps/devhub/templates/devhub/base.html        |  2 +-
 .../templates/devhub/versions/edit.html       |  2 +-
 .../templates/devhub/versions/list.html       |  4 +--
 apps/devhub/views.py                          | 10 +++----
 apps/reviews/views.py                         |  4 +--
 apps/versions/views.py                        |  2 +-
 14 files changed, 40 insertions(+), 52 deletions(-)

diff --git a/apps/access/acl.py b/apps/access/acl.py
index 87ff6b7248..f889fa55c0 100644
--- a/apps/access/acl.py
+++ b/apps/access/acl.py
@@ -30,9 +30,12 @@ def action_allowed(request, app, action):
 
 
 def check_ownership(request, obj, require_owner=False):
-    """Check if request.user has permissions for the object."""
+    """
+    A convenience function.  Check if request.user has permissions
+    for the object.
+    """
     if isinstance(obj, Addon):
-        return has_perm(request, obj, viewer=not require_owner)
+        return check_addon_ownership(request, obj, viewer=not require_owner)
     elif isinstance(obj, Collection):
         return check_collection_ownership(request, obj, require_owner)
     else:
@@ -53,22 +56,7 @@ def check_collection_ownership(request, collection, require_owner=False):
         return False
 
 
-def check_addon_ownership(request, addon, require_owner=False):
-    """Check if request.user has owner permissions for the add-on."""
-    if not request.user.is_authenticated():
-        return False
-    if action_allowed(request, 'Admin', 'EditAnyAddon'):
-        return True
-
-    roles = (amo.AUTHOR_ROLE_OWNER, amo.AUTHOR_ROLE_DEV)
-    if not require_owner:
-        roles += (amo.AUTHOR_ROLE_VIEWER,)
-
-    return bool(addon.authors.filter(addonuser__role__in=roles,
-                                     user=request.amo_user))
-
-
-def has_perm(request, addon, viewer=False, dev=False, ignore_disabled=False):
+def check_addon_ownership(request, addon, viewer=False, dev=False, ignore_disabled=False):
     """
     Check request.amo_user's permissions for the addon.
 
diff --git a/apps/access/tests.py b/apps/access/tests.py
index a1544e3910..e2a2a553ff 100644
--- a/apps/access/tests.py
+++ b/apps/access/tests.py
@@ -10,7 +10,7 @@ from addons.models import Addon, AddonUser
 from cake.models import Session
 from users.models import UserProfile
 
-from .acl import match_rules, action_allowed, has_perm
+from .acl import match_rules, action_allowed, check_addon_ownership
 
 
 def test_match_rules():
@@ -111,51 +111,51 @@ class TestHasPerm(TestCase):
     def test_anonymous(self):
         self.request.user.is_authenticated.return_value = False
         self.client.logout()
-        assert not has_perm(self.request, self.addon)
+        assert not check_addon_ownership(self.request, self.addon)
 
     def test_admin(self):
         self.request.amo_user = self.login_admin()
         self.request.groups = self.request.amo_user.groups.all()
-        assert has_perm(self.request, self.addon)
+        assert check_addon_ownership(self.request, self.addon)
 
     def test_disabled(self):
         self.addon.update(status=amo.STATUS_DISABLED)
-        assert not has_perm(self.request, self.addon)
+        assert not check_addon_ownership(self.request, self.addon)
         self.test_admin()
 
     def test_ignore_disabled(self):
         self.addon.update(status=amo.STATUS_DISABLED)
-        assert has_perm(self.request, self.addon, ignore_disabled=True)
+        assert check_addon_ownership(self.request, self.addon, ignore_disabled=True)
 
     def test_owner(self):
-        assert has_perm(self.request, self.addon)
+        assert check_addon_ownership(self.request, self.addon)
 
         self.au.role = amo.AUTHOR_ROLE_DEV
         self.au.save()
-        assert not has_perm(self.request, self.addon)
+        assert not check_addon_ownership(self.request, self.addon)
 
