Secure, observable, local-first LLM workflows that are powered by FastAPI, LLaMA3, and Prometheus
LLMOps Dashboard is a modular open-source observability stack for LLM systems that is built with FastAPI, Prometheus, Grafana, and SQLite.
It helps you monitor:
- Prompt/response metadata
- Latency (p95, per-user)
- Token usage and fallback behavior
- JWT-based user tracking
- Real-time dashboards for analysis
This OSS project provides a full-stack starter template for building production-grade observability for LLM applications — local or cloud.
ℹ️ Built for local-first development, extensibility, and minimal infra overhead.
The MCP (Model Control Plane) is a lightweight module that tracks which models are used, by whom, and under what policy constraints.
It enables:
| Capability | Description |
|---|---|
| Model Registration | Track models by name, size, alias, and source |
| Per-Client Policies | Enforce token limits per user/client |
| Dynamic Policy Control | Policies can be modified at runtime or pre-configured at boot |
| Metrics Integration | Token counts and usage policies propagate into /metrics Prometheus feed |
| Identity Tracking | Associates JWT-authenticated users with tracked model usage |
Example usage:
from llmops.mcp import model_registry, usage_policy
# Register a model
model_registry.register_model("llama3", "8b", alias="dev")
# Apply a per-user token limit
usage_policy.set_policy("client-x", max_tokens=5000)ℹ️ This system can evolve into a policy enforcement and audit framework, especially in multi-user environments where tracking LLM usage, enforcing limits, or billing per token becomes critical.
| Feature | Description |
|---|---|
| JWT Auth | Secure /llm with per-user access tokens |
| MCP Integration | Tracks model usage, policy limits, token stats |
| Prometheus Metrics | Request rate, p95 latency, fallback %, etc. |
| Grafana Dashboard | Includes working starter panels for request and latency |
| SQLite Audit Trail | Logs prompt, user, model, token count |
| Simulation + Testing | Run make simulate or make smoke-test |
| LLM Integration | Supports mock + real LLaMA 3 (Ollama) model endpoints |
| LLaMA 3 (Ollama) | Real local inference via /llm/echo using Ollama |
This project supports both mock and real LLM inference:
Default route for testing:
- Returns mock responses instantly
- Used for simulating traffic and testing fallback logic
- No network or real model required
# Simulate fallback model logic
model_used = "openai-gpt"
if random.random() < 0.3:
model_used = "local-ollama"
return {"response": f"[{model_used.capitalize()}] Answer to: {prompt}"}Backed by real local inference using Ollama:
ollama run llama3Once pulled, the model runs offline and is used for actual inference.
To call:
curl -X POST http://localhost:8000/llm/echo \
-H "Authorization: Bearer <your-jwt>" \
-H "x-user-id: demo-user" \
-H "Content-Type: application/json" \
-d '{"prompt": "What is vector search?"}'Currently supported:
- ✅ Local LLM echo endpoint via
llama3+ Ollama (/llm/echo) - ✅ GPU-ready Docker support with offline model warmup
- ✅ Prometheus + Grafana instrumentation
- ✅ Secure JWT-authenticated observability for LLM events
- ✅ SQLite-based request logging
- ✅ Test coverage and E2E support
Coming soon:
-
Auto Summary Mode
- Nightly background task summarizes recent logs via LLM
- Stored in DB or JSON for display in Grafana summary panel
-
Copilot UI Widget
- Frontend prompt box sends input to
/llm - Response is streamed or displayed with built-in observability
- Frontend prompt box sends input to
-
Runtime LLM backend toggle (OpenAI, Ollama, HF)
-
OAuth / Auth0 provider support
-
Token pricing and billing estimation
-
Slack alerting or LLM log summaries
Pluggable LLM Providers:
- OpenAI API via
openai.ChatCompletion - Local Ollama models via
ollama run - Hugging Face
transformerswith local inference engine
ℹ️ Contributions welcome — especially around modular LLM adapters and frontend UX.
This project requires JWT_SECRET to be set via .env, environment variables, or secret injection.
JWT_SECRET=supersecretkey # ⚠️ For local testing only (ChangeMe)# token_issuer.py / auth.py
JWT_SECRET = os.getenv("JWT_SECRET")
if not JWT_SECRET:
raise RuntimeError("JWT_SECRET must be set")# conftest.py
secret = os.getenv("JWT_SECRET")
if not secret:
raise RuntimeError("❌ JWT_SECRET not set in environment").env is auto-loaded in local development and test runs.
Docker services consume JWT_SECRET via docker-compose.yaml.
⚠️ Before production use, replace with secure injection methods:
- Docker secrets
- CI/CD secret management
- Vault-backed key providers
By default, the dashboard uses:
GRAFANA_ADMIN_USER=admin # ⚠️ Used for initial dashboard provisioning and local testing only (ChangeMe)
GRAFANA_ADMIN_PASSWORD=llmops # ⚠️ Used for initial dashboard provisioning and local testing only (ChangeMe)
GRAFANA_ALLOW_ANON=true # ⚠️ Used for initial dashboard provisioning and local testing only (ChangeMe).env for production deployments.
