prod

Author: pushkarkumarvats

.env.example

@@ -0,0 +1,147 @@
+# OmniQuant Production Environment Configuration
+# Copy to .env and fill in your values
+
+# ============================================================================
+# Environment
+# ============================================================================
+ENVIRONMENT=production  # development, staging, production
+DEBUG=false
+APP_NAME=OmniQuant
+APP_VERSION=2.0.0
+
+# ============================================================================
+# Database Configuration (PostgreSQL)
+# ============================================================================
+DB_HOST=localhost
+DB_PORT=5432
+DB_NAME=omniquant_prod
+DB_USER=omniquant_user
+DB_PASSWORD=CHANGE_THIS_STRONG_PASSWORD_123!@#
+DB_POOL_SIZE=20
+DB_MAX_OVERFLOW=40
+
+# ============================================================================
+# Redis Configuration
+# ============================================================================
+REDIS_HOST=localhost
+REDIS_PORT=6379
+REDIS_PASSWORD=CHANGE_THIS_REDIS_PASSWORD_456!@#
+REDIS_DB=0
+REDIS_MAX_CONNECTIONS=100
+
+# ============================================================================
+# Broker API Credentials
+# ============================================================================
+# Alpaca (Paper Trading: https://paper-api.alpaca.markets)
+# Alpaca (Live Trading: https://api.alpaca.markets)
+ALPACA_API_KEY=YOUR_ALPACA_API_KEY_HERE
+ALPACA_SECRET_KEY=YOUR_ALPACA_SECRET_KEY_HERE
+ALPACA_BASE_URL=https://paper-api.alpaca.markets
+
+# Interactive Brokers
+IB_HOST=127.0.0.1
+IB_PORT=7497  # TWS: 7497 (paper), 7496 (live) | IB Gateway: 4002 (paper), 4001 (live)
+IB_CLIENT_ID=1
+
+# Polygon.io
+POLYGON_API_KEY=YOUR_POLYGON_API_KEY_HERE
+
+# ============================================================================
+# Security Configuration (CRITICAL!)
+# ============================================================================
+# Generate with: openssl rand -hex 32
+SECRET_KEY=GENERATE_A_SECURE_256_BIT_KEY_HERE_DO_NOT_USE_THIS_DEFAULT
+JWT_ALGORITHM=HS256
+ACCESS_TOKEN_EXPIRE_MINUTES=30
+REFRESH_TOKEN_EXPIRE_DAYS=7
+
+# API Rate Limiting
+RATE_LIMIT_PER_MINUTE=1000
+RATE_LIMIT_BURST=50
+
+# CORS (comma-separated list)
+ALLOWED_ORIGINS=http://localhost:3000,https://yourdomain.com
+
+# ============================================================================
+# Trading Configuration
+# ============================================================================
+# Position Limits
+MAX_POSITION_SIZE=500000.0
+MAX_LEVERAGE=2.0
+POSITION_CONCENTRATION_LIMIT=0.25
+
+# Risk Limits
+MAX_DRAWDOWN_PCT=0.15
+DAILY_LOSS_LIMIT=10000.0
+
+# Execution
+COMMISSION_RATE=0.0002  # 2 basis points
+SLIPPAGE_BPS=1.0        # 1 basis point
+RISK_FREE_RATE=0.02     # 2% annual
+
+# Order Management
+ORDER_TIMEOUT_SECONDS=30
+MAX_RETRY_ATTEMPTS=3
+
+# ============================================================================
+# Monitoring & Alerting
+# ============================================================================
+# Logging
+LOG_LEVEL=INFO  # DEBUG, INFO, WARNING, ERROR, CRITICAL
+LOG_FORMAT=json  # json or text
+LOG_FILE=/var/log/omniquant/app.log
+
+# Prometheus Metrics
+PROMETHEUS_PORT=9090
+METRICS_ENABLED=true
+
+# Alert Channels
+SLACK_WEBHOOK_URL=https://hooks.slack.com/services/YOUR/SLACK/WEBHOOK
+ALERT_EMAIL=[email protected]
+PAGERDUTY_API_KEY=YOUR_PAGERDUTY_KEY
+
+# Health Checks
+HEALTH_CHECK_INTERVAL=60
+
+# ============================================================================
+# API Server Configuration
+# ============================================================================
+API_HOST=0.0.0.0
+API_PORT=8000
+API_WORKERS=4
+API_TIMEOUT=60
+API_MAX_CONNECTIONS=1000
+
+# WebSocket
+WS_PING_INTERVAL=20
+WS_PING_TIMEOUT=20
+
+# ============================================================================
+# Feature Flags (Optional)
+# ============================================================================
+ENABLE_LIVE_TRADING=false
+ENABLE_PAPER_TRADING=true
+ENABLE_BACKTESTING=true
+ENABLE_RESEARCH_MODE=true
+
+# ============================================================================
+# AWS Configuration (Optional)
+# ============================================================================
+AWS_REGION=us-east-1
+AWS_ACCESS_KEY_ID=YOUR_AWS_ACCESS_KEY
+AWS_SECRET_ACCESS_KEY=YOUR_AWS_SECRET_KEY
+S3_BUCKET_NAME=omniquant-backups
+
+# ============================================================================
+# External Services (Optional)
+# ============================================================================
+SENTRY_DSN=https://[email protected]/project-id
+DATADOG_API_KEY=YOUR_DATADOG_API_KEY
+
+# ============================================================================
+# Development Overrides (Only for ENVIRONMENT=development)
+# ============================================================================
+# These are ignored in production
+DEV_AUTO_RELOAD=true
+DEV_DEBUG_SQL=false
+DEV_MOCK_BROKER=true