         self.au.role = amo.AUTHOR_ROLE_VIEWER
         self.au.save()
-        assert not has_perm(self.request, self.addon)
+        assert not check_addon_ownership(self.request, self.addon)
 
     def test_dev(self):
-        assert has_perm(self.request, self.addon, dev=True)
+        assert check_addon_ownership(self.request, self.addon, dev=True)
 
         self.au.role = amo.AUTHOR_ROLE_DEV
         self.au.save()
-        assert has_perm(self.request, self.addon, dev=True)
+        assert check_addon_ownership(self.request, self.addon, dev=True)
 
         self.au.role = amo.AUTHOR_ROLE_VIEWER
         self.au.save()
-        assert not has_perm(self.request, self.addon, dev=True)
+        assert not check_addon_ownership(self.request, self.addon, dev=True)
 
     def test_viewer(self):
-        assert has_perm(self.request, self.addon, viewer=True)
+        assert check_addon_ownership(self.request, self.addon, viewer=True)
 
         self.au.role = amo.AUTHOR_ROLE_DEV
         self.au.save()
-        assert has_perm(self.request, self.addon, viewer=True)
+        assert check_addon_ownership(self.request, self.addon, viewer=True)
 
         self.au.role = amo.AUTHOR_ROLE_VIEWER
         self.au.save()
-        assert has_perm(self.request, self.addon, viewer=True)
+        assert check_addon_ownership(self.request, self.addon, viewer=True)
diff --git a/apps/api/handlers.py b/apps/api/handlers.py
index 6f3f50f01b..660cd21ae0 100644
--- a/apps/api/handlers.py
+++ b/apps/api/handlers.py
@@ -31,7 +31,7 @@ def check_addon_and_version(f):
             addon = Addon.objects.id_or_slug(addon_id).get()
         except:
             return rc.NOT_HERE
-        if not acl.has_perm(request, addon, viewer=True):
+        if not acl.check_addon_ownership(request, addon, viewer=True):
             return rc.FORBIDDEN
 
         if 'version_id' in kw:
diff --git a/apps/api/tests/test_oauth.py b/apps/api/tests/test_oauth.py
index deb813b5a8..4fc5cc10af 100644
--- a/apps/api/tests/test_oauth.py
+++ b/apps/api/tests/test_oauth.py
@@ -571,7 +571,7 @@ class TestAddon(BaseOauth):
                        self.token, data={}, content_type=MULTIPART_CONTENT)
         eq_(r.status_code, 410, r.content)
 
-    @patch('access.acl.has_perm')
+    @patch('access.acl.check_addon_ownership')
     def test_not_my_addon(self, acl):
         data = self.create_addon()
         id = data['id']
diff --git a/apps/devhub/helpers.py b/apps/devhub/helpers.py
index ac38b5f8cc..5d23de9dca 100644
--- a/apps/devhub/helpers.py
+++ b/apps/devhub/helpers.py
@@ -14,7 +14,7 @@ from access import acl
 from addons.helpers import new_context
 
 
-register.function(acl.has_perm)
+register.function(acl.check_addon_ownership)
 
