Skip to content

Commit

Permalink
Draft of the README and ManualSetupGuide
Browse files Browse the repository at this point in the history
  • Loading branch information
@vyotsukura-gsa
vyotsukura-gsa committed Sep 19, 2023
1 parent f0e99ed commit 44769e6
Show file tree
Hide file tree
Showing 2 changed files with 177 additions and 130 deletions.
206 changes: 76 additions & 130 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -1,146 +1,92 @@
[![Known Vulnerabilities](https://snyk.io/test/github/GSA/srt-opportunity-gatherer/badge.svg)](https://snyk.io/test/github/GSA/opportunity-gatherer)
[![Maintainability](https://api.codeclimate.com/v1/badges/08f7d22760fe258970d3/maintainability)](https://codeclimate.com/github/GSA/opportunity-gatherer/maintainability)


# srt-opportunity-gatherer (AKA Smartie)

This project gathers Information Technology (IT) solicitations that are posted by the US Federal Government on beta.sam.gov. For each solicitation, we extract the text of each document and feed it to a [supervised machine learning model](https://github.com/GSA/srt-ml) in order to determine whether or not the document contains appropriate [setion 508 accessibility](https://www.section508.gov/) language.

Following a [service-oriented architecture](https://en.wikipedia.org/wiki/Service-oriented_architecture), this project comprises a portion of the back-end for the [Solicitation Review Tool](https://github.com/GSA/srt-ui), a web application that GSA policy experts will use to review IT solicitations for Section 508 compliance; notify deficient solicitation owners; monitor changes in historical compliance; and validate predictions to improve the machine-learning model's performance.

This application is designed to be run as a cron daemon within a Docker image on [cloud.gov](https://cloud.gov/). This is tricky to achieve, as traditional cron daemons need to run as root and have opinionated defaults for logging and error notifications. This usually makes them unsuitable for running in a containerized environment. So, instead of a system cron daemon, we're using [supercronic](https://github.com/aptible/supercronic) to run a dockerized crontab.

Here's what happens every time the job is triggered:
1. Fetches yesterday's updated/posted solicitations from beta.sam.gov using the [Opportunity Management API](https://open.gsa.gov/api/opportunities-api/#get-list-of-opportunities), filtering out solictations that don't possess an IT-related [NAICS](https://www.census.gov/eos/www/naics/) code.
2. Uses the [Federal Hierachy API](https://open.gsa.gov/api/fh-public-api/) to lookup canonical agency and office names.
3. For each solicitation, downloads a zip archive containing all the solicitation's relevant documents using the [Opportunity Management API](https://open.gsa.gov/api/opportunities-api/#download-all-attachments-as-zip-for-an-opportunity)
4. Extracts the text from each of those documents using [textract](https://github.com/deanmalmgren/textract).
5. Restructures the data and inserts it into a PostgreSQL database.
6. In a future release, the script will poll the database for the number of user-validated predictions on document compliance. If there's a significant increase, those newly validated documents will be sent to the [machine learning component](https://github.com/GSA/srt-ml) of the application to train a new and improved model.

## Getting Started

This application is designed to work as a dockerized daemon in cloud.gov. As a cloud.gov app, it's bound with a postgres database that's provided as a brokered service. See the **Deployment** section below if you're interested in pushing the application to cloud.gov.

If you wish to run the application locally, you'll need to perform some setup as we haven't yet configured a docker image that gets this up an running locally.

### Create a sam.gov account

No matter how you plan on running this application, you'll need to create both a personal (i.e. Public) and System Account in either beta.sam.gov or alpha.sam.gov (the latter is their dev version, so you should opt for an account with the former). Instructions for getting those accounts set up can be found [here](https://open.gsa.gov/api/opportunities-api/#getting-started).

> Note: the system account will require you to specify the ip address(es) from which you plan to access the APIs. If you only plan on accessing the APIs from within cloud.gov, you can list the [external IP address ranges that cloud.gov uses](https://cloud.gov/docs/apps/static-egress/#cloud-gov-egress-ranges). For local access, you'll need to add your own external ip address.
#### Set Environment Variables

Assuming you're using beta.sam.gov's APIs, after you've set up your personal account, generate a public API key (this is for the [Federal Hierachy API](https://open.gsa.gov/api/fh-public-api/)) and set it as an environment variable (locally and/or in cloud.gov) as `BETA_SAM_API_KEY_PUB`.

