Turn trading ideas into Python strategies, backtests, paper trading, live execution, and monitoring - all in one self-hosted stack.
QuantDinger is a product of Open Byte Inc.
AI research -> Strategy code -> Backtest -> Paper/Live execution -> Monitoring
Try in 2 minutes · Why QuantDinger · Safety model · Technical highlights · Repositories · AI agents & MCP · Overview · Features · Architecture · Install · Docs · FAQ · License
Fastest path: one command. No
git clone, nonpm, no Vue source tree. The installer asks for the admin account, writes secure secrets, pulls GHCR images, and starts Docker Compose.
Prerequisites: Docker with Compose v2 (Docker Desktop on Windows/macOS). Node.js is not required.
curl -fsSL https://raw.githubusercontent.com/brokermr810/QuantDinger/main/install.sh | bashWindows PowerShell:
irm https://raw.githubusercontent.com/brokermr810/QuantDinger/main/install.ps1 | iexInstalls to ~/quantdinger on Linux/macOS and $HOME\quantdinger on Windows by default. Override with ... | bash -s -- /opt/quantdinger or $env:QUANTDINGER_INSTALL_DIR="C:\QuantDinger" before the PowerShell one-liner.
Then open http://localhost:8888 and sign in with the admin username/password you entered during installation. The same stack also serves the mobile H5 client at http://localhost:8889.
Windows, manual clone, or mirror troubleshooting
Windows (PowerShell) - manual clone path:
git clone https://github.com/brokermr810/QuantDinger.git
Set-Location QuantDinger
Copy-Item backend_api_python\env.example -Destination backend_api_python\.env
$key = & python -c "import secrets; print(secrets.token_hex(32))" 2>$null
if (-not $key) { $key = & py -c "import secrets; print(secrets.token_hex(32))" 2>$null }
(Get-Content backend_api_python\.env) -replace '^SECRET_KEY=.*$', "SECRET_KEY=$key" | Set-Content backend_api_python\.env -Encoding utf8
# Edit backend_api_python\.env before first start:
# ADMIN_USER=your_admin_user
# ADMIN_PASSWORD=your_secure_password
docker compose pull
docker compose up -dStandard clone (macOS / Linux):
git clone https://github.com/brokermr810/QuantDinger.git
cd QuantDinger
cp backend_api_python/env.example backend_api_python/.env
./scripts/generate-secret-key.sh
# Edit backend_api_python/.env before first start:
# ADMIN_USER=your_admin_user
# ADMIN_PASSWORD=your_secure_password
docker compose pull
docker compose up -dSlow docker pull (China / VPN): add IMAGE_PREFIX=docker.m.daocloud.io/library/ to a repository-root .env, or configure Docker Desktop → Proxies.
For step-by-step detail and troubleshooting, see Installation & first-time setup and Installation troubleshooting.
| Traditional workflow | QuantDinger |
|---|---|
| ChatGPT only generates code | Runs, backtests, executes, and monitors strategies in one stack |
| TradingView + Jupyter + exchange bots are fragmented | One self-hosted stack from research to execution |
| SaaS platforms hold API keys | User-owned deployment — your infra, your keys |
| AI agents without scopes or audit | Scoped Agent Gateway, paper-only default, audit logs |
QuantDinger is a self-hosted, local-first AI trading OS — not a chatbot with a buy button. It unifies multi-LLM research, Python-native strategy engines, server-side backtesting, automated execution, and multi-broker live operations across crypto venues, IBKR, and Alpaca in one production-grade stack you fully control.
- Agent tokens are paper-only by default — live trading requires explicit server-side unlock.
- Live execution requires explicit permission — token scope +
AGENT_LIVE_TRADING_ENABLEDon self-hosted stacks. - Exchange keys stay inside the user's own deployment — not held by QuantDinger SaaS operators on self-hosted installs.
- Every agent call is audit-logged — append-only audit trail for automation and compliance review.
- QuantDinger does not provide investment advice — software for lawful research and execution only; you are responsible for compliance and risk.
