Skip to content

usfec

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History
 
 

usfec

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
data
data
 
 
puppet
puppet
 
 
scripts
scripts
 
 
README.md
README.md
 
 
Vagrantfile
Vagrantfile
 
 
bootstrap.sh
bootstrap.sh
 
 
index_template.json
index_template.json
 
 
logstash.conf
logstash.conf
 
 

README.md

US FEC Campaign Contributions Demo: 2013-2014 US Election cycle

For some background information for this demo, please see the blog post here: Kibana 4 for investigating PACs, Super PACs, and who your neighbor might be voting for

#Installation

This demo consists of the following:

  • Instructions for restoring index snapshot with pre-indexed campaign contributions data
  • Python script for joining normalized files and outputting JSON
  • Elasticsearch index template
  • Logstash config

Restoring index snapshot

After downloading and installing the ELK stack, you’ll need to download the index snapshot file for the campaign contributions data which can be obtained here (FYI it’s a 1.4GB file; we take no responsibility for this download eating up your monthly mobile tethering quota):

http://download.elasticsearch.org/demos/usfec/snapshot_demo_usfec.tar.gz

Create a folder somewhere on your local drive called “snapshots” and uncompress the .tar.gz file into that directory. For example:

# Create snapshots directory
mkdir -p ~/elk/snapshots
# Copy snapshot download to your new snapshots directory
cp ~/Downloads/snapshot_demo_usfec.tar.gz ~/elk/snapshots
# Go to snapshots directory
cd ~/elk/snapshots
# Uncompress snapshot file
tar xf snapshot_demo_usfec.tar.gz

Once you have Elasticsearch running, restoring the index is a two-step process:

  1. Register a file system repository for the snapshot (change the value of the “location” parameter below to the location of your usfec snapshot directory):
curl -XPUT 'http://localhost:9200/_snapshot/usfec' -d '{
    "type": "fs",
    "settings": {
        "location": "/tmp/snapshots/usfec",
        "compress": true,
        "max_snapshot_bytes_per_sec": "1000mb",
        "max_restore_bytes_per_sec": "1000mb"
    }
}'
  1. Call the Restore API endpoint to start restoring the index data into your Elasticsearch instance:
curl -XPOST "localhost:9200/_snapshot/usfec/1/_restore"

At this point, go make yourself a coffee. When your delicious cup of single-origin, direct trade coffee has finished brewing, you can check to see if the restore operation is complete by calling the cat recovery API:

curl -XGET 'localhost:9200/_cat/recovery?v'

Or get a count of the documents in the expected indexes:

curl -XGET localhost:9200/usfec*/_count -d '{
	"query": {
		"match_all": {}
	}
}'

which should return a count of approximately 4250251.

Python script

The raw FEC data is provided in a number of 7 files. In order to do some useful querying of the data in a search engine / NoSQL store like Elasticsearch, you typically have to go through a data modeling process of identifying how to join data from various tables.

The Python script (in scripts/process_camfin.py) takes care of some of the obvious ways to join the various data files and produces four .json files which can then be loaded into Elasticsearch using Logstash. The script requires Python 3.

You don't need to run the Python script but it's here in case you want to modify how the data is joined, perform additional data cleansing/enrichment, re-process the latest raw data set from the FEC, etc.

##Elasticsearch index template config

The Elasticsearch mapping configuration is defined in the index template file: index_template.json. Documentation:

##Logstash config

The Logstash configuration is defined in the file: logstash.conf. Documentation for Logstash plugins: http://www.elasticsearch.org/guide/en/logstash/current/index.html.

##Miscellaneous

There are a few other files in this directory which probably deserves explanation:

  • data/US.txt, data/zip_codes.csv: These are two zip code to lat/long mapping files which the Python script uses to enrich zip codes in the raw data with a lat/long that Elasticsearch can use for geo queries. If you run the Python script, make sure these two files are in the same directory as the current working dir at the time of execution.
  • Vagrant/Puppet files: The first demo released in this demo repo, the NYC traffic accidents demo, included these Vagrant/Puppet files to programmatically instantiate a virtual machine that installs the ELK stack and restore the index snapshot with a simple 'vagrant up' command. While you are still free to use these files, we chose not to recommend this for this demo since the index snapshot is so large which can cause problems if people's internet connections are slow, laptops don't have sufficient resources for running a larger VM, etc.