Tweak feedback tests to ensure feature flags are set.

contentcuration/contentcuration/tests/testdata.py

@@ -235,8 +235,9 @@ def user(email='user@test.com', feature_flags=None):
     if is_new:
         user.set_password('password')
         user.is_active = True
-        if feature_flags is not None:
-            user.feature_flags = feature_flags
+        user.save()
+    if feature_flags is not None:
+        user.feature_flags = feature_flags
         user.save()
     return user
 

contentcuration/contentcuration/viewsets/feedback.py

@@ -7,7 +7,7 @@
 
 
 class IsAdminForListAndDestroy(permissions.BasePermission):
-    def has_permission(self, request, view):
+    def _check_admin_or_feature_flag(self, request, view):
         # only allow list and destroy of flagged content to admins
         if view.action in ['list', 'destroy', 'retrieve']:
             try:
@@ -18,6 +18,12 @@ def has_permission(self, request, view):
             return True
         return False
 
+    def has_permission(self, request, view):
+        return self._check_admin_or_feature_flag(request, view)
+
+    def has_object_permission(self, request, view, obj):
+        return self._check_admin_or_feature_flag(request, view)
+
 
 class BaseFeedbackSerializer(serializers.ModelSerializer):
     class Meta: