使用Pymongo查找仅返回ObjectID和filterd字段,结果错误

2024-09-30 01:21:28 发布

您现在位置:Python中文网/ 问答频道 /正文
763 3

使用Pymongo和find函数,只返回ObjectID而不是所有数据。 我的代码:

client = Mongo_Connection()
logs_collection = client[setting['logs-db-name']][setting['logs-collection-name']]
last_time_delta = datetime.datetime.now() - datetime.timedelta(hours=setting['logs-from-X-hours'])

results = logs_collection.find(             # Build the query
                    {'insert_time': {'$gte': last_time_delta}},
                    {rule['field']:rule['value']})

            for log in results:  
                print(log)

规则['field']=logid

规则['value']=4798

我的指纹显示:

{'_id': ObjectId('5d8672d0f9c301045c071ca3'), 'logid': 1102}
{'_id': ObjectId('5d8672d0f9c301045c071ca4'), 'logid': 5379}
{'_id': ObjectId('5d8672d2f9c301045c071ca5'), 'logid': 5379}
{'_id': ObjectId('5d8672d4f9c301045c071ca6'), 'logid': 4798}

我只想得到Logid4798,然后得到所有数据,比如

{
    "_id" : ObjectId("5d8672d4f9c301045c071ca6"),
    "logid" : 4798,
    "client_time" : ISODate("2019-09-22T00:58:27.000Z"),
    "insert_time" : ISODate("2019-09-21T21:58:28.510Z"),
    "type" : 8,
    "src" : "Microsoft-Windows-Security-Auditing",
    "cat" : 13824,
    "dataList" : [ 
        "S-1-5-21-3876502129-1844923064-4112176513-1001", 
        "USER", 
        "PC-DESKTOP", 
        "0xafa8e", 
        "S-1-5-18", 
        "PC-DESKTOP$", 
        "PCNETWORK", 
        "0x3e7", 
        "XboxLive", 
        "1", 
        "1", 
        "%%8099", 
        "0", 
        "2019-09-21T18:58:22.960005000Z", 
        "27652", 
        "S-1-5-21-3876502129-1844923064-4112176513-1001", 
        "USER", 
        "PC-DESKTOP", 
        "0xafac0", 
        "XboxLive", 
        "1", 
        "1", 
        "%%8099", 
        "0", 
        "2019-09-21T18:58:22.960005000Z", 
        "27652", 
        "USER2", 
        "PC-DESKTOP", 
        "S-1-5-21-3876502129-1844923064-4112176513-1004", 
        "S-1-5-21-3876502129-1844923064-4112176513-1001", 
        "USER", 
        "PC-DESKTOP", 
        "0xafa8e", 
        "0x7390", 
        "C:\\Windows\\System32\\mmc.exe"
    ],
    "hostname" : "Pc-Desktop",
    "username" : "User",
    "os" : "Windows",
    "ip_add" : "192.168.0.123",
    "mac_add" : "1c:87:2c:77:f0:99"
}

没有场&场;值,我可以从MongoDB获取所有数据,但我必须使用它们使用来自其他服务器的请求从DB获取动态数据。所以我试着在pymongo教程中查找,没有发现任何关于这些结果的信息


Tags: 数据clientiddatetimetimewindowsfindsetting
1条回答
网友
1楼 · 发布于 2024-09-30 01:21:28

这是一个微妙的,但你的花括号是在稍微错误的地方。试试这个:

results = db.logs_collection.find(  # Build the query
    {'insert_time': {'$gte': last_time_delta},
    rule['field']: rule['value']})

获得原始结果的原因是您向find函数传递了第二个dict参数。第二个参数是结果过滤器;因此,您不是在筛选记录,而是在筛选结果

祝你的pymongo之旅好运

相关问题 更多 >

    编程相关推荐

    热门问题