| Resource | Link |
|---|---|
| Human Web API (OpenAPI) | docs/api/openapi.yaml |
| ReDoc viewer (serve over HTTP) | docs/api/index.html — run python -m http.server from docs/api/ |
| Conventions (auth, envelopes) | docs/API_CONVENTIONS.md |
| Agent Gateway | docs/agent/agent-openapi.json |
| What makes QuantDinger different | |
|---|---|
| Full-stack AI trading OS | Charting, indicator IDE, AI research, backtests, live bots, quick trade, and broker account management — one product, one Postgres state store. |
| Agent-native | First-class Agent Gateway (/api/agent/v1) + quantdinger-mcp on PyPI — Cursor, Claude Code, and Codex can read markets, run backtests, and trade (paper by default) with full audit logs. |
| Dual strategy runtimes | IndicatorStrategy (four-way dataframe signals + chart overlays) and ScriptStrategy (event-driven on_bar, explicit orders) — research and production in the same codebase. |
| Multi-venue execution | Direct adapters for Binance, OKX, Bitget, Bybit, Gate, HTX, Coinbase Exchange, Kraken, IBKR, and Alpaca — unified Broker Accounts page with isolated multi-tenant sessions. |
| Production-grade infra | PostgreSQL 18 + Redis 8, connection pooling, background workers (orders, portfolio monitor, reflection), idempotent schema bootstrap, GHCR multi-arch images (amd64/arm64). |
| Security by default | Refuses default SECRET_KEY, agent tokens hashed at rest, paper-only trading unless explicitly unlocked server-side, every agent call audit-logged. |
| Operator-ready | OAuth, multi-user roles, credits/membership/USDT billing toggles, an 11-language web UI, and multilingual docs — build a commercial AI trading product on top, not just a hobby bot. |
More install paths (GHCR-only, build notes)
Lightest — two files only (no git clone):
curl -O https://raw.githubusercontent.com/brokermr810/QuantDinger/main/docker-compose.ghcr.yml
curl -o backend.env https://raw.githubusercontent.com/brokermr810/QuantDinger/main/backend_api_python/env.example
# Edit backend.env before first start:
# ADMIN_USER=your_admin_user
# ADMIN_PASSWORD=your_secure_password
docker compose -f docker-compose.ghcr.yml pull
docker compose -f docker-compose.ghcr.yml up -dA normal install does not need docker compose up --build — the main compose file builds only the backend from local source; the web and mobile UI services pull GHCR images. Rebuild backend after code changes with docker compose up -d --build backend. For UI source builds, use docker-compose.build.yml (see Installation).
This repo ships the backend, Docker Compose stack, and documentation. The web UI and mobile H5 images are published independently to GHCR by sibling repos. Use the sibling repos when you need source-level UI changes or native mobile builds:
| Repository | What it is |
|---|---|
| QuantDinger (this repo) | Backend (Flask/Python), Compose stack, docs |
| QuantDinger-Vue | Web frontend source (Vue) — tagging v* publishes ghcr.io/brokermr810/quantdinger-frontend automatically |
| QuantDinger-Mobile | Mobile + H5 client — Compose serves the H5 image at http://localhost:8889; the repo also builds native shells |
Note: Node.js is only required if you build the web or mobile UI from source; the default Docker quick start pulls the published images and does not need it. For source builds, use Node 22 LTS as the shared local version: the mobile H5 repo requires Node 20.19+ or 22.12+ (Vite 7), and the desktop web repo also works on Node 22.
QuantDinger ships an Agent Gateway at /api/agent/v1 plus a small MCP server (quantdinger-mcp on PyPI) that wraps it as Model Context Protocol tools. Issue a token once and your AI client can read markets, manage strategies, run backtests, and (paper-only by default) place trades — without ever seeing your exchange keys or your admin JWT.
Every agent call is audit-logged, and trading-class tokens are paper-only by default. Live execution requires both
paper_only=falseon the token ANDAGENT_LIVE_TRADING_ENABLED=trueon the server.
Two backends, same client config — only QUANTDINGER_BASE_URL differs:
- Hosted (30 s try-out) — sign up at ai.quantdinger.com → Profile → My Agent Token → Issue Token. T (Trading) scope is available; paper-only by default. Live execution still requires
paper_only=falseon the token, explicit risk acknowledgment at issuance, andAGENT_LIVE_TRADING_ENABLED=trueon the server. On multi-tenant SaaS, opening T scope increases shared infrastructure load and platform operational risk — see the in-app risk disclosure. - Self-hosted (this repo) — after the Try in 2 minutes Docker bring-up, open Profile → My Agent Token (or the admin-only
/agent-tokenspage for cross-tenant audit). You control scopes, allowlists, rate limits, and the live-trading flag.
Then point Cursor / Claude Code / Codex at the MCP server (.cursor/mcp.json template: docs/agent/cursor-mcp.example.json):
{ "mcpServers": { "quantdinger": {
"command": "uvx", "args": ["quantdinger-mcp"],
"env": { "QUANTDINGER_BASE_URL": "http://localhost:8888",
"QUANTDINGER_AGENT_TOKEN": "qd_agent_xxxxxxxx" }
} } }Full setup recipe — local stdio config, remote HTTP transport, Claude Code CLI helper, example agent prompts, audit-log walkthrough: docs/agent/MCP_SETUP.md.
Deeper references: AI Integration design · Quickstart with curl · OpenAPI 3.0 spec · MCP server README
Audience: independent traders, Python strategy authors, small trading teams, and operators building white-label AI trading products on private infrastructure — without handing API keys to a black-box SaaS.
- Research & AI — Multi-LLM ensemble analysis, watchlists, opportunity radar, NL→Indicator/strategy, post-backtest AI hints; optional confidence calibration. Agent Gateway + MCP for Cursor / Claude Code / Codex with scoped tokens and SSE job streaming.
