Allow unauthenticated access to metrics and status endpoints from localhost

Problem

While it is possible to add API keys with specific access to e.g. /api/prometheus/metrics, it is often acceptable to trust connections from localhost.

Solution

Add an option to allow unauthenticated access to /api/prometheus/metrics and /api/status.

How to vote

Please give us a thumbs up or thumbs down as a reaction to help us prioritize this feature. Feel free to comment if you have a particular need or comment on how this feature should work.