New log entries added to database. Requires dedicated SQLmap.

EITS403 · EITS403 · commit b4e79be7b5d6 · 2026-03-01T17:11:39.000+08:00
diff --git a/app/apis/sqlmap_api.py b/app/apis/sqlmap_api.py
@@ -107,18 +107,19 @@ async def delete_task(task_id: str):
 @router.post("/tasks/webhook/log")
 async def receive_sqlmap_log(request: Request):
     try:
-        # 获取原始请求体
-        body = await request.body()
-        # 解析JSON数据
+        # 解析 JSON 日志
         log_data = await request.json()
 
-        # 打印接收到的数据用于调试
-        print(log_data)
+        # 兼容单条和多条日志两种格式
+        if isinstance(log_data, dict):
+            logs = [log_data]
+        elif isinstance(log_data, list):
+            logs = log_data
+        else:
+            raise HTTPException(status_code=400, detail="Invalid log payload format")
 
-        # TODO: 在这里处理日志数据，例如保存到数据库
-        # 您可以根据log_data的结构进行相应的处理
+        await sqlmap_task.save_sqlmap_logs(logs)
 
-        return {"success": True, "message": "Log received successfully"}
+        return {"success": True, "message": "Log stored successfully"}
     except Exception as e:
-        print(f"Error processing log: {e}")
         raise HTTPException(status_code=400, detail=f"Invalid log data: {str(e)}")
diff --git a/app/core/sqlmap_core.py b/app/core/sqlmap_core.py
@@ -52,6 +52,39 @@ async def get_task_logs(task_id: str, limit: int = 100, offset: int = 0):
     return logs
 
 
+async def save_sqlmap_logs(logs: list[dict]):
+    """
+    保存 SQLMap webhook 上报的日志
+    """
+    async with AsyncSessionLocal() as session:
+        for item in logs:
+            task_id = item.get("taskid")
+            if not task_id:
+                continue
+
+            result = await session.execute(
+                select(SqlmapScanPayload).where(SqlmapScanPayload.task_id == task_id)
+            )
+            payload = result.scalar_one_or_none()
+
+            celery_task_id = (
+                payload.celery_task_id
+                if payload and payload.celery_task_id
+                else task_id
+            )
+
+            log_row = SqlmapScanLog(
+                task_id=task_id,
+                level=item.get("level", "INFO"),
+                message=item.get("message", ""),
+                log_time=item.get("time"),
+                celery_task_id=celery_task_id,
+            )
+            session.add(log_row)
+
+        await session.commit()
+
+
 # 同步扫描任务写入。防止数据库丢失
 def celery_task_add(
     *,
