GuardianUnivalle-Benito-Yucra 0.1.19__py3-none-any.whl → 0.1.21__py3-none-any.whl

GuardianUnivalle_Benito_Yucra/detectores/detector_sql.py

@@ -1,4 +1,3 @@
-from django.http import JsonResponse
 from django.utils.deprecation import MiddlewareMixin
 from django.conf import settings
 import logging, re, json
@@ -10,7 +9,7 @@ if not logger.handlers:
     handler.setFormatter(logging.Formatter("%(asctime)s - %(levelname)s - %(message)s"))
     logger.addHandler(handler)
 
-# Patrones de ataque SQL
+# 🔹 Patrones de ataque SQL
 PATTERNS = [
     (re.compile(r"\bunion\b\s+(all\s+)?\bselect\b", re.I), "UNION SELECT"),
     (
@@ -44,12 +43,12 @@ def extract_payload_text(request):
     return " ".join([p for p in parts if p])
 
 
-def detect_sqli_text(text):
-    matches = []
-    for patt, message in PATTERNS:
+def detect_sql_attack(text):
+    descripcion = []
+    for patt, msg in PATTERNS:
         if patt.search(text):
-            matches.append(message)
-    return (len(matches) > 0, matches)
+            descripcion.append(msg)
+    return (len(descripcion) > 0, descripcion)
 
 
 def get_client_ip(request):
@@ -63,26 +62,30 @@ class SQLIDefenseMiddleware(MiddlewareMixin):
     def process_request(self, request):
         client_ip = get_client_ip(request)
         trusted_ips = getattr(settings, "SQLI_DEFENSE_TRUSTED_IPS", [])
+        exempt_paths = getattr(settings, "SQLI_DEFENSE_EXEMPT_PATHS", [])
 
         if client_ip in trusted_ips:
             return None
+        # 2️⃣ Permitir rutas exentas
+        for path in exempt_paths:
+            if request.path.startswith(path):
+                return None
 
         text = extract_payload_text(request)
         if not text:
             return None
 
-        flagged, matches = detect_sqli_text(text)
+        flagged, descripcion = detect_sql_attack(text)
         if flagged:
-            # Guardamos los datos del ataque en el request
+            # Solo tipo SQL, descripción con los patrones detectados
             request.sql_attack_info = {
                 "ip": client_ip,
-                "tipos": matches,
+                "tipos": ["SQL"],
+                "descripcion": descripcion,
                 "payload": text,
             }
-
             logger.warning(
-                f"Ataque SQL detectado desde IP {client_ip}: {matches}, payload: {text}"
+                f"Ataque SQL detectado desde IP {client_ip}: {descripcion}, payload: {text}"
             )
-
-            # 👉 Aquí ya NO devolvemos JsonResponse
+            # No devolvemos JsonResponse, solo marcamos el ataque
             return None

{guardianunivalle_benito_yucra-0.1.19.dist-info → guardianunivalle_benito_yucra-0.1.21.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: GuardianUnivalle-Benito-Yucra
-Version: 0.1.19
+Version: 0.1.21
 Summary: Middleware y detectores de seguridad (SQLi, XSS, CSRF, DoS, Keylogger) para Django/Flask
 Author-email: Andres Benito Calle Yucra <benitoandrescalle035@gmail.com>
 License: MIT

{guardianunivalle_benito_yucra-0.1.19.dist-info → guardianunivalle_benito_yucra-0.1.21.dist-info}/RECORD

@@ -7,14 +7,14 @@ GuardianUnivalle_Benito_Yucra/criptografia/kdf.py,sha256=_sbepEY1qHEKga0ExrX2WRg
 GuardianUnivalle_Benito_Yucra/detectores/detector_csrf.py,sha256=EAYfLkHuxGC5rXSu4mZJ4yZDCbwBpTX8xZWGKz7i5wA,692
 GuardianUnivalle_Benito_Yucra/detectores/detector_dos.py,sha256=lMWmCw6nccCEnek53nVjpoBCeiBqLdrSXxqRuI7VP2I,696
 GuardianUnivalle_Benito_Yucra/detectores/detector_keylogger.py,sha256=rEDG-Q_R56OsG2ypfHVBK7erolYjdvATnAxB3yvPXts,729
-GuardianUnivalle_Benito_Yucra/detectores/detector_sql.py,sha256=qbYOc-Y1i_wmuYSY_skTa4j6nFaLAjEJ-p_AdIEjtf4,2930
+GuardianUnivalle_Benito_Yucra/detectores/detector_sql.py,sha256=mLLs6FRObxwntu6tpIV8zc8IIKnUJrjf-TlPFDvLkB4,3206
 GuardianUnivalle_Benito_Yucra/detectores/detector_xss.py,sha256=66V_xuxNOZEwluvWOT4-6pk5MJ3zWE1IwcVkBl7MZSg,719
 GuardianUnivalle_Benito_Yucra/middleware_web/middleware_web.py,sha256=23pLLYqliUoMrIC6ZEwz3hKXeDjWfHSm9vYPWGmDDik,495
 GuardianUnivalle_Benito_Yucra/mitigacion/limitador_peticion.py,sha256=ipMOebYhql-6mSyHs0ddYXOcXq9w8P_IXLlpiIqGncw,246
 GuardianUnivalle_Benito_Yucra/mitigacion/lista_bloqueo.py,sha256=6AYWII4mrmwCLHCvGTyoBxR4Oasr4raSHpFbVjqn7d8,193
 GuardianUnivalle_Benito_Yucra/puntuacion/puntuacion_amenaza.py,sha256=Wx5XfcII4oweLvZsTBEJ7kUc9pMpP5-36RfI5C5KJXo,561
-guardianunivalle_benito_yucra-0.1.19.dist-info/licenses/LICENSE,sha256=5e4IdL542v1E8Ft0A24GZjrxZeTsVK7XrS3mZEUhPtM,37
-guardianunivalle_benito_yucra-0.1.19.dist-info/METADATA,sha256=0yp93hYVTOMtAMMzYRideNMkcCmu0yPsKD8J9uxQdh4,1893
-guardianunivalle_benito_yucra-0.1.19.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
-guardianunivalle_benito_yucra-0.1.19.dist-info/top_level.txt,sha256=HTWfZM64WAV_QYr5cnXnLuabQt92dvlxqlR3pCwpbDQ,30
-guardianunivalle_benito_yucra-0.1.19.dist-info/RECORD,,
+guardianunivalle_benito_yucra-0.1.21.dist-info/licenses/LICENSE,sha256=5e4IdL542v1E8Ft0A24GZjrxZeTsVK7XrS3mZEUhPtM,37
+guardianunivalle_benito_yucra-0.1.21.dist-info/METADATA,sha256=c5s3NE0dZvg4WrIczje6qUCbIkUcj0OgyG8sNvZXrWo,1893
+guardianunivalle_benito_yucra-0.1.21.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
+guardianunivalle_benito_yucra-0.1.21.dist-info/top_level.txt,sha256=HTWfZM64WAV_QYr5cnXnLuabQt92dvlxqlR3pCwpbDQ,30
+guardianunivalle_benito_yucra-0.1.21.dist-info/RECORD,,