Again, assuming you're using beta.sam.gov's APIs, after you've set up your system account, generate a system account API key and set it as `BETA_SAM_API_KEY`. Set another environment variab;e called `SAM_AUTHORIZER` and set its value to the email address you associated with the system account.

### Local Setup

Local setup requires:
- Python 3.6.6
- PostgreSQL 9.6.8 (newer versions are likely fine)

Once you've got the above prerequisites met, you'll need to install several OS-specific dependencies to get Python's `textract` library to work. This library is responsible for extracting the text from the myriad solicitation documents. It does so by calling several different OS-specific packages. See their [documentation](https://textract.readthedocs.io/en/stable/installation.html) for more details on the packages you'll need to install given your OS.
As of January 28, the Linux/Debian prerequisites for textract are:
```bash
apt-get install python-dev libxml2-dev libxslt1-dev antiword unrtf poppler-utils pstotext \
tesseract-ocr flac ffmpeg lame libmad0 libsox-fmt-mp3 sox libjpeg-dev swig
```
#### Local Implementation

Now that you have Python, PostgreSQL, and the textract dependencies, you can run the scan locally within a virtual environment (using [venv](https://docs.python.org/3.6/library/venv.html)). Doing so will create a database with the following connection string: `postgresql+psycopg2://localhost/test`. Make sure postgres is already running in the background and accepting connections on localhost.

> By default, the database will persist after the scan, so be sure to drop it using `dropdb test` if you want to clean up afterwards.
To run the scan locally, do the following:

```bash
cd path/to/this/locally/cloned/repo
python3 -m venv env
source venv/bin/activate
pip install -r requirements.txt
#now you can run the scan
python main.py
```

#### Running the tests

To run the tests the locally, set up the environment like before but instead run:

```bash
python3 -W ignore -m unittest discover tests -p '*_test.py'
# Overview
The SRT FBO Scraper is a Python application that gathers data about Information Technology (IT) solicitations submitted by agencies around the federal government by scraping that data from the SAM.gov website. For each solicitation that is found, this application extracts the text of each document and feeds it to a [supervised machine learning model](https://github.com/GSA/srt-ml) in order to determine whether or not the document contains appropriate [Section 508 accessibility](https://www.section508.gov/) language.
Following a [service-oriented architecture](https://en.wikipedia.org/wiki/Service-oriented_architecture), this application comprises one component of the back-end for the [Solicitation Review Tool](https://github.com/GSA/srt-ui), a web application that GSA policy experts will use to review IT solicitations for Section 508 compliance; notify the owners of deficient solicitations; monitor historical changes in compliance; and validate predictions to improve the machine-learning model's performance.
This application is designed to run as a cron daemon within a Docker image on [cloud.gov](https://cloud.gov/). Here's what happens every time the cron job is triggered:
1) Fetches yesterday's updated/posted solicitations from sam.gov using the [Opportunity Management API](https://open.gsa.gov/api/opportunities-api/#get-list-of-opportunities), filtering for those solicitations that have an IT-related [NAICS](https://www.census.gov/naics/) code.
2) Uses the [Federal Hierarchy API](https://open.gsa.gov/api/fh-public-api/) to look up canonical agency and office names.
3) For each solicitation, it downloads a zip archive containing all of the solicitation's relevant documents using the [Opportunity Management API](https://open.gsa.gov/api/opportunities-api/#download-all-attachments-as-zip-for-an-opportunity).
4) Extracts the text from each of those documents using [textract](https://github.com/deanmalmgren/textract).
5) Restructures the data and inserts it into a PostgreSQL database.
In a future release, the script will poll the database for the number of user-validated predictions on document compliance. If there's a significant increase, those newly validated documents will be sent to the [machine learning component](https://github.com/GSA/srt-ml) of the application to train a new and improved model.
# Developer Requirements
## Software Components and Tools
The following is a summary of the software and tools that are needed for development of this project:
* Operating system - Linux, Ubuntu, Mac OS, Windows
* IDE - Visual Studio Code, etc.
* Python 3.6.6
* Docker
* PostGreSQL
* Node (Version 16)
* Node Package Manager
* Node Version Manager
* SNYK
## Systems Access
Access to the following platforms will also be required for development:
* Cloud.gov
* SAM.gov
* MAX.gov
* Docker
* SNYK
* GitHub - GSA team
## Environment Variables
* SAM_API_KEY
* VCAP_SERVICES
* VCAP_APPLICATION
* TEST_DB_URL
* SUPERCRONIC
# Setup and Deployment
This application is designed to work as a dockerized daemon in cloud.gov. As a cloud.gov app, it is bound with a postgres database that is provided as a brokered service. See the Cloud.gov Deployment section below if you are interested in pushing the application to cloud.gov.
## Create a sam.gov account
No matter how you plan on running this application, you will need to create both a personal (i.e. Public) and System Account on either sam.gov. Instructions for getting those accounts set up can be found [here](https://open.gsa.gov/api/opportunities-api/#getting-started).

Note: the system account will require you to specify the ip address(es) from which you plan to access the APIs. If you only plan on accessing the APIs from within cloud.gov, you can list the [external IP address ranges that cloud.gov uses](https://cloud.gov/docs/apps/static-egress/#cloud-gov-egress-ranges). For local access, you will need to add your own external ip address.
## Set Environment Variables
Assuming you are using sam.gov's APIs, after you have set up your personal account, generate a public API key (this is for the [Federal Hierarchy API](https://open.gsa.gov/api/fh-public-api/)) and set it as an environment variable (locally and/or in cloud.gov) as SAM_API_KEY.
## Installation
* To get started with the FBO scraper, go to [GSA/srt-fbo-scraper](https://github.com/GSA/srt-fbo-scraper) to copy the URL for cloning the project.
* Open Terminal or use Visual Studio Code and open a terminal window.
* Navigate to the desired folder and clone the project.
* Next navigate to the bin folder that was created through the clone.
* Type `./dev_setup.sh` to begin installation.
* Note - If this script fails during execution, please refer to the manual setup guide for installing the necessary tools and packages here: [Manual Setup Guide](https://github.com/GSA/srt-fbo-scraper/blob/main/documentation/ManualSetupGuide.md).
* This script will install and set up much of what you need for this project, including curl and pyenv.
* It will also install and update all of the Node modules used in this project.
* This script will then create the needed local Postgres user and database with all of the tables required by this project, if they do not already exist.
## Cloud.gov Deployment
Build the Docker Image
Before pushing to cloud.gov, you need to build the Docker image and push it to DockerHub.

To build and push the image:
```