- Build — Professional KLine chart UI;
IndicatorStrategy(four-way dataframe signals:open_long,close_long,open_short,close_short) andScriptStrategy(on_bar,ctx.buy()/ctx.sell()); AI code generation as a starting point, Python as source of truth. - Validate — Server-side backtests with equity curves, drawdown metrics, trade logs, and strategy snapshots — no client-side-only backtest theater.
- Operate — Live strategy bots, quick trade, crypto spot/swap execution through direct exchange adapters, IBKR / Alpaca workflows for traditional markets; unified Broker Accounts page; notifications (Telegram, email, SMS, Discord, webhooks).
- Platform — Docker Compose + GHCR images, PostgreSQL 18, Redis 8, OAuth, multi-user RBAC, credits / membership / USDT billing toggles, an 11-language web UI, and multilingual documentation.
Design principle: separate market data ingestion, strategy/backtest compute, and order execution so research never shares a code path with live capital unless you explicitly promote a strategy.
Stack: Nginx serves the prebuilt Vue SPA (ghcr.io/brokermr810/quantdinger-frontend); Flask + Gunicorn API hosts strategy, AI, billing, and agent services; PostgreSQL 18 is the system of record; Redis 8 backs cache and worker coordination. Exchanges, brokers, LLMs, and payment rails plug in through env-driven adapters — swap providers without forking core code.
Runtime flow: market feeds → indicator/signal layer → strategy engine → backtest or live runtime → venue-specific execution adapters; pending orders dispatched by background workers with health checks and retry semantics.
Deploy surfaces: one-line install.sh, zero-repo GHCR Compose, full-repo Compose (local backend build), and SaaS at ai.quantdinger.com for trials.
flowchart LR
U[Trader / Operator / Researcher]
subgraph FE[Frontend Layer]
WEB[Vue Web App]
NG[Nginx Delivery]
end
subgraph BE[Application Layer]
API[Flask API Gateway]
AI[AI Analysis Services]
STRAT[Strategy and Backtest Engine]
EXEC[Execution and Quick Trade]
BILL[Billing and Membership]
end
subgraph DATA[State Layer]
PG[(PostgreSQL 18)]
REDIS[(Redis 8)]
FILES[Logs and Runtime Data]
end
subgraph EXT[External Integrations]
LLM[LLM Providers]
EXCH[Crypto Exchanges]
BROKER[IBKR / Alpaca]
MARKET[Market Data / News]
PAY[TronGrid / USDT Payment]
NOTIFY[Telegram / Email / SMS / Webhook]
end
U --> WEB
WEB --> NG --> API
API --> AI
API --> STRAT
API --> EXEC
API --> BILL
AI --> PG
STRAT --> PG
EXEC --> PG
BILL --> PG
API --> REDIS
API --> FILES
AI --> LLM
AI --> MARKET
EXEC --> EXCH
EXEC --> BROKER
BILL --> PAY
API --> NOTIFY
Already ran Try in 2 minutes? Skip this section — it's the same outcome, just expanded into a step-by-step checklist for first-time deployers and operations folks who want to understand every knob.
This section mirrors a typical “local deploy” path: prepare the host → obtain the code → configure secrets → start the stack → verify → harden → optionally wire AI. Node.js is not required: the frontend and mobile services pull GHCR images directly, so Nginx serves the web and H5 apps without any local build step.
| Item | Notes |
|---|---|
| Docker + Docker Compose v2 | Used for Postgres, Redis, API, and static UI. |
git |
To clone this repository. |
| Ports (defaults) | 8888 (desktop web), 8889 (mobile H5), 5000 (API, bound to 127.0.0.1), 5432 / 6379 (DB/Redis, loopback by default). Change via root .env if they collide. |
| Disk | Postgres volume grows with users, strategies, and logs; plan a few GB minimum for serious use. |
git clone https://github.com/brokermr810/QuantDinger.git
cd QuantDingercp backend_api_python/env.example backend_api_python/.envAlmost all application behavior is driven by backend_api_python/.env (admin user, LLM keys, workers, billing toggles, broker settings, etc.).
The optional repository root .env is for Docker Compose orchestration: exposed ports, image mirrors (IMAGE_PREFIX), image tags, Postgres image/version, Postgres data mount, PGDATA, and the Compose-generated DATABASE_URL. Keep this boundary clear:
| File | Owns |
|---|---|
backend_api_python/.env or backend.env |
Application runtime settings used by the Flask API. |
Repository-root .env |
Docker Compose substitutions such as ports, image tags, Postgres/Redis wiring, and host paths. |
The API refuses to start if SECRET_KEY is still the placeholder from env.example. This blocks accidental insecure deployments.
Linux / macOS (recommended):
./scripts/generate-secret-key.shThe script overwrites the SECRET_KEY= line in backend_api_python/.env using Python’s secrets module.
