Skip to content

Auth: Remove code for authenticating API keys #105998

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Jun 2, 2025
Merged

Auth: Remove code for authenticating API keys #105998

merged 5 commits into from
Jun 2, 2025

Conversation

dmihai
Copy link
Contributor

@dmihai dmihai commented May 26, 2025
edited
Loading

What is this feature?

This PR removes the code for authenticating using plain API keys. Plain API keys are the ones that don't belong to a service account. The API keys that do belong to a service account (these are called service account tokens) will continue to work after the changes from this PR.

Why do we need this feature?

All API keys have been forced migrated to service accounts for all Grafana instances. Now we want to stop API keys (although none should exist anymore) from authenticating.

Who is this feature for?

all users

Which issue(s) does this PR fix?:

Part of #53567.

Special notes for your reviewer:

Please check that:

  • It works as expected from a user's perspective.
  • If this is a pre-GA feature, it is behind a feature toggle.
  • The docs are updated, and if this is a notable improvement, it's added to our What's New doc.

@dmihai dmihai requested a review from mgyongyosi May 28, 2025 07:58
@dmihai dmihai marked this pull request as ready for review May 28, 2025 07:58
@dmihai dmihai requested a review from a team as a code owner May 28, 2025 07:58
@dmihai dmihai requested review from Rydez and removed request for a team May 28, 2025 07:58
@github-actions github-actions bot added this to the 12.1.x milestone May 28, 2025
@dmihai dmihai merged commit 6ab9c8b into main Jun 2, 2025
96 checks passed
@dmihai dmihai deleted the dmihai/remove-api-key-auth branch June 2, 2025 06:54
YannickAlex07 pushed a commit to YannickAlex07/grafana that referenced this pull request Jul 11, 2025
@dmihai @YannickAlex07
Auth: Remove code for authenticating API keys (grafana#105998)
f4ab0c6 
* remove auth for plain API keys

* move condition to validateApiKey()

* fix typo

* remove GetApiKeyById() method
@BrewTestBot BrewTestBot mentioned this pull request Jul 23, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mgyongyosi mgyongyosi mgyongyosi approved these changes

@Rydez Rydez Awaiting requested review from Rydez Rydez is a code owner automatically assigned from grafana/identity-squad

Assignees
No one assigned
Labels
add to changelog area/auth area/backend
Projects
None yet
Milestone
12.1.x
Development

Successfully merging this pull request may close these issues.
2 participants
@dmihai @mgyongyosi