On Thu, May 30, 2013 at 11:10 AM, Hamster <[email protected]> wrote:
Marius,
That's a very dangerous solution.
Anybody with the rights to edit that page can take a look at the source and see the velocity syntax, so if he adds a table with usernames and passwords, everybody can still see them in the editor. It will look right when you VIEW the page, but if you EDIT the page.
Sure, and I wrote "Display protected ...". Putting the protected information directly there is indeed bad. Thanks, Marius
HTH
-- View this message in context: http://xwiki.475771.n2.nabble.com/New-User-Directory-Application-tp7585460p7... Sent from the XWiki- Users mailing list archive at Nabble.com. _______________________________________________ users mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/users