Provider control plane

MeterPlane

Language
OSS mode active

Gateway control plane

providers
33
operations
119
workflows
7

Provider Catalog

Reviewed BYOK adapters

Model Runtime6
Media & Voice5
Search & Research5
Browser Ops3
Data & Deploy5
Workspace & Dev3
Growth & Billing6

LLM Inference

Rlab Relay

connected
Overview

First-party LLM inference through Rlab Relay with multiple compatible API styles.

MaturityLive-readyA safe live smoke has passed, but operation depth still varies.
Credential contractAPI keyAuthorization: Bearer <token>
Live smoke
Tiny Responses, Messages, Chat Completions, Gemini generateContent, and streamed chat smoke paths are declared for Rlab Relay.
Adapter coverage
Native first-party model adapter is registered for Responses, Messages, Chat Completions, Gemini generateContent, and SSE streaming.
Operation depth
Full Rlab compatibility route matrix is implemented with mocked contracts, token usage normalization, gateway routes, and tiny live-smoke coverage.
Next deep test
Add model catalog pricing resolution and richer managed-provider cost metadata.
Stage
Operate
Risk
write
Governance
review required
approval required
approval optional
Credential
Unknown
Last smoke
Unknown
Local env
Missing
Database
None
Docs
sync_httpstreaming_http

Credential

Connected without secret display
Bearer token saved as ••••••••.

Operations

Enablement and default cost
Read1
Gemini generateContentgemini_generate_content
Default cost$0.000000 / model_token_usage
Write3
Responsesresponses
Default cost$0.000000 / model_token_usage
Messagesmessages
Default cost$0.000000 / model_token_usage
Chat Completionschat_completions
Default cost$0.000000 / model_token_usage

Marketplace Phase A

Vendor submissions

Phase A vendor portal

Manifest submission status

Vendors can register, manage hashed portal keys, submit marketplace manifests, and inspect review state without uploading credentials.

Discovery-only
vendors
1
submissions
2
pending
1
rejected
1
Recent submissionsRegistry rows are reviewable metadata only; active discovery comes later.
Pending review
Example Vendor Search

Example Vendor · vl_preview_search

Provider
example_vendor_search
Version
1.0.0
Updated
2026-06-02
Rejected
Example Vendor Extract

Example Vendor · vl_preview_extract

Provider
example_vendor_extract
Version
0.3.0
Updated
2026-06-02
Safety boundariesPortal routes stop at registry metadata in Phase A.
  • Vendor API keys are hashed and only the one-time full key is returned at creation.
  • Manifest submissions store registry metadata and versions only.
  • Phase A discovery excludes pending_offboarding and offboarded listings from new catalog results.
  • Submission responses exclude raw manifests, key hashes, provider credentials, and organization ids.
Portal APIs7 routes

Provider Keys

Credential inventory

Cloud BYOK vault

Encrypted provider credentials

Import, rotate, and revoke hosted BYOK credentials without returning raw or encrypted secret payloads.

5 active0 revoked0 audit events
rlab-productionrlab_relay · local database
activeaes-256-gcmnot recorded
you-productionyou_com · local database
activeaes-256-gcmnot recorded
tavily-researchTavily · local database
activeaes-256-gcmnot recorded
firecrawl-crawlFirecrawl · local database
activeaes-256-gcmnot recorded
browserless-sfoBrowserless · local database
activeaes-256-gcmnot recorded
Audit trail

No credential audit events yet.

Agents

Issued gateway keys

Agents

API key control plane

2 agents1 active keys

Create agent

Issue an identity before provider calls

Agent detail

research-agent

active

Routes Rlab and You.com calls for market and technical research.

Created
2026-05-30 01:10 UTC
Last used
2026-05-30 02:18 UTC
Authentication
ag_ prefixed keys, full value shown once
NamePrefixStatusLast usedActions
Primary gateway keyag_researchdemo_••••active2026-05-30 02:18 UTC
AgentOwnerKey prefixBudgetStatus
research-agentPlatformag_research$25 dailyActive
market-map-agentGrowthag_market$300 monthlyActive
media-agentStudioag_media$15 dailyPaused

Permissions

Agent operation allowlists

Permission policy

Operation rules

Rules run after agent authentication and before provider credentials are read. Denials create safe usage events with no upstream call.