You can also enable or disable anonymous access via Grafana's provisioning config.
grafana/dashboards/llmops_overview.json includes:
| Panel Title | Description |
|---|---|
| LLM Request Rate by User | Frequency of requests per unique user |
| Latency by User (p95) | p95 latency distribution by user ID |
ℹ️ Auto-loaded by Grafana on container start using provisioning config. ℹ️ Anonymous access enabled via
.env.examplecredentials.
More panels (e.g., fallback %, token bar charts) can be added easily.
make test-unit # Fast logic tests (auth, db, policy)
make test-e2e # Full-stack smoke test w/ JWT and DBℹ️ E2E tests simulate real API calls via HTTP, JWT, and DB assertions.
git clone https://github.com/Cre4T3Tiv3/llmops-dashboard.git
cd llmops-dashboard
make initThis does everything:
- Verifies required tools (
docker,sqlite3,ollama, etc.) viamake check - Installs uv if missing
- Sets up
.venvand installspyproject.tomldependencies - Auto-creates
.envfrom.env.exampleif missing - Confirms your selected Ollama model (e.g.
llama3) is available locally
This project uses uv — a fast and modern Python package manager — for all local and Docker-based dependency management.
ℹ️ No
requirements.txtis needed — dependencies are resolved viapyproject.toml.
Run the following to re-check your setup at any time:
make checkThis confirms:
- Docker and docker-compose are available
sqlite3is installed (required formake smoke-test).envis present and contains necessary keys likeJWT_SECRETollamaCLI is installed and working- Your selected model (via
$OLLAMA_MODEL) is installed
If the model is missing, you’ll see a warning like:
❌ Model 'llama3' not found in ollama listℹ️ This step is included in
make initbut can be run independently.
make upThis builds and starts:
| Service | URL |
|---|---|
| FastAPI | http://localhost:8000 |
| Prometheus | http://localhost:9090 |
| Grafana | http://localhost:3000 |
ℹ️ Dashboard at Grafana auto-loads
grafana/dashboards/llmops_overview.json
HOWTO and E2E Testing Guide Contributor Guide
make generate-jwt
curl -X POST http://localhost:8000/llm \
-H "Authorization: Bearer <token>" \
-H "x-user-id: demo-user" \
-H "Content-Type: application/json" \
-d '{"prompt": "What is RAG?"}'llmops-dashboard/
├── .dockerignore
├── .env
├── .env.example
├── .github/
│ └── workflows/
│ └── ci.yml
├── .gitignore
├── .jwt.tmp
├── Dockerfile
├── LICENSE
├── Makefile
├── README.dev.md
├── README.md
├── data/
├── docker-compose.override.yml
├── docker-compose.yaml
├── docs/
│ ├── CONTRIBUTING.md
│ └── HOWTO_and_E2E_Testing.md
├── grafana/
│ ├── dashboards/
│ │ └── llmops_overview.json
│ └── provisioning/
│ └── dashboards/
│ └── dashboards.yaml
├── llmops/
│ ├── auth.py
│ ├── database.py
│ ├── main.py
│ └── mcp/
│ │ ├── __init__.py
│ │ ├── client_tracker.py
│ │ ├── model_registry.py
│ │ └── usage_policy.py
│ └── routes/
│ ├── llm_echo.py
│ ├── llm_proxy.py
│ └── token_issuer.py
├── llmops_dashboard.egg-info/
├── prometheus.yml
├── pyproject.toml
└── tests/
├── conftest.py
├── e2e/
│ ├── __init__.py
│ ├── test_llm_echo.py
│ ├── test_llm_flow.py
│ ├── test_llm_traffic_simulation.py
│ ├── test_metrics_exposure.py
│ └── test_smoke_flow.py
└── unit/
├── __init__.py
├── test_database.py
├── test_mcp_policy.py
├── test_mcp_registry.py
├── test_mcp_tracker.py
└── test_reset_prometheus.py
make up # Start full stack (FastAPI + Prometheus + Grafana)
make generate-jwt # Create test JWT
make simulate # Send mock traffic to /llm
make smoke-test # Full E2E: token → API → DB → metrics
make reset-prometheus # Clean and rebuild metrics store
make clean # Delete usage.db and logs
make nuke # Destroy all containers, volumes, cacheℹ️ All commands assume
uvis installed locally. See uv GitHub page
HOWTO and E2E Testing Guide Contributor Guide
- Docker (v20+)
- Linux or WSL (native Windows not supported yet)
- Python ≥ 3.10 for CLI/test scripts (optional)
uvfor local development and installs
- OpenAI/Ollama observability for internal tools
- Fine-grained request tracking (JWT, latency, token use)
- Test model fallback logic or simulate production LLM traffic
- Plug into billing or cost-monitoring with token metadata
This project isn’t just a toy but, it’s also not a locked-in framework.
You can:
- Swap SQLite for Postgres
- Swap Prometheus for OpenTelemetry
- Swap FastAPI for Flask or Django
- Swap JWT with OAuth or session-based auth
The patterns are here. The rest is yours to extend ♻️
MIT – © 2025 @Cre4T3Tiv3
Built for the LLM observability era. OSS, modular, and easy to reason about.