UNPKG

@directus/api

Version:

Directus is a real-time API and App dashboard for managing SQL database content

directus.io

directus/directus

34 lines (33 loc) 1.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
import { useEnv } from '@directus/env'; import { ForbiddenError } from '@directus/errors'; import { Router } from 'express'; import { useMetrics } from '../metrics/index.js'; import asyncHandler from '../utils/async-handler.js'; const env = useEnv(); const router = Router(); const metrics = useMetrics(); router.get('/', asyncHandler(async (req, _res, next) => { if (req.accountability?.admin === true) { return next(); } // support Bearer Token of type `Metrics` const metricTokens = env['METRICS_TOKENS']; if (!req.headers || !req.headers.authorization || !metricTokens) { throw new ForbiddenError(); } const parts = req.headers.authorization.split(' '); if (parts.length !== 2 || parts[0].toLowerCase() !== 'metrics') { throw new ForbiddenError(); } if (metricTokens.find((mt) => mt.toString() === parts[1]) !== undefined) { return next(); } throw new ForbiddenError(); }), asyncHandler(async (_req, res) => { res.set('Content-Type', 'text/plain'); // Don't cache anything by default res.setHeader('Cache-Control', 'no-cache'); res.setHeader('Vary', 'Origin, Cache-Control'); return res.send(await metrics?.readAll()); })); export default router;