Several warnings and exceptions will print out. Those are by design as we're mocking HTTP requests in the unit testing.

If you notice any errors, please open an issue.

### Cloud.gov Deployment

#### Build the Docker Image

Before pushing to cloud.gov, you need to build the Docker image and push it to DockerHub.

To build and push the image:

```bash
DOCKER_USER=<your user name>
DOCKER_PASS=<your password>
TARGET_SPACE=<dev, staging or prod> #choose one
docker build -t $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE .
echo "$DOCKER_PASS" | docker login --username $DOCKER_USER --password-stdin
docker push $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
docker push $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
```
Push to cloud.gov
Log into cloud.gov with:

#### Push to cloud.gov

Log into cloud.gov with:
cf login -a api.fr.cloud.gov --sso
Target the appropriate org and space (i.e.TARGET_SPACE from above) by following the prompts.

```bash
cf login -a api.fr.cloud.gov --sso
If this is your first time pushing the application, you need to first create and bind a postgres service instance to the application:
```

Target the appropriate org and space (i.e.`TARGET_SPACE` from above) by following the prompts.

If this is your first time pushing the application, you need to first create and bind a postgres service instance to the application:

```bash
cf create-service <service> <service-tag>
#wait a few minutes for the service to be provisioned
cf create-service-key <service-tag> <service-key-name> #if this returns an OK, then your service has been provisioned
cf push srt-opportunity-gatherer --docker-image $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
cf bind-service srt-opportunity-gatherer <service-tag>
cf restage srt-opportunity-gatherer
```

Above, `<service>` is the name of a postgres service (e.g. `aws-rds shared-psql`) while `<service-tag>` is whatever you want to call this service.

>Since services can sometimes take up to 60 minutes to be provisioned, we use `cf create-service-key` to ensure the service has been provisioned. See [this](https://cloud.gov/docs/services/relational-database/) for more details.

Every subsequent time you can merely use:

```bash
cf push srt-opportunity-gatherer --docker-image $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
cf push srt-fbo-scraper --docker-image $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
cf bind-service srt-fbo-scraper <service-tag>
cf restage srt-fbo-scraper
```
In the commands above, `<service>` is the name of a postgres service (e.g. `aws-rds shared-psql`) while `<service-tag>` is whatever you want to call this service.

### Logs

We don't do anything special with logging. We simply write to STDOUT/STDERR and use https://login.fr.cloud.gov/login to view and search them.

## Contributing
Since services can sometimes take up to 60 minutes to be provisioned, we use `cf create-service-key`` to ensure the service has been provisioned. See this for more details.

Please read [CONTRIBUTING](https://github.com/GSA/opportunity-gatherer/blob/master/.github/CONTRIBUTING.MD) for details on our code of conduct, and the process for submitting pull requests to us.

## License

This project is licensed under the Creative Commons Zero v1.0 Universal License - see the [LICENSE](https://github.com/GSA/opportunity-gatherer/blob/master/.github/LICENSE) file for details

## Acknowledgments

- The [Federal Service Desk](https://www.fsd.gov/fsd-gov/home.do) for answering some of our questions about when the FTP is refreshed
- The progenitor of this project, which can be found [here](https://github.com/jtexnl/FBOProcurementScan)
- The [supercronic project](https://github.com/aptible/supercronic)
- Meshcloud's [example](https://github.com/Meshcloud/cf-cron) of using supercronic within Cloud Foundry
Every subsequent time you can merely use:
```
cf push srt-fbo-scraper --docker-image $DOCKER_USER/srt-fbo-scraper-$TARGET_SPACE
```
# More Info
For more detailed information, please go here: [Documentation](https://github.com/GSA/srt-fbo-scraper/tree/main/documentation)
101 changes: 101 additions & 0 deletions documentation/ManualSetupGuide.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,101 @@
# Manual Setup Guide
Use the following as a guide to install required modules when the automated setup script fails or is not available.

* First, navigate to the root level of the folder for your project.
* Next, execute the following commands according to your operating system:

## Install curl
Mac:
```
echo "Installing curl..."
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install.sh)"
```

Ubuntu:
```
echo "Installing curl..."
sudo apt-get install curl
```
## Install pyenv
For both Mac and Ubuntu:
```
echo "Installing pyenv..."
curl https://pyenv.run | bash
```

* Navigate to the desired folder to clone the srt-fbo-scraper project.
* Then execute the following in the command line:
* Replace `<your main project folder>` below with the actual path to the root level of your project.

Mac:
```
echo 'export PYENV_ROOT="<your main project folder>/.pyenv"' >> ~/.bash_profile
echo 'command -v pyenv >/dev/null || export PATH="$PYENV_ROOT/bin:$PATH"' >> ~/.bash_profile
echo 'eval "$(pyenv init -)"' >> ~/.bash_profile
source ~/.bash_profile
```

Ubuntu:
```
echo 'export PYENV_ROOT="<your main project folder>/.pyenv"' >> ~/.bashrc
echo 'command -v pyenv >/dev/null || export PATH="$PYENV_ROOT/bin:$PATH"' >> ~/.bashrc
echo 'eval "$(pyenv init -)"' >> ~/.bashrc
source ~/.bashrc
```
## Install python with pyenv
For both Mac and Ubuntu:
```
pyenv install 3.6
pyenv global 3.6
```

## Create the virtual environment
```
python -m venv <your main project folder>/venv
```
## Source the new virtual env
```
source <your main project folder>/venv/bin/activate
```
## Install requirements
```
pip install -r <your main project folder>/requirements.txt
```
## Symbolic link in site packages to fbo_scraper module
```
cd <your main project folder>/venv/lib/python3.6/site-packages
ln -s <your main project folder>/fbo_scraper fbo_scraper
cd <your main project folder>
pip install .
```
## Download SRT Source Code
For both Mac and Ubuntu:
* Navigate to the desired folder to clone the srt-fbo-scraper project.
* Then execute the following in the command line:
```
git clone https://github.com/GSA/srt-fbo-scraper.git
cd srt-fbo-scraper
git checkout dev
npm install
```

## Create the Postgres User
```
sudo -u postgres createuser circleci
sudo -u postgres psql -c "ALTER USER circleci WITH password 'srtpass';"
sudo -u postgres psql -c "GRANT ALL PRIVILEGES ON ALL TABLES IN SCHEMA public TO circleci;"
sudo -u postgres psql -c "ALTER USER circleci WITH Superuser;"
sudo -u postgres psql -c "ALTER USER circleci WITH CREATEROLE;"
sudo -u postgres psql -c "ALTER USER circleci WITH CREATEDB;"
```

## Create the SRT database
```
echo "Creating srt database..."
sudo -u postgres createdb srt -O circleci
```

## Set Environment Variables
Make sure to set the following environment variables:
* SAM_API_KEY
* TEST_DB_URL

0 comments on commit 44769e6

Please sign in to comment.