Manual (any OS): generate a long random string (for example 64 hex chars) and set SECRET_KEY=... in backend_api_python/.env.
Set the bootstrap administrator before the first start:
ADMIN_USER=your_admin_user
ADMIN_PASSWORD=your_secure_password
ADMIN_EMAIL=optional@example.comIf you leave ADMIN_PASSWORD=123456, the system will treat it as an unsafe bootstrap password and the UI will remind the user to change it. Password changes intentionally still require email verification, so local operators should set a real admin password during installation.
docker compose pull
docker compose up -dfrontend— pullsghcr.io/brokermr810/quantdinger-frontend:latest(no local Vue tree required).mobile— pullsghcr.io/brokermr810/quantdinger-mobile:latest(no local mobile source tree required).backend— built from./backend_api_pythonon first start if no local image exists yet.- For UI development from source, clone QuantDinger-Vue and/or QuantDinger-Mobile into the expected local directories and add
-f docker-compose.build.ymlto the command (see Build the frontend or mobile H5 from source below).
Services: postgres, redis, backend, frontend, mobile (see docker-compose.yml).
For a fresh install, do nothing: Compose creates its own Postgres volume.
For an existing production database, prefer pg_dump / pg_restore when the dataset is manageable. If the data directory is too large and must be mounted directly, all of these must match:
- The Postgres major version of the image and the existing data directory.
- The exact container
PGDATA. - The database user/password that already exist inside that data directory.
- Only one Postgres container may use that physical directory at a time.
Check the existing data version before mounting:
cat /path/to/old/postgres/data/PG_VERSION
# or, for a nested 1Panel layout:
cat /opt/1panel/apps/postgresql/postgresql/data/18/docker/PG_VERSIONExample root .env for reusing a PostgreSQL 18 data directory managed by 1Panel:
POSTGRES_IMAGE=postgres:18.3-alpine
POSTGRES_DATA_SOURCE=/opt/1panel/apps/postgresql/postgresql/data/18/docker
POSTGRES_PGDATA=/var/lib/postgresql/18/docker
POSTGRES_DB=quantdinger
POSTGRES_USER=existing_db_user
POSTGRES_PASSWORD=existing_db_passwordThen stop the old database container, recreate the new one, and verify:
docker compose up -d postgres
docker compose logs --tail=100 postgres
docker compose up -d backend frontend mobile redisDo not mount a PostgreSQL 16 data directory into a PostgreSQL 18 image, or the database will fail with database files are incompatible with server.
Prebuilt multi-arch (amd64/arm64) images for backend, web frontend, and mobile H5 — no git clone:
curl -O https://raw.githubusercontent.com/brokermr810/QuantDinger/main/docker-compose.ghcr.yml
curl -o backend.env https://raw.githubusercontent.com/brokermr810/QuantDinger/main/backend_api_python/env.example
docker compose -f docker-compose.ghcr.yml pull
docker compose -f docker-compose.ghcr.yml up -dThe backend entrypoint auto-generates a random SECRET_KEY on first start and applies the schema (migrations/init.sql) idempotently. Edit backend.env for persistent overrides (API keys, OAuth, broker credentials). Compose orchestration knobs go in a separate .env (optional) — e.g. pin a version:
# Common case: lockstep both sides to one tag
IMAGE_TAG=4.0.4
# Advanced (opt-in): decouple sides. Either var alone overrides only
# that side; the other still follows IMAGE_TAG.
# BACKEND_TAG=4.0.4
# FRONTEND_TAG=4.0.4
# MOBILE_TAG=4.0.3
# BACKEND_IMAGE=ghcr.io/<your-fork>/quantdinger-backend # optional, for forks
# FRONTEND_IMAGE=ghcr.io/<your-fork>/quantdinger-frontend
# MOBILE_IMAGE=ghcr.io/<your-fork>/quantdinger-mobileTag resolution: BACKEND_TAG / FRONTEND_TAG / MOBILE_TAG → IMAGE_TAG → compose default (latest). Without a root .env, compose pulls ghcr.io/brokermr810/quantdinger-{backend,frontend,mobile}:latest. Pin a specific release by setting IMAGE_TAG (lockstep) or a per-side tag — see GitHub Releases for available tags.
Published backend images are stamped from the Git release tag automatically. A v4.0.4 tag becomes APP_VERSION=4.0.4, which is what OpenAPI metadata and the UI brand config expose. Local source runs fall back to git describe and then the repo-root VERSION file; local Docker builds can override explicitly:
APP_VERSION=$(git describe --tags --abbrev=0 | sed 's/^v//') docker compose up -d --build backendIf you have access to the QuantDinger-Vue repo and want to iterate on UI source (theme tweaks, forks, debugging) instead of pulling the published image, clone it into the ./QuantDinger-Vue/ slot at the repo root (gitignored) and let Compose build from there:
git clone https://github.com/brokermr810/QuantDinger-Vue.git QuantDinger-Vue
docker compose -f docker-compose.yml -f docker-compose.build.yml up -d --buildThe same override can build the mobile H5 client from ./QuantDinger-Mobile/ or MOBILE_SRC_PATH=/abs/path/to/QuantDinger-Mobile.
The main docker-compose.yml builds the backend from this repository and pulls web/mobile UI images from GHCR; the override file docker-compose.build.yml adds local UI build: blocks. Without the override, ./QuantDinger-Vue/ and ./QuantDinger-Mobile/ do not need to exist. Point FRONTEND_SRC_PATH / MOBILE_SRC_PATH somewhere else if you keep sources outside this repo, or set COMPOSE_FILE=docker-compose.yml:docker-compose.build.yml in a root .env to skip the long -f -f invocation.
| Check | URL / command |
|---|---|
| Web UI | http://localhost:8888 (override host/port with FRONTEND_PORT in root .env if needed, for example 127.0.0.1:8888). |
| Mobile H5 | http://localhost:8889 (override with MOBILE_PORT; on a phone, use your host LAN IP, for example http://192.168.1.10:8889). |
| API health | http://localhost:5000/api/health |
| Logs | docker compose logs -f backend |
Admin account:
- The one-command installer uses the username/password entered during setup.
- Manual deployments read
ADMIN_USER/ADMIN_PASSWORDfrombackend_api_python/.envorbackend.env. 123456is only a fallback for unfinished local setup and should not be used for production or shared environments.
If ADMIN_PASSWORD is set to any value other than 123456, the bootstrap
admin is treated as safely initialized and the first-login password reminder is
not shown. If an existing database still stores the old default, startup syncs
the first admin password to the non-default env value.
Also set FRONTEND_URL in backend_api_python/.env or backend.env to the URL users actually use (including https:// behind a reverse proxy); it affects redirects, CORS-related settings, and some generated links.
In the normal Docker stack, you usually do not need to edit a frontend API URL. The desktop web (8888) and mobile H5 (8889) containers proxy /api/ to the internal backend:5000 service.
| Scenario | What to configure |
|---|---|
Full docker compose up -d stack |
Nothing for API routing. Open http://localhost:8888 or http://localhost:8889; both use same-origin /api/. |
| Change exposed ports | Root .env: FRONTEND_PORT=8888, MOBILE_PORT=8889, BACKEND_PORT=127.0.0.1:5000. |
| Run frontend/mobile image without the main Compose stack | Set container env BACKEND_URL=http://host.docker.internal:5000 or your real backend origin. This controls the Nginx /api/ proxy inside the UI container. |
| Desktop web source development | In QuantDinger-Vue, set VITE_DEV_PROXY_TARGET=http://127.0.0.1:5000, then run pnpm run serve. DevTools will show http://localhost:8000/api/...; Vite forwards it. |
| Mobile H5 source development | In QuantDinger-Mobile, set VITE_DEV_API_TARGET=http://127.0.0.1:5000, then run npm run dev. DevTools may show http://localhost:5173/api/...; Vite forwards it. |
| Static H5 behind your own domain | Prefer same-origin reverse proxy: serve https://m.example.com and proxy https://m.example.com/api/ to the backend. |
| Native mobile app | Use the app settings page to set a phone-reachable server URL, for example http://192.168.1.10:5000 or https://api.example.com. |
For LAN testing on a phone, do not use localhost inside the phone browser. Use the host machine's LAN IP, such as http://192.168.1.10:8889.
The Compose backend runs the API with Gunicorn and sets nofile to 65535. That is the recommended production path. Avoid running the backend with python run.py on a public server; it is meant for development and commonly inherits a low file-descriptor limit such as 1024.
After deployment, quick-check the backend container:
docker exec quantdinger-backend sh -lc 'echo "ulimit -n=$(ulimit -n)"; cat /proc/1/cmdline | tr "\0" " "; echo'
curl -fsS http://127.0.0.1:5000/api/healthExpected: ulimit -n is high enough for your user scale, and the command line contains Gunicorn. If you deploy through 1Panel or another custom runtime, set the equivalent nofile limit there and point the reverse proxy at the running backend port.
AI analysis, NL→code, and related flows need at least one LLM provider configured. Open backend_api_python/env.example, find the AI / LLM block, copy the relevant keys into your .env (for example LLM_PROVIDER + OPENROUTER_API_KEY, or another supported provider). Restart the backend after edits.
AtlasCloud is also supported as an OpenAI-compatible provider. Use the official AtlasCloud LLM API docs and API key guide, then configure:
LLM_PROVIDER=atlascloud
ATLASCLOUD_API_KEY=your_api_key
ATLASCLOUD_MODEL=openai/gpt-5.4
ATLASCLOUD_BASE_URL=https://api.atlascloud.ai/v1Use Docker Desktop (WSL2 backend recommended). From PowerShell in the repo root:
git clone https://github.com/brokermr810/QuantDinger.git
Set-Location QuantDinger
Copy-Item backend_api_python\env.example -Destination backend_api_python\.env
$key = py -c "import secrets; print(secrets.token_hex(32))"
(Get-Content backend_api_python\.env) -replace '^SECRET_KEY=.*$', "SECRET_KEY=$key" | Set-Content backend_api_python\.env -Encoding UTF8
# Edit backend_api_python\.env before first start:
# ADMIN_USER=your_admin_user
# ADMIN_PASSWORD=your_secure_password
docker compose pull
docker compose up -dIf py is not on PATH, use python or python3 in the one-liner that generates $key. Line endings should remain UTF-8; avoid editors that strip newlines from .env.
| Symptom | What to check |
|---|---|
QuantDinger-Vue / QuantDinger-Mobile not found |
You added -f docker-compose.build.yml without cloning UI source. Drop the override (plain docker compose up -d) or clone the needed repo into ./QuantDinger-Vue/ / ./QuantDinger-Mobile/ first. |
redis / python / node pull fails, content size of zero |
Docker Hub unreachable from Docker Desktop. Set root .env IMAGE_PREFIX=docker.m.daocloud.io/library/ and/or configure Docker Desktop → Proxies (system VPN alone is often not enough). |
| Backend exits immediately | SECRET_KEY still default, or invalid .env syntax. Read docker compose logs backend. |
| Blank page or API errors from browser | FRONTEND_URL / origins mismatch; API not reachable from the host you opened. |
Browser shows 502 Bad Gateway |
The reverse proxy cannot reach the backend. Check docker compose ps, docker compose logs --tail=100 backend, and make sure Nginx/OpenResty points to quantdinger-backend:5000 inside Compose or to the exposed host port. |
database files are incompatible with server |
The Postgres image major version does not match the mounted data directory. Set POSTGRES_IMAGE to the existing data major version, or restore through pg_dump / pg_restore. |
password authentication failed for user ... |
The root .env POSTGRES_USER / POSTGRES_PASSWORD or DATABASE_URL does not match the user stored in the existing data directory. Fix the root .env, then recreate the backend container. |
Too many open files or ulimit -n is 1024 |
Use the bundled Compose backend or configure your custom runtime with nofile around 65535, then recreate the container. Restarting without recreating usually keeps the old limit. |
| Mobile or web source dev calls the wrong backend | Use VITE_DEV_PROXY_TARGET for QuantDinger-Vue, VITE_DEV_API_TARGET for QuantDinger-Mobile, and restart the dev server after changing env vars. |
Mobile source dev fails with crypto.hash is not a function |
Node is too old for Vite 7. Install/switch to Node 22 LTS (or at least Node 20.19+ / 22.12+). |
| Port already in use | Another Postgres, Redis, or local service on 5432 / 6379 / 5000 / 8888 / 8889. Adjust variables in root .env per docker-compose.yml. |
| Many live strategies, “start denied” | Raise STRATEGY_MAX_THREADS in backend_api_python/.env and restart API (see comments in env.example). |
docker compose ps
docker compose logs -f backend
docker compose restart backend
docker compose pull
docker compose up -d
docker compose up -d --build backend # backend code changes only
docker compose downFor custom ports, mirror/prefix for base images, image tags, or Postgres physical data mounts, create a file named .env in the repository root (same directory as docker-compose.yml):
FRONTEND_PORT=3000
MOBILE_PORT=3001
BACKEND_PORT=127.0.0.1:5001
IMAGE_PREFIX=docker.m.daocloud.io/library/
# Optional: reuse an existing PostgreSQL 18 data directory.
# Stop the old Postgres container before mounting this path.
# POSTGRES_IMAGE=postgres:18.3-alpine
# POSTGRES_DATA_SOURCE=/absolute/path/to/postgres/18/docker
# POSTGRES_PGDATA=/var/lib/postgresql/18/docker
# POSTGRES_DB=quantdinger
# POSTGRES_USER=existing_db_user
# POSTGRES_PASSWORD=existing_db_passwordWhen running the desktop or mobile UI containers by themselves, use BACKEND_URL on that container instead of the root Compose .env port variables:
docker run --rm -p 8889:80 -e BACKEND_URL=http://host.docker.internal:5000 ghcr.io/brokermr810/quantdinger-mobile:4.0.3Production-style TLS, domain, and reverse-proxy placement are covered in Cloud deployment EN / CN.
After the stack is healthy: (1) run an AI asset / market analysis so LLM and data paths are verified; (2) open the Indicator IDE, load a symbol, and run a signal backtest on a small date range; (3) optionally use AI code generation to draft an indicator, then edit the Python; (4) when ready, attach exchange API keys (profile / credentials), use test connection, then explore live strategy or quick trade with execution mode you intend. This order surfaces configuration issues early before real capital.
