allow users with admin:metrics to read app metrics

[akkoma] / lib / pleroma / web / akkoma_api / controllers / metrics_controller.ex

diff --git a/lib/pleroma/web/akkoma_api/controllers/metrics_controller.ex b/lib/pleroma/web/akkoma_api/controllers/metrics_controller.ex
index c8d3d8948b7f55af3c6b0dcfe45c298ffced6fc9..8d413bf58717bf77fb2b3c8fa5f7f0b3533774b3 100644 (file)
--- a/lib/pleroma/web/akkoma_api/controllers/metrics_controller.ex
+++ b/lib/pleroma/web/akkoma_api/controllers/metrics_controller.ex
@@ -3,9 +3,13 @@ defmodule Pleroma.Web.AkkomaAPI.MetricsController do
 
   alias Pleroma.Web.Plugs.OAuthScopesPlug
 
-  @unauthenticated_access %{fallback: :proceed_unauthenticated, scopes: []}
-  plug(:skip_auth)
-
+  plug(
+    OAuthScopesPlug,
+    %{scopes: ["admin:metrics"]}
+    when action in [
+           :show
+         ]
+  )
 
   def show(conn, _params) do
     stats = TelemetryMetricsPrometheus.Core.scrape()