Knowledge Base — AgoraIQ

How signal parsing works

Signals ▾

When you submit a signal via /track or the Track page, AgoraIQ's parser extracts structured data from your raw text. The parser is deliberately flexible — it handles dozens of common signal formats used across Telegram and Discord providers.

What the parser extracts:

Symbol — Recognized formats: BTCUSDT, BTC/USD, BTC-USDT, XBTUSD. All normalized to XXXUSDT.
Direction — LONG, BUY → LONG. SHORT, SELL → SHORT.
Entry price — Extracted from "Entry:", "Buy zone:", "Enter at:", etc. Supports K notation (65k = 65000).
Stop loss — Extracted from "SL:", "Stop Loss:", "Stop:".
Targets — Extracted from "TP1:", "TP2:", "Target 1:", etc. Up to 5 levels.
Leverage — Pattern: "10X", "5x", etc.

Parse status values:

Status	Meaning
parsed	Symbol + direction + at least one price level extracted
partial	Looks like a signal but missing required fields
not_signal	Text doesn't match any signal pattern

Only parsed and partial signals are accepted. not_signal returns a 422 error.

Signal status lifecycle

Signals ▾

Every signal in AgoraIQ follows a defined lifecycle with full audit trail:

OPEN → TP1 / TP2 / TP3 / SL / EXPIRED / CANCELLED

State transitions:

OPEN → TP1/TP2/TP3 — Price hits a take-profit level. The resolver marks which TP was hit and calculates realized PnL as a decimal ratio (0.032 = 3.2%).
OPEN → SL — Price hits stop loss. Loss recorded.
OPEN → EXPIRED — Signal exceeds max age (default 7 days) without resolution.
OPEN → CANCELLED — User manually cancelled.

Audit events logged:

Every state change is recorded in the signal_events table with: old status, new status, price at time of event, PnL at event, timestamp, and metadata (who/why). This provides a complete, immutable lifecycle audit for each signal.

All timestamps are stored in UTC. The resolver runs every 6 hours via systemd timer, checking open signals against live prices from Binance and Kraken.

Signal sources and normalization

Signals ▾

Signals can enter AgoraIQ from four sources:

Source	How it enters	Typical type
scanner	Market scanner worker detects breakout	breakout, mean_reversion
provider	Telegram/Discord scraper parses provider message	manual, swing
user	User submits via /track or Track page	manual
api	External system posts to /signals/submit	any

Regardless of source, every signal passes through Signal.normalize(), which applies consistent field names, validates ranges, converts confidence scores to 0–100, and stores the result in the signals_v2 table.

Symbol normalization examples:

BTC/USD, BTC-USDT, BTCUSD, XBTUSD → BTCUSDT
ETH → ETHUSDT
Already XXXUSDT → unchanged

Scanner methodology

Scanner ▾

The AgoraIQ market scanner runs as a PM2 process, executing every 5 minutes. It monitors the top crypto perpetual futures pairs on Binance and Kraken.

Data points collected per scan cycle:

24h volume and volume change percentage
Open interest and OI direction (rising/falling)
Funding rate (positive = longs paying shorts, negative = shorts paying longs)
Price change percentage (1h, 4h, 24h)

Scoring: Each pair receives a breakout score (0–100) based on a weighted combination of volume spike magnitude, OI trend, funding rate extreme, and price momentum. Pairs scoring above threshold generate scanner signals.

Categories available:

/top — Highest breakout scores
/momentum — Strongest price momentum
/volume — Largest volume spikes
/oi — Biggest open interest changes
/funding — Most extreme funding rates

Scanner results are cached in the scanner_cache table with TTL, ensuring fast lookups even under load.

Understanding breakout scores

Scanner ▾

The breakout score is a composite metric from 0 to 100 that represents how likely a pair is to experience a significant price move. Higher is stronger.

Score ranges:

Range	Interpretation
80–100	Strong breakout setup — multiple factors aligned
60–79	Moderate — some factors positive, watch closely
40–59	Weak — limited confluence, higher risk
0–39	No signal — normal market conditions

The score does not indicate direction (long or short). Direction is determined separately based on OI trend and price action. A high score with rising OI suggests long; high score with falling OI and negative funding suggests short.

Breakout scores are analytical tools, not trading advice. Always apply your own risk management.

How entitlements work

Billing ▾

AgoraIQ uses an entitlement model separate from raw billing status. Your plan access is derived from your subscription state, not just the latest database row.

Subscription states and what they mean for access:

Status	Access?	Meaning
active	✓ Full	Subscription is current and paid
cancel_at_period_end	✓ Until expiry	Cancelled, but you keep access until the billing period ends
past_due	✓ 3-day grace	Payment failed — 3-day grace period before downgrade
expired	✗ Downgraded	Subscription ended — reverts to Free

This means if you cancel your Pro plan mid-month, you continue to have full Pro access until the end of that billing cycle. If a payment fails, you get a 3-day grace period to update your card before losing access.

