Protect or gate /metrics endpoint

[hman38705]

Issue 011: Protect or gate /metrics endpoint

Area: Backend
Priority: High
Files: services/api/src/main.rs, services/api/src/handlers.rs

Problem

Prometheus metrics are publicly exposed without authentication. Internal metrics can leak sensitive operational data.

Acceptance Criteria

• Endpoint is protected by auth and/or IP allowlist\n- Optional public mode remains configurable\n- Security behavior is documented\n- Tests verify unauthorized access is rejected

[yusufadeagbo]

@yusufadeagbo has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

I’ll like take this issue. I have relevant experience handling similar problems and can deliver a clean, maintainable solution.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @yusufadeagbo to this issue.

[anumukul]

@anumukul has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

Hi, I’d like to take this issue and can deliver a fix within 24 hours.
I’ve worked on similar projects before and have relevant experience, so I should be able to handle this efficiently.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @anumukul to this issue.

[obanai9]

@obanai9 has applied to work on this issue as part of the Stellar Wave Program's 4th wave.

Can I be assigned to work on this issue please?? I will deliver an excellent job and will communicate if there are any blockers

ℹ️ Repo Maintainers: To accept this application, review their application or assign @obanai9 to this issue.

[drips-wave]

Congratulations, @obanai9! 🎉 Your application was accepted by the repo's maintainers, and the issue is due on April 29, 2026.

🧑‍💻 @obanai9: Please resolve the issue such that the repo's maintainers have enough time to review your contribution before the due date. You'll earn Points for completing the issue on-time, which will make you eligible for a share of the Stellar Wave Program's reward pool.

Warning

When opening a PR, please link it to this issue to ensure it gets tracked accurately. Points are awarded when this issue is marked as completed by the maintainer.

🤠 Repo maintainers: Please keep an eye on the contributor's progress and review their work before the due date. You can manage this issue, including adjusting its complexity and points, here.

🌊 Happy Wave 🌊

[drips-wave]

This issue has been completed by @obanai9 as part of the Stellar Wave Program's 4th Wave 🥳

😎 @obanai9: You earned 200 Points for completing this issue! After the current Wave ends, you'll be eligible for a percentage of the Wave's reward pool based on the percentage of total points you've earned. Learn more here. You can also Leave a review to share your experience working on this issue.

🧑‍💻 Repo maintainers: How'd the contributor do? Leave a review to share your experience working with them.