I see your point but, as an external XWiki user/developer (I'm not committer), I think these are only velocity scripts containing useful variables and parts of interaction code but no "core" core... These scripts could be copied/pasted in any XWiki document... To my mind, the important thing is not to hide these scripts but to verify they don't contain any silly access control such as "if($hasRight) doSomethingNeedingStrongSecurity()" because if you simply rewrite the script without the test, you access what should be protected... The control should be placed in the code...
Pascal On 6/12/08, Lilianne E. Blaze <[EMAIL PROTECTED]> wrote: > > Hello, > Is there any particular reason why /templates are not in /WEB-INF? > I don't like the idea of having part of the source code accessible by > everyone. > > Greetings, Lilianne E. Blaze > > > _______________________________________________ > devs mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/devs > _______________________________________________ devs mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/devs
