Monitoring & Observability Guide Complete guide for the monitoring stack: Prometheus (metrics), Grafana (visualization), and Loki (logs).
The observability stack provides:
Metrics : Prometheus collects time-series data from /metrics endpointLogs : Loki aggregates structured logs from Pino loggerVisualization : Grafana dashboards for metrics and log exploration
┌─────────────────┐
│ API Server │ :8000
│ /metrics │─────────────┐
│ (pino-loki) │─────────┐ │
└─────────────────┘ │ │
│ │ scrapes metrics
pushes │ │
logs │ │
▼ ▼
┌─────────────────┐ ┌─────────────────┐
│ Loki │ │ Prometheus │
│ (log storage) │ │ (metrics store) │
│ :3100 │ │ :9090 │
└────────┬────────┘ └────────┬────────┘
│ │
└──────────┬───────────┘
│
▼
┌─────────────────┐
│ Grafana │ :8001
│ (visualization) │
└─────────────────┘
# Start PostgreSQL + Prometheus + Grafana + Loki# Start the API server
Open Grafana at http://localhost:8001
Login with admin / admin
Navigate to Dashboards :
API Metrics Dashboard - HTTP, database, OAuth metricsAPI Logs Dashboard - Log volume, errors, live log viewer
Metric
Type
Labels
Description
http_requests_totalCounter
method, route, status_codeTotal HTTP requests
http_request_duration_secondsHistogram
method, route, status_codeRequest duration
Metric
Type
Labels
Description
db_queries_totalCounter
operation, tableTotal database queries
db_query_duration_secondsHistogram
operation, tableQuery execution time
db_connection_pool_sizeGauge
-
Current pool size
db_connection_pool_idleGauge
-
Idle connections
Metric
Type
Labels
Description
oauth_events_totalCounter
provider, eventOAuth events
oauth_success_totalCounter
providerSuccessful completions
oauth_failures_totalCounter
provider, reasonFailed attempts
// apps/api/src/modules/mymodule/mymodule.metrics.ts
import { Counter , Histogram } from "prom-client" ;
import { metricsRegistry } from "@repo/shared/metrics" ;
export const myOperationsTotal = new Counter ( {
name : "my_operations_total" ,
help : "Total number of operations" ,
labelNames : [ "type" , "status" ] ,
registers : [ metricsRegistry ] ,
} ) ;
export const myOperationDuration = new Histogram ( {
name : "my_operation_duration_seconds" ,
help : "Operation duration in seconds" ,
labelNames : [ "type" ] ,
buckets : [ 0.01 , 0.05 , 0.1 , 0.5 , 1 , 2 , 5 ] ,
registers : [ metricsRegistry ] ,
} ) ; import { myOperationsTotal , myOperationDuration } from "./mymodule.metrics" ;
export async function performOperation ( type : string ) {
const timer = myOperationDuration . startTimer ( { type } ) ;
try {
await doWork ( ) ;
myOperationsTotal . inc ( { type, status : "success" } ) ;
} catch ( error ) {
myOperationsTotal . inc ( { type, status : "error" } ) ;
throw error ;
} finally {
timer ( ) ;
}
} # Request rate (last 5 minutes)
rate(http_requests_total[5m])
# Error rate percentage
sum(rate(http_requests_total{status_code=~"5.."}[5m])) /
sum(rate(http_requests_total[5m])) * 100
# P95 latency by route
histogram_quantile(0.95,
sum(rate(http_request_duration_seconds_bucket[5m])) by (le, route)
)
# Database query rate by operation
sum(rate(db_queries_total[5m])) by (operation)
# Slowest database queries (P99)
histogram_quantile(0.99,
sum(rate(db_query_duration_seconds_bucket[5m])) by (le, table)
)
The API uses Pino logger with pino-loki transport to ship logs directly to Loki:
// Logs are automatically shipped to Loki
logger . info ( "User logged in" , {
module : "auth" ,
action : "login:success" ,
userId : "123" ,
} ) ; Logs are indexed by these labels for efficient querying:
Label
Description
applicationAlways "api"
environment"development" or "production"
levelLog level (info, error, etc.)
moduleSource module (auth, db, etc.)
