Apache OpenOffice (AOO) Bugzilla – Issue 81045
[Automation] BeanShell and JavaScript macros are run on Security Level "Medium" even if macros are disabled
Last modified: 2016-12-30 04:13:40 UTC
- ensure your Security Level (Tools/Options/OpenOffice.org/Security/Macro Security) is set to "Medium" - open the attached document => a dialog pops up warning that the document contains macros, and asking whether they should be enabled or disabled - press "Disable Macros" - Tools/Macros/Organize Macros/StarOffice Basic - in the Basic macro organizer, select <document>/Standard/Module1/Main - press the "Run" button => a message box pops up saying that macro execution is disabled (which is fine) - Tools/Macros/Organize Macros/BeanShell - in the BeanShell macro organizer, select the <document>/Library1/Macro1.bsh script - press the "Run" button => the macro is executed, which should not be the case since I disabled macro execution for the document - try the same for the embedded JavaScript macro => the macro is executed, too, also ignoring that I disabled macros
Created attachment 47791 [details] document to reproduce the bug case
adding keyword "security", targeting to 2.x
cd: Accepted.
target 3.x
Sorry, that should be 3.0
cd->ab: Please take over. The dialog has to check the "macro execution mode" of the document. You can ask "mav" if you need more information.
STARTED
fixed in cws ab53
The JavaScript and BeanShell macros now are not executed any more, but unlike in Basic no message box is shown for now, because this would have been an UI change. This will be handled in #i91098.
ab->tbo: Please verify
verified in CWS ab53 unxlngi: OK
integrated into DEV300m24 - closing
Make an automated test out of this. Target 3.0.1
Mine!
Adjust target, still need an autotest for this.
Retarget
Retargeted again to 3.2, or is it fixed?
Still i did not find the time to create a suitable test and it's not going to happen for 3.2, setting 3.3.
3.x
Assign to new default-assignee