From f8c1a50195ce018c497c9d549ffb66a42f69eff4 Mon Sep 17 00:00:00 2001
From: Xiang Li <xiangli.cs@gmail.com>
Date: Fri, 10 Jun 2016 14:19:29 -0700
Subject: [PATCH] auth: cleanup store.go

---
 auth/store.go | 22 +++++++++-------------
 1 file changed, 9 insertions(+), 13 deletions(-)

diff --git a/auth/store.go b/auth/store.go
index 398eacc9a..6d0c6bfc9 100644
--- a/auth/store.go
+++ b/auth/store.go
@@ -353,20 +353,18 @@ func (as *authStore) UserRevokeRole(r *pb.AuthUserRevokeRoleRequest) (*pb.AuthUs
 		return nil, ErrUserNotFound
 	}
 
-	updatedUser := &authpb.User{}
-	updatedUser.Name = user.Name
-	updatedUser.Password = user.Password
+	updatedUser := &authpb.User{
+		Name:     user.Name,
+		Password: user.Password,
+	}
 
-	revoked := false
 	for _, role := range user.Roles {
 		if strings.Compare(role, r.Role) != 0 {
 			updatedUser.Roles = append(updatedUser.Roles, role)
-		} else {
-			revoked = true
 		}
 	}
 
-	if !revoked {
+	if len(updatedUser.Roles) == len(user.Roles) {
 		return nil, ErrRoleNotGranted
 	}
 
@@ -406,19 +404,17 @@ func (as *authStore) RoleRevokePermission(r *pb.AuthRoleRevokePermissionRequest)
 		return nil, ErrRoleNotFound
 	}
 
-	updatedRole := &authpb.Role{}
-	updatedRole.Name = role.Name
+	updatedRole := &authpb.Role{
+		Name: role.Name,
+	}
 
-	revoked := false
 	for _, perm := range role.KeyPermission {
 		if !bytes.Equal(perm.Key, []byte(r.Key)) || !bytes.Equal(perm.RangeEnd, []byte(r.RangeEnd)) {
 			updatedRole.KeyPermission = append(updatedRole.KeyPermission, perm)
-		} else {
-			revoked = true
 		}
 	}
 
-	if !revoked {
+	if len(role.KeyPermission) == len(updatedRole.KeyPermission) {
 		return nil, ErrPermissionNotGranted
 	}