Searching Logs in Grafana
Go to Explore (compass icon)
Select Loki datasource
Use LogQL queries:
# All API logs
{application="api"}
# Error logs only
{application="api", level="error"}
# Auth module logs
{application="api", module="auth"}
# Search for specific text
{application="api"} |= "login"
# JSON field filtering
{application="api"} | json | userId="123"
# Error logs with stack traces
{application="api"} |= "error" | json | line_format "{{.msg}} - {{.error}}"
Level
Usage
traceDetailed debugging (rarely enabled)
debugDevelopment debugging
infoNormal operational events
warnPotentially problematic situations
errorError conditions requiring attention
fatalCritical errors causing shutdown
auditSecurity-sensitive actions (via logger.audit)
Structured Logging Best Practices Always include context in logs:
// Good - structured with module and action
logger . info ( "OAuth callback received" , {
module : "auth" ,
action : "oauth:callback" ,
provider : "google" ,
userId : user . id ,
} ) ;
// Good - error with stack trace
logger . error ( "Database query failed" , {
module : "db" ,
action : "query:select" ,
error : err , // Error object serialized with stack
table : "users" ,
} ) ;
// Security audit
logger . audit ( "Sensitive data accessed" , {
module : "security" ,
action : "data:access" ,
userId : user . id ,
resource : "user_tokens" ,
} ) ;
Panel
Description
Total Requests (5m)
Request count in last 5 minutes
Error Rate
Percentage of 5xx responses
P95 Response Time
95th percentile latency
DB Queries (5m)
Database query count
Request Rate by Method
GET, POST, PUT, DELETE breakdown
Request Rate by Status
2xx, 4xx, 5xx distribution
Response Time Percentiles
P50, P95, P99 over time
P95 Response Time by Route
Per-endpoint performance
DB Queries by Operation
SELECT, INSERT, UPDATE, DELETE
OAuth Events
OAuth requests by provider
Panel
Description
Total Errors
Error count in time range
Total Warnings
Warning count in time range
Security Events
Audit log count
Total Log Lines
Overall log volume
Log Volume by Level
Stacked chart of log levels over time
Logs by Module
Distribution across auth, db, http, etc.
Error Rate Over Time
Error trend visualization
All Logs
Live log viewer with JSON parsing
Error Logs
Filtered error-only log viewer
# Loki host for log shipping (default: http://localhost:3100)# Log level (default: info)infra/monitoring/
├── prometheus.yml # Prometheus scrape config
├── loki/
│ └── loki-config.yml # Loki storage config
└── grafana/
├── dashboards/
│ ├── api-metrics.json # Metrics dashboard
│ └── api-logs.json # Logs dashboard
└── provisioning/
├── dashboards/
│ └── dashboards.yml # Dashboard auto-loading
└── datasources/
└── datasources.yml # Prometheus + Loki sources
# infra/monitoring/prometheus.ymlglobal :
scrape_interval : 15s
scrape_configs :
- job_name : " api-server" metrics_path : " /metrics" static_configs :
- targets : ["host.docker.internal:8000"] # infra/monitoring/loki/loki-config.ymlauth_enabled : false
server :
http_listen_port : 3100
storage_config :
tsdb_shipper :
active_index_directory : /loki/index
cache_location : /loki/cache
filesystem :
directory : /loki/chunks
limits_config :
retention_period : 168h # 7 days
Check Prometheus targets : http://localhost:9090/targets Verify API is exposing metrics : curl http://localhost:8000/metricsCheck Loki is receiving logs : curl http://localhost:3100/readyVerify datasources in Grafana : Settings → Data Sources
Prometheus Can't Scrape API # Test from within Docker networkexec prometheus wget -qO- http://host.docker.internal:8000/metrics
# On Linux, use host IP instead# Replace host.docker.internal with 172.17.0.1Logs Not Appearing in Loki
Check LOKI_HOST env var is set correctlyVerify Loki is running : docker compose logs lokiCheck pino-loki errors in API console outputTest Loki push API :
curl -X POST http://localhost:3100/loki/api/v1/push \
-H " Content-Type: application/json" ' {"streams":[{"stream":{"test":"true"},"values":[["' $( date +%s) ' ","test log"]]}]}'
Dashboard Shows Stale Data
Check refresh interval (top-right in Grafana)
Verify time range includes recent data
For Prometheus: curl -X POST http://localhost:9090/-/reload
For Grafana: Hard refresh the page (Cmd+Shift+R)
Production Considerations # Change default Grafana passwordenvironment :
- GF_SECURITY_ADMIN_PASSWORD=secure-password
# Restrict Loki access - don't expose port 3100 publicly# Prometheus retention (default 15 days)command :
- " --storage.tsdb.retention.time=30d" # Loki retention (in loki-config.yml)limits_config :
retention_period : 720h # 30 days
Log sampling for high-traffic routesLabel cardinality - avoid dynamic labels (user IDs, timestamps)Recording rules for expensive PromQL queriesLog level - use info in production, debug only when needed
# Multiple API instancesscrape_configs :
- job_name : " api-servers" static_configs :
- targets :
- " api-1:8000" " api-2:8000" # Start all# Stop all# View logs# Filter by label
{application="api", level="error"}
# Text search
{application="api"} |= "error"
{application="api"} != "health"
# Regex search
{application="api"} |~ "user.*created"
# JSON parsing
{application="api"} | json
# Field extraction
{application="api"} | json | userId != ""
# Line formatting
{application="api"} | json | line_format "{{.level}}: {{.msg}}"
# Aggregations
sum(count_over_time({application="api"}[5m])) by (level)