amorfo77/parsedmarc
1
0
Fork 0
mirror of https://github.com/domainaware/parsedmarc.git synced 2026-05-01 01:39:29 +00:00
Code Issues Projects Releases Wiki Activity

Fix duplicate forensic report Elasticsearch lookup

Browse Source
This commit is contained in:
Sean Whalen
2018-10-14 20:12:47 -04:00
parent 77111075b4
commit 29ef06f892
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
parsedmarc/elastic.py
View File

@@ -326,16 +326,16 @@ def save_forensic_report_to_elasticsearch(forensic_report,
from_ = None
to_ = None
subject = None
if "From" in headers:
from_ = headers["From"]
if "from" in headers:
from_ = headers["from"]
from_query = {"match": {"sample.headers.from": from_}}
q = q & from_query
if "To" in headers:
to_ = headers["To"]
if "to" in headers:
to_ = headers["to"]
to_query = {"match": {"sample.headers.to": to_}}
q = q & Q(to_query)
if "Subject" in headers:
subject = headers["Subject"]
if "subject" in headers:
subject = headers["subject"]
subject_query = {"match": {"sample.headers.subject": subject}}
q = q & subject_query