3active rules

Create rule

Scope by agent, provider, stage, and risk

Rules

Allow and deny scopes
research model runtimeRlab Relay / all operations / build / all risks
Allowresearch-agent
release deploy guardVercel / env_var_update / deploy / write
Denyrelease-agent
billing money movementStripe / all operations / bill / money-moving
Denybilling-agent

Mock check

Preview preflight enforcement
Deny rules win first. If allow rules exist, at least one must match.

Approvals

Human approval inbox

Approval workflow

Risky calls paused before credentials

Pending
2
Changes
1
Approved
1
Denied
0
Filters
Agent
release-agent
Requester
Mina Chen
Stage
Build
Cost
$0.000000
Agent
billing-agent
Requester
Nadia Patel
Stage
Bill
Cost
$0.020000
Agent
research-agent
Requester
Owen Lee
Stage
Operate
Cost
$0.001500
Agent
release-agent
Requester
Mina Chen
Stage
Deploy
Cost
$0.000000
approved

Agent Push

Opportunity inbox

Agent Push

Opportunity inbox

Matched offers land here only after governance evaluation. This local dashboard queue does not send external notifications or take action.

Local dashboard only
new
1
approval required
1
notify-only
1
expired
0
Approval required

offer_tokyo_hotel_preview

New
Agent
travel-agent
Listing
vl_tokyo_hotel_preview
Expires
Jun 4, 12:00 PM
Offer capability overlaps with an opted-in travel subscription.Offer geography overlaps with the subscription region constraints.
Notify only

offer_search_api_preview

Viewed
Agent
research-agent
Listing
vl_search_api_preview
Expires
Jun 6, 12:00 PM
Search API offer matches a subscribed capability.
PolicyNo action taken
  • matchOffer matched an opted-in subscription.
  • budgetEstimated synthetic cost is within the preview budget.
  • approval_requirementHuman approval is required before any future booking path.
No external notificationsNo vendor invocationNo credential access

Executions

Task execution history

Execution object

Trace shell

executions
3
active
1
Cost
$0.046000

Budgets

Per-agent cost controls

Budget policy

Rule management

Active rules are evaluated before provider calls. If estimated provider cost would exceed the limit, the gateway records a denied usage event and skips the upstream call.

3active controls

Create budget

Scope by agent, provider, and operation

Rules

Cost against limits
research-agent dailyAll providers
$8.00 / $25.00
DailyRemaining $17.00
media-agent image capfal / image_generate
$15.00 / $15.00
DailyRemaining $0.00
infra-agent monthlyUpstash / all operations
$42.00 / $200.00
MonthlyRemaining $158.00

Mock service call

Preview gateway budget enforcement

Cloud Spend

Cloud spend limits and alerts

Cloud spend policy

Spend limits and alert events

Cloud controls add organization, member, agent, provider, operation, lifecycle, and risk dimensions. Hard blocks run before credential access; warnings create safe alert events.

2active limits
1recent alerts
0denied alerts

Create limit

Scope by org, member, agent, provider, stage, and risk

Limits

Pre-credential controls
Release deploy dailyagent:release-agent / provider:vercel / operation:preview_deployment_create / stage:build / risk:publish
Daily$5.00CompositeHard block
Cloud organization monthlyorganization
Monthly$250.00OrganizationHard block
Stripe warning onlyprovider:stripe / risk:money-moving
Daily$1.00CompositeAlert only

Mock spend check

Preview Cloud limit enforcement

Alert events

Recent safe alerts
warningCloud spend limit cloud_limit_org_monthly warning threshold was crossed.$201.50 / $250.00
Precedence
  1. Hosted Cloud spend limits run after auth, tenant, permission, rate, and approval checks.
  2. They run before provider credentials are read and before OSS budget rules.
  3. Any matching hard block that exceeds its period limit denies the call.
  4. Warning thresholds create safe alert events and still allow the call.
  5. More specific limits explain the denial first; broader limits still remain active.

Cloud Billing

Subscription test mode

Stripe test mode

Platform subscription skeleton

Cloud billing is test-mode only and covers hosted platform subscription fees. BYOK provider usage remains cost visibility, not an amount owed to the platform.

Test mode

Plan

Cloud Pro$49/month platform subscription

Subscription

Not startedNo test subscription yet

Billing scope

Platform fees onlyBYOK provider usage is not billed
Billing boundariesThis surface is intentionally narrower than managed-provider billing.
Cloud platform subscription
Enabled
BYOK provider usage
Not billed
Managed provider usage
Not implemented
Paid credits
Not implemented
Test-mode setupCheckout creation stays disabled until explicit test-mode env is present.
Checkout disabled
Explicit test flag
Not ready
Stripe secret
Missing
Test price
Not ready
Webhook secret
Not ready
Safety notes
  • Cloud subscription billing is Stripe test-mode only and covers hosted platform fees.
  • BYOK provider usage remains a cost-visibility statement; it is not billed by MeterPlane.
  • Metered overage upload and invoice mirror are MVP-B test-mode foundations; production billing remains gated.
  • Paid credits, provider resale, marketplace settlement, and vendor payout are not implemented.
  • Card-on-file metadata stores only Stripe ids and safe card descriptors such as brand, last4, and expiry.
  • ACG_CLOUD_SUBSCRIPTION_TEST_MODE_ENABLED must be enabled before checkout creation.
  • ACG_STRIPE_TEST_SECRET_KEY is required for Stripe test-mode checkout.
  • ACG_STRIPE_PLATFORM_PRICE_ID must reference a Stripe test-mode price.

Cloud Finance

Invoice drafts and exports

Invoice draft

Preview billing artifacts

Draft-only finance view separating platform subscription fees, managed-provider placeholders, and BYOK provider cost visibility.

Draft only
Payable to MeterPlane$0.00
BYOK statement$0.04
statement lines3
export rows35

Line items

Semantic invoice preview
2026-06-01 to 2026-07-01
Platform subscription
Cloud platform subscription (cloud_pro)

Stripe test-mode subscription state is active. Amount is informational until production billing is launched.

$0.001 subscription
PayableInvoice draft
Plan unit
Plan unit placeholder

Seat or plan-unit pricing is not modeled yet; this line keeps the draft shape explicit.

$0.001 plan_unit
PayableInvoice draft
Managed placeholder
Managed provider usage placeholder

Managed provider usage billing is not implemented. Future lines require entitlements, contracts, metering, and reconciliation.

$0.000 managed_usage
Not payableStatement only
BYOK cost visibility
BYOK cost visibility: rlab relay

Customer-owned provider usage recorded for cost visibility only.

$0.031 usage_events
Not payableStatement only
BYOK cost visibility
BYOK cost visibility: you.com

Customer-owned provider usage recorded for cost visibility only.

$0.011 usage_events
Not payableStatement only
Semantics2 / 5
  • This is a draft preview only. It is not finalized, sent, taxed, or collected.
  • BYOK provider usage lines are cost-visibility statements and are not payable to MeterPlane.
  • Managed provider usage remains a placeholder until entitlement, metering, reconciliation, and contracts are implemented.
  • Sources: 1 platform line, 2 BYOK statement lines.

Cloud Audit

Audit exports and retention

Cloud audit

Evidence package builder

Generate redacted JSON or CSV evidence across usage, policy, approvals, credentials, billing, and executions.

redacted
total rows48
approval decisions6
credential events2
recent exports1

Export

Safe evidence package
No raw payload storage

Exports redact secrets, truncate large summaries, and store only export metadata in history.

History

Recent export metadata
Full evidence packageJSON · 18 rows · not_stored
generated
Boundariesactive
  • Exports are generated on demand and are not uploaded to external storage.
  • Raw secrets, private payloads, raw audio, full page content, and large provider responses are redacted or summarized.
  • Retention settings are read-model controls until a hosted data lifecycle worker is enabled.

Cloud Ops

Ops console and kill switches

Cloud ops

Incident controls

Disable unsafe scopes or force approval before provider credentials, billing, or managed metering are reached.

pre-credential
active controls
3
emergency stops
2
force approval
1
audit events
2
Create controlUse scoped switches for incidents, abuse, outages, or managed access review.
Active switchesDisable or re-enable controls from the local admin surface.
Disable
browserless

Browserless artifact generation paused during provider incident review.

Target
Provider
Reason code
Provider outage
Expires
No expiry
Force approval
money-moving

All money-moving operations require operator approval during Cloud beta.

Target
Risk level
Reason code
Billing risk
Expires
No expiry
Suspend
browserless / operate

Managed Browserless eligibility suspended until artifact limits are reviewed.

Target
Managed entitlement
Reason code
Managed review
Expires
No expiry
Recent audit eventsEvery switch creation or status change records a safe audit event.
Disable
Browserless provider disabled during incident review.

Provider · Provider outage · 2026-06-02T09:00:00.000Z

Force approval
Money-moving operations now require approval.

Risk level · Billing risk · 2026-06-02T09:05:00.000Z

  • Cloud ops controls are local/database controls; OSS deployments do not receive hidden remote switches.
  • Matching disable, suspend, or marketplace credential controls deny before credential access and before billing or managed metering.
  • Marketplace settlement freeze controls stop synthetic ledger writes without blocking sandbox invocation.
  • Force-approval controls pause matching requests in the existing approval workflow.

Managed Access

Managed provider entitlements

Managed access

Provider mode matrix

Organization-level eligibility for future managed-provider access. This does not create pooled credentials or resale behavior.

No managed pool
BYOK providers
31
Managed eligible
1
Mixed mode
1
Requested
1
BYOK, managed, and mixedApproved entitlements only mark eligibility; BYOK remains available and pooled keys stay disabled.
Managed eligible
Rlab Relay

No managed provider credential pool is active in this release.

BYOK
Available
Status
approved
Approved scopes
1
Mixed
You.com

No managed provider credential pool is active in this release.

BYOK
Available
Status
approved
Approved scopes
1
BYOK
Anthropic

No managed provider credential pool is active in this release.

BYOK
Available
Status
none
Approved scopes
0
BYOK
Brave Search

No managed provider credential pool is active in this release.

BYOK
Available
Status
none
Approved scopes
0
BYOK
Browserbase

No managed provider credential pool is active in this release.

BYOK
Available
Status
none
Approved scopes
0
BYOK
Browserless

No managed provider credential pool is active in this release.

BYOK
Available
Status
suspended
Approved scopes
0
BYOK
Cloudflare

No managed provider credential pool is active in this release.

BYOK
Available
Status
none
Approved scopes
0
BYOK
Deepgram

No managed provider credential pool is active in this release.

BYOK
Available
Status
none
Approved scopes
0
Entitlement recordsScope, status, provider terms, abuse controls, and reconciliation readiness.
suspended
browserless

Lifecycle: operate · Risk: read

Provider terms
review_required
Abuse controls
needs_artifact_limits
Reconciliation
not_started
approved
rlab

Provider-wide

Provider terms
approved_for_private_beta
Abuse controls
rate_limited
Reconciliation
usage_export_ready
requested
stripe

Operation group: billing_sandbox · Lifecycle: bill · Risk: money-moving

Provider terms
review_required
Abuse controls
not_configured
Reconciliation
required_before_launch
approved
you

Operation: search · Lifecycle: operate · Risk: read

Provider terms
approved_for_private_beta
Abuse controls
rate_limited
Reconciliation
usage_export_ready
Launch criteriaA provider should not move from requested to approved until these controls are ready.
Terms

Provider contract allows managed access, resale, or marketplace bundling.

Abuse

Provider-specific abuse controls, rate limits, and shutdown paths are configured.

Reconciliation

Usage reconciliation against upstream provider invoices is designed.

Runbook

Support and incident runbooks can disable org, provider, agent, or operation scope.

Safety boundary
  • Managed provider entitlements model eligibility only; no shared Cloud credentials are stored.
  • Approved entitlement does not imply provider resale, pooled-key launch, or live provider access.
  • Gateway checks managed entitlements before managed-provider credential selection.

Sandbox metering

Managed usage evidence

Sandbox accounting spine for future managed-provider usage: gateway meters, synthetic provider invoice fixtures, placeholder markup, and manual corrections.

Sandbox only
Meter records
3
Provider cost
$0.06
Markup placeholder
$0.00
Mismatches
1
Gateway meter recordsOnly cloud_managed successes can produce managed meter rows; BYOK calls stay cost visibility.
adjusted
browserless.pdf

Usage event: usage_browserless_pdf

Provider cost
$0.02
Provider invoice
$0.018
Delta
$0.00
amount mismatch
you.search

Usage event: usage_you_search

Provider cost
$0.006
Provider invoice
$0.0065
Delta
-$0.0005
matched
rlab.responses

Usage event: usage_rlab_responses

Provider cost
$0.034
Provider invoice
$0.034
Delta
$0.00
pending
Pending

Gateway usage exists, but no synthetic provider fixture has been compared yet.

matched
Matched

Gateway meter amount matches the synthetic provider invoice line.

amount mismatch
Amount mismatch

Gateway and synthetic provider amounts differ and need review.

provider missing
Provider missing

Gateway usage exists, but the synthetic provider fixture has no matching line.

adjusted
Adjusted

A sandbox credit, refund, or correction explains the reconciled amount.

ignored
Ignored

The meter is intentionally excluded from a sandbox reconciliation run.

Metering boundary
  • Managed usage metering is sandbox-only and does not create customer charges.
  • Synthetic provider invoice fixtures are local test evidence, not imported provider invoices.
  • Platform markup is recorded as an explicit placeholder until managed provider contracts and billing launch.

Cost Accounting

Cost ledger and optional credits

Cost ledger

Usage accounting

OSS mode records provider-cost accounting without requiring wallet credits. Virtual credits are optional demo or cloud-enforcement records.

Optional virtual balance$149.16Derived from 3 ledger entries
No cash custody in V1. OSS mode does not charge users; usage is tracked for cost visibility.

Manual credit

Add optional virtual credits

Append-only ledger

Provider-cost records
TypeAmountDescriptionUsageCreated
Credit$150.00Manual virtual credit for demo workspaceNo usage event2026-05-30 01:00 UTC
Debit-$0.83Rlab chat completionresearch-agent / chat_completions2026-05-30 02:10 UTC
Debit-$0.00You.com searchmarket-map-agent / search2026-05-30 02:18 UTC

Usage Logs

Gateway traffic

Usage events

Gateway traffic

Every gateway call is recorded with normalized usage, provider-cost estimate, latency, and a request ID. Failed and denied calls keep safe error context without raw secrets or large payloads.

4gateway calls
Filters
TimeAgentProviderOperationStatusProvider costLatencyRequest ID
2026-05-30 02:18 UTCresearch-agentRlab Relaychat_completionsSucceeded$0.034000842 ms
2026-05-30 02:12 UTCmarket-map-agentYou.comsearchSucceeded$0.006000310 ms
2026-05-30 01:50 UTCmedia-agentfalimage_generateDenied$0.00000012 ms
2026-05-29 23:40 UTCvoice-agentElevenLabstext_to_speechFailed$0.0000001234 ms

Settings

Workspace controls

Billing mode

Cloud boundaries

Read-only Cloud Beta settings. OSS remains the default; Cloud billing is test-mode only.