 
 @register.inclusion_tag('devhub/addons/listing/items.html')
diff --git a/apps/devhub/templates/devhub/addons/listing/item_actions.html b/apps/devhub/templates/devhub/addons/listing/item_actions.html
index 6788cae6a4..436769a067 100644
--- a/apps/devhub/templates/devhub/addons/listing/item_actions.html
+++ b/apps/devhub/templates/devhub/addons/listing/item_actions.html
@@ -1,14 +1,14 @@
 <h5>{{ _('Actions') }}</h5>
 <ul>
 {% if addon.is_incomplete() %}
-  {% if has_perm(request, addon, dev=True) %}
+  {% if check_addon_ownership(request, addon, dev=True) %}
     <li>
       <a href="{{ url('devhub.submit.resume', addon.slug) }}" class="tooltip"
          title="{{ _("Resume the submission process for this add-on.")}}">
       {{ _('Resume') }}</a>
     </li>
   {% endif %}
-  {% if has_perm(request, addon) %}
+  {% if check_addon_ownership(request, addon) %}
     <li>
       <a href="#" class="delete-addon tooltip"
          title="{{ _('Delete this add-on.') }}">{{ _('Delete') }}</a>
@@ -18,7 +18,7 @@
     </li>
   {% endif %}
 {% else %}
-  {% if has_perm(request, addon, dev=True) %}
+  {% if check_addon_ownership(request, addon, dev=True) %}
     <li>
       <a href="{{ url('devhub.addons.edit', addon.slug) }}" class="tooltip"
          title="{{ _("Edit details about this add-on's listing.") }}">
diff --git a/apps/devhub/templates/devhub/addons/owner.html b/apps/devhub/templates/devhub/addons/owner.html
index 3eeb6928d1..1f184b9804 100644
--- a/apps/devhub/templates/devhub/addons/owner.html
+++ b/apps/devhub/templates/devhub/addons/owner.html
@@ -7,7 +7,7 @@
 
 {% block bodyclass %}
 {{ super() }}
-{% if not has_perm(request, addon) %} no-edit{% endif %}
+{% if not check_addon_ownership(request, addon) %} no-edit{% endif %}
 {% endblock %}
 
 {% block content %}
diff --git a/apps/devhub/templates/devhub/addons/payments.html b/apps/devhub/templates/devhub/addons/payments.html
index 60458cce0a..de759d7e4c 100644
--- a/apps/devhub/templates/devhub/addons/payments.html
+++ b/apps/devhub/templates/devhub/addons/payments.html
@@ -4,7 +4,7 @@
 {% block title %}{{ dev_page_title(title, addon) }}{% endblock %}
 
 {% set can_edit = (addon.status == amo.STATUS_PUBLIC
-                   and has_perm(request, addon)) %}
+                   and check_addon_ownership(request, addon)) %}
 {% block bodyclass %}
   {{ super() }}{% if not can_edit %} no-edit{% endif %}
 {% endblock %}
diff --git a/apps/devhub/templates/devhub/base.html b/apps/devhub/templates/devhub/base.html
index 8d73791342..372da86bde 100644
--- a/apps/devhub/templates/devhub/base.html
+++ b/apps/devhub/templates/devhub/base.html
@@ -1,7 +1,7 @@
 {% extends "base.html" %}
 
 {% if addon %}
-  {% set editable = "no-edit" if not has_perm(request, addon, dev=True) %}
+  {% set editable = "no-edit" if not check_addon_ownership(request, addon, dev=True) %}
 {% endif %}
 {% block bodyclass %}developer-hub {{ editable }}{% endblock %}
 
diff --git a/apps/devhub/templates/devhub/versions/edit.html b/apps/devhub/templates/devhub/versions/edit.html
index f216d75444..dfdd76bf32 100644
--- a/apps/devhub/templates/devhub/versions/edit.html
+++ b/apps/devhub/templates/devhub/versions/edit.html
@@ -58,7 +58,7 @@
                     {% endfor %}
                   </tbody>
                 </table>
-                {% if has_perm(request, addon, dev=True) %}
+                {% if check_addon_ownership(request, addon, dev=True) %}
                   <p class="add-app{% if not compat_form.extra_forms %} hide{% endif %}">
                     <a href="#">{{ _('Add Another Application&hellip;')|safe }}</a>
                   </p>
diff --git a/apps/devhub/templates/devhub/versions/list.html b/apps/devhub/templates/devhub/versions/list.html
index b7f0b3db5c..9f2e46ec6a 100644
--- a/apps/devhub/templates/devhub/versions/list.html
+++ b/apps/devhub/templates/devhub/versions/list.html
@@ -50,7 +50,7 @@
       {% endif %}
 