Dockerfile.prod

@@ -0,0 +1,79 @@
+# Production Dockerfile for OmniQuant
+# Multi-stage build for optimized image size
+
+# ============================================================================
+# Stage 1: Builder
+# ============================================================================
+FROM python:3.11-slim as builder
+
+# Set working directory
+WORKDIR /app
+
+# Install system dependencies
+RUN apt-get update && apt-get install -y \
+    gcc \
+    g++ \
+    make \
+    libpq-dev \
+    curl \
+    && rm -rf /var/lib/apt/lists/*
+
+# Copy requirements
+COPY requirements.txt .
+
+# Create virtual environment and install dependencies
+RUN python -m venv /opt/venv
+ENV PATH="/opt/venv/bin:$PATH"
+RUN pip install --no-cache-dir --upgrade pip && \
+    pip install --no-cache-dir -r requirements.txt
+
+# ============================================================================
+# Stage 2: Runtime
+# ============================================================================
+FROM python:3.11-slim
+
+# Set labels
+LABEL maintainer="[email protected]"
+LABEL version="2.0.0"
+LABEL description="OmniQuant Production Trading Software"
+
+# Create non-root user
+RUN groupadd -r omniquant && useradd -r -g omniquant omniquant
+
+# Install runtime dependencies only
+RUN apt-get update && apt-get install -y \
+    libpq5 \
+    curl \
+    && rm -rf /var/lib/apt/lists/*
+
+# Set working directory
+WORKDIR /app
+
+# Copy virtual environment from builder
+COPY --from=builder /opt/venv /opt/venv
+
+# Copy application code
+COPY --chown=omniquant:omniquant . .
+
+# Set environment variables
+ENV PATH="/opt/venv/bin:$PATH" \
+    PYTHONUNBUFFERED=1 \
+    PYTHONDONTWRITEBYTECODE=1 \
+    ENVIRONMENT=production
+
+# Create necessary directories
+RUN mkdir -p /app/data /app/logs /app/models && \
+    chown -R omniquant:omniquant /app
+
+# Switch to non-root user
+USER omniquant
+
+# Expose ports
+EXPOSE 8000 9090
+
+# Health check
+HEALTHCHECK --interval=30s --timeout=10s --start-period=40s --retries=3 \
+    CMD curl -f http://localhost:8000/health || exit 1
+
+# Run application
+CMD ["uvicorn", "src.api.main:app", "--host", "0.0.0.0", "--port", "8000", "--workers", "4"]