cloud_byok
Source
Environment
Organization
No active organization
Platform charge
Not allowed
OSS compatible
No
Provider accessBYOK

Customer-owned provider keys

Credential sourceOrganization BYOK

Existing BYOK credential path

Wallet gateNot required

OSS and cloud_byok stay ungated

Managed usageNot invoiceable

BYOK cost visibility only

Feature flagsPlaceholders are visible for beta planning and default off.
InvoicesACG_CLOUD_BETA_INVOICES
Off
Spend limitsACG_CLOUD_BETA_SPEND_LIMITS
Off
Managed providersACG_CLOUD_BETA_MANAGED_PROVIDERS
Off
Approval extensionsACG_CLOUD_BETA_APPROVAL_EXTENSIONS
Off
Cloud launch statusHosted BYOK credentials are active; production Cloud commerce remains inactive.
Hosted credentialsHosted BYOK credential import, rotation, revoke, provenance, and audit are implemented.
Implemented
Real invoicesReal invoices and tax calculation are not implemented.
Not implemented
Paid creditsPaid credits and cash custody are not implemented.
Not implemented
Provider resaleProvider resale requires contracts, abuse controls, and reconciliation first.
Not implemented
Provider settlementProvider settlement and vendor payouts are not implemented.
Not implemented
Mode notes
  • Cloud BYOK is hosted governance for customer-owned provider credentials; BYOK provider usage is not invoiceable managed spend.

Marketplace access

Organization access controls

Phase A marketplace governance defaults to disabled. Discovery can be opened without enabling invocation, vendor credentials, settlement, or marketplace billing.

Disabled
Organization
Local preview workspace
Mode
Disabled
Allowlist
0/500
Invocation
Denied in Phase A
Access modeControls only marketplace listings. BYOK provider calls stay on the existing path.
Allowlist listingAllowlist caps at 500 active listings per organization.
Current allowlistOnly active public listing ids are shown; no vendor credentials are exposed.

No marketplace listings are allowlisted.

Phase A boundaries
  • Default mode is disabled when no organization marketplace config exists.
  • Discovery routes stay available without vendor credentials or marketplace billing.
  • Gateway marketplace calls are denied before vendor credential access in every Phase A mode.
  • BYOK provider calls keep using the existing provider gateway path.

Tenancy

Members and invitations

Cloud-ready membership controls. OSS local admin mode works without hosted identity, SSO, or email delivery.

OrganizationSelf-hosted local workspaceLocal admin mode
1

Members

0

Invitations

7

Role matrix

Members
Local Adminlocal-admin@self-hosted.local
Owneractive
Invite memberNo email is sent in local/mock mode.
Invitations

No invitations yet.

Role matrix
Owner

Controls organization billing, members, provider credentials, agents, approvals, and audit exports.

BillingMembersInvitesProvider keysAgentsApprovalsAuditUsage
Admin

Manages billing, members, provider credentials, agents, approvals, audit, and usage without last-owner authority.

BillingMembersInvitesProvider keysAgentsApprovalsAuditUsage
Member

Uses hosted team resources, builds agents, and inspects usage without changing billing, members, or credentials.

AgentsUsage
Billing Admin

Manages hosted subscription and billing views without mutating members or provider credentials.

BillingAuditUsage
Developer

Legacy compatibility role mapped to member-level hosted customer access.

AgentsUsage
Approver

Reviews risky write, publish, deploy, and money-moving operations with audit visibility.

ApprovalsAuditUsage
Viewer

Reads usage, policy, readiness, execution, and audit surfaces without mutating controls.

AuditUsage
Audit events

No membership audit events yet.

  • OSS local admin mode is active. Self-hosted users can operate the gateway without hosted identity or invitations.
LicenseRepository distribution
Apache-2.0
LLM layerNative model gateway
Rlab-first
Credential modeOrganization provider keys
BYOK
Billing modeDefault self-hosted behavior
OSS
Wallet gateOnly enabled for cloud_managed
Managed only