This is the kind of Python-native strategy logic QuantDinger is designed for:
# @param sma_short int 14 Short moving average
# @param sma_long int 28 Long moving average
sma_short_period = params.get('sma_short', 14)
sma_long_period = params.get('sma_long', 28)
my_indicator_name = "Dual Moving Average Strategy"
my_indicator_description = f"SMA {sma_short_period}/{sma_long_period} crossover"
df = df.copy()
sma_short = df["close"].rolling(sma_short_period).mean()
sma_long = df["close"].rolling(sma_long_period).mean()
def edge(signal):
signal = signal.fillna(False).astype(bool)
return signal & ~signal.shift(1).fillna(False)
open_long = (sma_short > sma_long) & (sma_short.shift(1) <= sma_long.shift(1))
open_short = (sma_short < sma_long) & (sma_short.shift(1) >= sma_long.shift(1))
df["open_long"] = edge(open_long)
df["close_long"] = edge(open_short)
df["open_short"] = edge(open_short)
df["close_short"] = edge(open_long)
output = {
"name": my_indicator_name,
"plots": [
{"name": "SMA Short", "data": sma_short.fillna(0).tolist(), "color": "#FF9800", "overlay": True},
{"name": "SMA Long", "data": sma_long.fillna(0).tolist(), "color": "#3F51B5", "overlay": True},
],
"signals": [],
}See full examples:
docs/examples/dual_ma_with_params.pydocs/examples/multi_indicator_composite.pydocs/examples/cross_sectional_momentum_rsi.py
| Venue | Coverage |
|---|---|
| Binance | Spot, Futures, Margin |
| OKX | Spot, Perpetual, Options |
| Bitget | Spot, Futures, Copy Trading |
| Bybit | Spot, Linear Futures |
| Coinbase | Spot |
| Kraken | Spot, Futures |
| Gate.io | Spot, Futures |
| HTX | Spot, USDT-margined perpetuals |
| Market | Broker / Source | Execution |
|---|---|---|
| US Stocks | IBKR, Alpaca, Yahoo Finance, Finnhub | Via IBKR or Alpaca (paper + live) |
| ETFs | Alpaca | Via Alpaca (paper + live) |
| Futures | Exchange and data integrations | Data and workflow support |
Broker Accounts page (
/broker-accounts) — IBKR and Alpaca share a single unified management page: per-broker connect form, account KPIs, positions table and open-order management with one-click cancel. Multi-tenant safe: each user's session is isolated viaBrokerSessionRegistry, so one user reconnecting doesn't kick everyone else off.
QuantDinger supports two main strategy authoring models:
- dataframe-based Python scripts
- four-way signal generation with
open_long,close_long,open_short, andclose_short - chart rendering and signal-style backtests
- best for research, indicator logic, and visual strategy prototyping
- event-driven
on_init(ctx)/on_bar(ctx, bar)scripts - explicit runtime control with
ctx.buy(),ctx.sell(),ctx.close_position() - best for stateful strategies, execution-oriented logic, and live alignment
For the full developer workflow, see:
The example scripts live in docs/examples/ and are kept aligned with the current strategy development guides.
QuantDinger/
├── backend_api_python/ # Open backend source code
│ ├── app/routes/ # REST endpoints
│ ├── app/services/ # AI, trading, billing, backtest, integrations
│ ├── migrations/init.sql # Database initialization
│ ├── env.example # Main environment template
│ └── Dockerfile
├── docs/ # Product, strategy, and deployment documentation
├── install.sh # One-line GHCR install (curl | bash)
├── docker-compose.yml # Web UI + Mobile H5 via GHCR; optional local UI builds
├── docker-compose.ghcr.yml # Zero-repo deploy — app images from GHCR
├── LICENSE
└── TRADEMARKS.md
Use backend_api_python/env.example as the primary template. Key areas include:
| Area | Examples |
|---|---|
| Authentication | SECRET_KEY, ADMIN_USER, ADMIN_PASSWORD |
| Database | DATABASE_URL |
| LLM / AI | LLM_PROVIDER, OPENROUTER_API_KEY, OPENAI_API_KEY, ATLASCLOUD_API_KEY |
| OAuth | GOOGLE_CLIENT_ID, GITHUB_CLIENT_ID |
| Security | TURNSTILE_SITE_KEY, ENABLE_REGISTRATION |
| Billing | BILLING_ENABLED, BILLING_COST_AI_ANALYSIS |
| Membership | MEMBERSHIP_MONTHLY_PRICE_USD, MEMBERSHIP_MONTHLY_CREDITS |
| USDT Payment | USDT_PAY_ENABLED, USDT_TRC20_XPUB, TRONGRID_API_KEY |
| Optional data APIs | TWELVE_DATA_API_KEY, FINNHUB_API_KEY, TIINGO_API_KEY, TRADING_ECONOMICS_CLIENT, TRADING_ECONOMICS_KEY, ADANOS_API_KEY |
| Proxy | PROXY_URL |
| Workers | ENABLE_PENDING_ORDER_WORKER, ENABLE_PORTFOLIO_MONITOR, ENABLE_REFLECTION_WORKER |
| AI tuning | ENABLE_AI_ENSEMBLE, ENABLE_CONFIDENCE_CALIBRATION, AI_ENSEMBLE_MODELS |
Economic calendar data is free-first: QuantDinger uses the no-key AkShare/WallstreetCN calendar fallback by default, can use Trading Economics when credentials are configured, and keeps Finnhub paid-only calendar/social sentiment endpoints disabled unless FINNHUB_FREE_ONLY=false.