Feature comparison by plan

Billing ▾

Feature	Free	Pro ($29/mo)	Elite ($99/mo)
Signal feed	1 recent preview, stripped	Real-time, full details	Real-time, full details
Signal details	Symbol + direction	Entry, SL, TP1, TP2	All + AI score breakdown
Scanner	Limited, delayed	Full, real-time	Advanced + premium filters
Alerts	—	Instant delivery, watchlist	Priority alerts
Signal Tracking	—	Status updates	Full lifecycle tracking
Tracking Stats	—	Basic	Win rate, expectancy, duration, drawdown
Provider IQ	—	—	Full rankings + analytics
Proof Analytics	Basic	Standard stats	Advanced analytics
Telegram Bot	—	Full access	Full access + priority
Dashboard	—	Core tools	Highest data density
Overlays	—	—	Narrative, whale, regime
New modules	—	—	Early access
Yearly pricing	—	$228/yr (save 34%)	$790/yr (save 34%)

Plan gating is enforced server-side. Even if you access a Pro endpoint from a Free account, the API returns limited data — the frontend does not make access decisions.

Stripe payment security

Billing ▾

AgoraIQ uses Stripe Checkout for all payment processing. This means:

Card data never touches AgoraIQ servers. You enter your card on Stripe's hosted checkout page.
PCI compliance is handled entirely by Stripe (PCI DSS Level 1).
256-bit TLS encryption on all payment communication.
Webhook verification — Every Stripe event is cryptographically signed and verified before processing. Duplicate events are rejected via idempotency checks.

AgoraIQ stores only: your Stripe customer ID (for managing your subscription) and subscription ID (for tracking status). No card numbers, CVVs, or sensitive payment data is ever stored in our database.

Telegram linking security

Bot ▾

Linking your Telegram account to AgoraIQ uses a secure, one-time code flow:

You type /connect in the bot.
The bot generates a unique link with a one-time code.
You open the link in your browser (must be logged into AgoraIQ).
The web page claims the code, binding your Telegram user ID to your AgoraIQ account.

Security details:

Codes expire after 5 minutes.
Codes are single-use — claiming it a second time fails.
Your AgoraIQ JWT token is encrypted at rest in the bot's local store using Fernet (AES-128-CBC + HMAC-SHA256).
No passwords are ever exchanged via Telegram.

Use /disconnect to unlink at any time. This removes your encrypted token from the bot's store.

Push notification delivery

Bot ▾

When a new signal is generated or a tracked signal resolves, AgoraIQ's push worker delivers Telegram notifications.

Delivery tiers:

Free — Delayed notifications (15-minute lag). Signal details are stripped (no TP/SL).
Pro — Real-time notifications with full signal details.
Elite — Priority queue. Delivered first in high-volume periods.

Each delivery is logged in the push_log table with: signal ID, user ID, Telegram ID, event type, plan tier, and delivery status. This enables delivery auditing and debugging.

The push worker uses BullMQ for job queuing, ensuring reliable delivery even during traffic spikes. Failed deliveries are retried with exponential backoff.

API authentication

Security ▾

AgoraIQ uses JWT (JSON Web Token) authentication for all API calls.

Token issuance — On login, the auth service issues a signed JWT containing the user ID.
Token usage — Every authenticated API request includes the JWT in the Authorization: Bearer <token> header.
Verification — Each service independently verifies the JWT signature using the shared secret. No cross-service calls needed for auth.

Route protection levels:

Middleware	Behavior
requireAuth	Rejects request if no valid JWT. Sets req.userId.
optionalAuth	Sets req.userId if valid JWT present, continues either way.
requirePlan("pro")	Requires auth + minimum plan tier. Returns 403 with upgrade URL if insufficient.
attachPlan	Attaches plan tier to request for conditional logic in handlers.

Service architecture

Security ▾

AgoraIQ runs as multiple isolated services behind Caddy reverse proxy:

Port	Service	Owns
4000	agoraiq-api	Auth, core user management
4100	smart-alerts	Alert rules, notifications (MongoDB + BullMQ)
4200	telegram-link	One-time code auth for bot linking
4300	agoraiq-bot-api	Signals, scanner, providers, proof, billing

All services bind to 127.0.0.1 (localhost only). External access goes through Caddy, which handles TLS termination and route-based proxying. No service is directly accessible from the internet.

Data stores:

PostgreSQL — Users, signals, subscriptions, payment events, scanner cache
MongoDB — Smart Alerts rules and notification history (port 4100 only)
Redis — Subscription cache (5-min TTL), BullMQ job queues
SQLite — Bot's encrypted token store (local to bot process)