       <div class="version-status-actions item-actions">
-        {% if has_perm(request, addon, dev=True) %}
+        {% if check_addon_ownership(request, addon, dev=True) %}
           {% set req = {amo.STATUS_PUBLIC: _('Request Full Review'),
                         amo.STATUS_LITE: _('Request Preliminary Review')} %}
           {% for status in addon.can_request_review() %}
@@ -70,7 +70,7 @@
             <a href="#" id="cancel-review">{{ _('Cancel Review Request') }}</a> &middot;
           {% endif %}
         {% endif %}
-        {% if has_perm(request, addon) %}
+        {% if check_addon_ownership(request, addon) %}
           {% if addon.disabled_by_user %}
             <a href="{{ url('devhub.addons.enable', addon.slug) }}" id="enable-addon">{{ _('Enable Add-on') }}</a> &middot;
           {% elif not addon.is_disabled %}
diff --git a/apps/devhub/views.py b/apps/devhub/views.py
index c067338d39..361d2221c1 100644
--- a/apps/devhub/views.py
+++ b/apps/devhub/views.py
@@ -67,11 +67,11 @@ def dev_required(owner_for_post=False, allow_editors=False):
                     return fun()
             # Require an owner or dev for POST requests.
             if request.method == 'POST':
-                if acl.has_perm(request, addon, dev=not owner_for_post):
+                if acl.check_addon_ownership(request, addon, dev=not owner_for_post):
                     return fun()
             # Ignore disabled so they can view their add-on.
-            elif acl.has_perm(request, addon, viewer=True,
-                              ignore_disabled=True):
+            elif acl.check_addon_ownership(request, addon, viewer=True,
+                                           ignore_disabled=True):
                 step = SubmitStep.objects.filter(addon=addon)
                 # Redirect to the submit flow if they're not done.
                 if not getattr(f, 'submitting', False) and step:
@@ -238,8 +238,8 @@ def feed(request, addon_id=None):
             rssurl = urlparams(reverse('devhub.feed', args=[addon_id]),
                                privaterss=key.key)
 
-            if not acl.has_perm(request, addons, viewer=True,
-                                ignore_disabled=True):
+            if not acl.check_addon_ownership(request, addons, viewer=True,
+                                             ignore_disabled=True):
                 return http.HttpResponseForbidden()
         else:
             rssurl = _get_rss_feed(request)
diff --git a/apps/reviews/views.py b/apps/reviews/views.py
index 5b77f5f2cb..05a19f65cb 100644
--- a/apps/reviews/views.py
+++ b/apps/reviews/views.py
@@ -60,7 +60,7 @@ def review_list(request, addon, review_id=None, user_id=None, template=None):
         ctx['review_perms'] = {
             'is_admin': acl.action_allowed(request, 'Admin', 'EditAnyAddon'),
             'is_editor': acl.action_allowed(request, 'Editor', '%'),
-            'is_author': acl.has_perm(request, addon, dev=True),
+            'is_author': acl.check_addon_ownership(request, addon, dev=True),
             'can_delete': acl.action_allowed(request, 'Editors',
                                              'DeleteReview'),
         }
@@ -124,7 +124,7 @@ def _review_details(request, addon, form):
 @login_required
 def reply(request, addon, review_id):
     is_admin = acl.action_allowed(request, 'Admin', 'EditAnyAddon')
-    is_author = acl.has_perm(request, addon, dev=True)
+    is_author = acl.check_addon_ownership(request, addon, dev=True)
     if not (is_admin or is_author):
         return http.HttpResponseForbidden()
 
diff --git a/apps/versions/views.py b/apps/versions/views.py
index 68d0d9ffec..97f77ba1f3 100644
--- a/apps/versions/views.py
+++ b/apps/versions/views.py
@@ -64,7 +64,7 @@ def download_file(request, file_id, type=None):
     addon = get_object_or_404(Addon.objects, pk=file.version.addon_id)
 
     if addon.is_disabled or file.status == amo.STATUS_DISABLED:
-        if acl.has_perm(request, addon, viewer=True, ignore_disabled=True):
+        if acl.check_addon_ownership(request, addon, viewer=True, ignore_disabled=True):
             return HttpResponseSendFile(request, file.guarded_file_path,
                                         content_type='application/xp-install')
         else: