I'd like to know if this behavior is correct/desired. 1. Users without PR can register skins. 2. Skins can override global velocity macros. 3. Macros are evaluated in the security context of the caller.
If the answer to these questions is yes, then a document which invokes a global macro such as #livetable does not know that the macro may be overridden by the skin and it may be doing something in their name which is a security gotcha and should be loudly documented. If this behavior is not desired then maybe the best solution is to prevent skin macros from overriding global macros unless the skin author has PR. WDYT? Caleb _______________________________________________ devs mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/devs
