plugins: allow unauthenticated access to health check endpoints

Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com>

.changeset/cyan-dragons-shave.md

@@ -0,0 +1,16 @@
+---
+'@backstage/plugin-code-coverage-backend': patch
+'@backstage/plugin-notifications-backend': patch
+'@backstage/plugin-azure-devops-backend': patch
+'@backstage/plugin-azure-sites-backend': patch
+'@backstage/plugin-permission-backend': patch
+'@backstage/plugin-airbrake-backend': patch
+'@backstage/plugin-devtools-backend': patch
+'@backstage/plugin-linguist-backend': patch
+'@backstage/plugin-periskop-backend': patch
+'@backstage/plugin-signals-backend': patch
+'@backstage/plugin-nomad-backend': patch
+'@backstage/plugin-vault-backend': patch
+---
+
+Allow unauthenticated access to health check endpoint.

plugins/airbrake-backend/src/plugin.ts

@@ -43,6 +43,10 @@ export const airbrakePlugin = createBackendPlugin({
             logger: loggerToWinstonLogger(logger),
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/azure-devops-backend/src/plugin.ts

@@ -46,6 +46,10 @@ export const azureDevOpsPlugin = createBackendPlugin({
             permissions,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/azure-sites-backend/src/plugin.ts

@@ -63,6 +63,10 @@ export const azureSitesPlugin = createBackendPlugin({
             httpAuth,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/code-coverage-backend/src/plugin.ts

@@ -54,6 +54,10 @@ export const codeCoveragePlugin = createBackendPlugin({
             database,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/devtools-backend/src/plugin.ts

@@ -55,6 +55,10 @@ export const devtoolsPlugin = createBackendPlugin({
             httpAuth,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/example-todo-list-backend/src/plugin.ts

@@ -42,6 +42,10 @@ export const exampleTodoListPlugin = createBackendPlugin({
             logger: loggerToWinstonLogger(logger),
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/linguist-backend/src/plugin.ts

@@ -68,6 +68,10 @@ export const linguistPlugin = createBackendPlugin({
             tokenManager,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/nomad-backend/src/plugin.ts

@@ -46,6 +46,10 @@ export const nomadPlugin = createBackendPlugin({
             config,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/notifications-backend/src/plugin.ts

@@ -90,6 +90,10 @@ export const notificationsPlugin = createBackendPlugin({
             processors: processingExtensions.processors,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/periskop-backend/src/alpha.ts

@@ -39,6 +39,10 @@ export default createBackendPlugin({
         httpRouter.use(
           await createRouter({ config, logger: loggerToWinstonLogger(logger) }),
         );
+        httpRouter.addAuthPolicy({
+          allow: 'unauthenticated',
+          path: '/health',
+        });
       },
     });
   },

plugins/permission-backend/src/plugin.ts

@@ -86,6 +86,10 @@ export const permissionPlugin = createBackendPlugin({
             userInfo,
           }),
         );
+        http.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/signals-backend/src/plugin.ts

@@ -57,6 +57,10 @@ export const signalsPlugin = createBackendPlugin({
             events,
           }),
         );
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },

plugins/vault-backend/src/service/plugin.ts

@@ -68,6 +68,10 @@ export const vaultPlugin = createBackendPlugin({
 
         const { router } = builder.build();
         httpRouter.use(router);
+        httpRouter.addAuthPolicy({
+          path: '/health',
+          allow: 'unauthenticated',
+        });
       },
     });
   },