| Doc | Notes |
|---|---|
| Human Web API (OpenAPI) | flask-smorest spec — browse with docs/api/index.html (HTTP server required) |
| Backend architecture | Runtime surfaces, ownership boundaries, and refactor rules |
| Extension guide | How to add APIs, adapters, data sources, workers, and strategy features |
| Module boundaries | Deeper backend module ownership notes |
| API conventions | Auth, envelopes, visibility tiers |
| Changelog | Releases & migrations |
| README (Chinese) | Chinese overview |
| Installation troubleshooting | Bilingual Docker Desktop proxy, image pull, and Postgres startup troubleshooting |
| Cloud deployment EN / CN | HTTPS, reverse proxy, production |
| Multi-user | Postgres multi-tenant patterns |
| Agent environment · AI integration · Quickstart · OpenAPI · MCP server | Coding agents & MCP (quantdinger-mcp on PyPI) |
Strategy: EN · CN · Cross-sectional EN / CN · Examples
Integrations & alerts: IBKR · OAuth EN / CN · Telegram / Email / SMS configs under docs/ (NOTIFICATION_*).
Yes. The default deployment model is your own Docker Compose stack with your own database, Redis instance, credentials, and environment configuration.
No. Crypto is a major focus, but the platform also includes IBKR and Alpaca workflows for US stocks / ETFs. Alpaca additionally covers crypto.
Yes. QuantDinger supports both dataframe-style IndicatorStrategy development and event-driven ScriptStrategy development. You can also use AI to generate a starting point and then edit it yourself.
It is both. QuantDinger is built to connect AI research, charting, strategy development, backtesting, quick trade flows, and live execution operations in one system.
QuantDinger is a product of Open Byte Inc. The backend is licensed under Apache 2.0. The web frontend source (QuantDinger-Vue) and mobile app repo (QuantDinger-Mobile) use separate source-available licenses — review each repository and contact Open Byte Inc for commercial frontend/mobile authorization if needed.
Yes — the Docker stack serves the mobile H5 client at http://localhost:8889. For native Android/iOS shells, see QuantDinger-Mobile.
The following links are available in-app under Profile → Open account or Broker Accounts → Open account, and may qualify users for trading-fee rebates depending on venue policies.
| Exchange | Signup Link |
|---|---|
| Binance | Register |
| Bitget | Register |
| Bybit | Register |
| OKX | Register |
| Gate.io | Register |
| HTX | Register |
- Backend source code is licensed under Apache License 2.0. See
LICENSE. - This repository distributes the frontend UI here as prebuilt files for integrated deployment.
- QuantDinger is a product of Open Byte Inc. QuantDinger names, logos, product identity, and commercial licensing are managed by Open Byte Inc.
- The frontend source code is available separately at QuantDinger Frontend under the QuantDinger Frontend Source-Available License v1.0.
- The mobile H5/native client source code is available separately at QuantDinger Mobile under the same source-available license family.
- Under those frontend/mobile licenses, non-commercial use and eligible qualified non-profit use are permitted free of charge, while commercial use requires a separate commercial license from Open Byte Inc.
- Trademark, branding, attribution, and watermark usage are governed separately and may not be removed or altered without permission. See
TRADEMARKS.md.
For commercial licensing, frontend source access, branding authorization, or deployment support:
- Website: quantdinger.com
- Telegram: t.me/worldinbroker
- Email: support@quantdinger.com
QuantDinger is intended for lawful research, education, and compliant trading only — not for fraud, market manipulation, sanctions evasion, money laundering, or other illegal activity. Operators must follow applicable laws, licensing, and exchange rules in every jurisdiction where they deploy. This project does not provide legal, tax, investment, or regulatory advice. You use the software at your own risk; to the extent permitted by law, contributors disclaim liability for trading losses, service interruption, or regulatory enforcement arising from use or misuse.
Crypto donations:
0x96fa4962181bea077f8c7240efe46afbe73641a7
QuantDinger stands on top of a strong open-source ecosystem. Special thanks to projects such as:
QuantDinger is a small tribute to Erwin Schrödinger — the "-dinger" in our name is the tail of "Schrödinger". The cat in the box was a thought experiment; every un-fired strategy is its own little version of it — simultaneously winning and losing until the order actually fills. Backtests open the box. Live trading collapses the wavefunction. Trade carefully.
If QuantDinger is useful to you, a GitHub star helps the project a lot.

