also add some defaulting to the querying of the settings where it defaults to an empty set

2013-07-11 12:12:42 -04:00
parent b39edd821c
commit c3ad168b10
1 changed files with 3 additions and 1 deletions
--- a/common/djangoapps/util/sandboxing.py
+++ b/common/djangoapps/util/sandboxing.py
@@ -14,7 +14,9 @@ def can_execute_unsafe_code(course_id):
    """
    # To decide if we can run unsafe code, we check the course id against
    # a list of regexes configured on the server.
-    for regex in settings.COURSES_WITH_UNSAFE_CODE:
+    # If this is not defined in the environment variables then default to the most restrictive, which
+    # is 'no unsafe courses'
+    for regex in getattr(settings, 'COURSES_WITH_UNSAFE_CODE', []):
        if re.match(regex, course_id):
            return True
    return False