I'm currently implementing a system which will allow users to make custom templates based on the Django templating engine. Before I deploy or even develop any further, though, I guess I should find out--how secure are Django templates are. Do they allow any access to the system? Is there something I should bolt-down before allowing users to use the templating engine in their templates (this will be public--anyone will be allowed to use custom templates)? Is there a way to access the database via the templates?
Thanks, Sam --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users -~----------~----~----~----~------~----~------~--~---
