allow health without auth

2026-05-25 21:50:29 +02:00
parent 1df01e8cc6
commit 680a673a9a
1 changed files with 6 additions and 0 deletions
--- a/pytorrent/services/auth.py
+++ b/pytorrent/services/auth.py
@@ -668,9 +668,15 @@ def install_guards(app) -> None:
    def _auth_guard():
        if not enabled():
            return None
+        
+        # Allow unauthenticated health checks for monitoring.
+        if request.path == "/api/health" or request.path.startswith("/api/health/"):
+            return None
+
        g.api_token_authenticated = False
        if auth_bypassed_request():
            return None
+        
        if request.path.startswith("/api/"):
            token_user = authenticate_api_token(_request_api_token())
            if token_user: