work around a pylons oddity

--HG--
branch : trunk

diff --git a/jinja/utils.py b/jinja/utils.py
index 7fe5d2ebf656e8623dbf35b38548ad537a906189..9444c5cb39048bf3bd321d38670eb477e2803128 100644 (file)
--- a/jinja/utils.py
+++ b/jinja/utils.py
@@ -200,8 +200,12 @@ def get_attribute(obj, name):
     if getattr(obj, '__class__', None) in callable_types and \
        name.startswith('func_') or name.startswith('im_'):
         raise SecurityException('not allowed to access function attributes')
+
     r = _getattr(obj, 'jinja_allowed_attributes', None)
-    if r is not None and name not in r:
+    # the empty string check is for pylons which returns empty strings on
+    # it's stacked something foobar object
+    if r not in (None, '') and name not in r:
+        print "broken here"
         raise SecurityException('disallowed attribute accessed')
 
     # attribute lookups convert unicode strings to ascii bytestrings.