Can a python view template be made to be 'safe/secure' if I make it user editable?

Say I need to have a templating system where a user can edit it online using an online editor.

So they can put if tags, looping tags etc., but ONLY for specific objects that I want to inject into the template.

Can this be made to be safe from security issue开发者_C百科s?

i.e. them somehow outputing sql connection string information or scripting things outside of the allowable tags and injected objects.

Yes, use a template engine that has sandboxing features, like jinja2