Details
-
Type:
Improvement
-
Status:
Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 4.0
-
Fix Version/s: 4.1-milestone-1
-
Component/s: Scripting
-
Labels:None
-
Tests:Unit
-
Difficulty:Unknown
-
Similar issues:
XWIKI-3737Script macro does not execute transformation XWIKI-2366Custom Velocity Uberspector that allows chaining several uberspectors XWIKI-2688Allow macros to decide what to render based on the fact that they're used inline or not XWIKI-6705Velocity scripts share the same macro namespace XWIKI-7756Impossible to execute request with query manager on another wiki without programming right XWIKI-5041Allow script authors to load and save documents in their own security context, not the user's. XWIKI-7954 Have custom actions for certain macros/gadgets XWIKI-6551Allow template provider to configure the action to execute upon document creation XWIKI-4268Allow JSR223 script macros to share classloaders between invocation in the same Execution Context
Description
Right now the algorithm is hardcoded in PermissionCheckerListener to check for Programming Rights. Make this extensible by:
- Introducing a new MacroPermissionPolicy component role
- Deprecating PrivilegedScriptMacro which is no longer needed
Issue Links
- blocks
-
XWIKI-3967
Allow using Groovy scripts without Programming Rights
-
Done