feat(api): allow unauthed requests to /systems/:id/settings

crates/api/src/main.rs

@@ -77,7 +77,7 @@ fn router(ctx: ApiContext) -> Router {
     Router::new()
         .route("/v2/systems/{system_id}", get(rproxy))
         .route("/v2/systems/{system_id}", patch(rproxy))
-        .route("/v2/systems/{system_id}/settings", get(rproxy))
+        .route("/v2/systems/{system_id}/settings", get(endpoints::system::get_system_settings))
         .route("/v2/systems/{system_id}/settings", patch(rproxy))
 
         .route("/v2/systems/{system_id}/members", get(rproxy))
@@ -134,10 +134,12 @@ fn router(ctx: ApiContext) -> Router {
         .route("/v2/groups/{group_id}/oembed.json", get(rproxy))
 
         .layer(middleware::ratelimit::ratelimiter(middleware::ratelimit::do_request_ratelimited)) // this sucks
-        .layer(axum::middleware::from_fn(middleware::ignore_invalid_routes))
-        .layer(axum::middleware::from_fn(middleware::cors))
-        .layer(axum::middleware::from_fn(middleware::logger))
 
+        .layer(axum::middleware::from_fn(middleware::ignore_invalid_routes::ignore_invalid_routes))
+        .layer(axum::middleware::from_fn(middleware::cors::cors))
+        .layer(axum::middleware::from_fn(middleware::logger::logger))
+
+        .layer(axum::middleware::from_fn_with_state(ctx.clone(), middleware::params::params))
         .layer(axum::middleware::from_fn_with_state(ctx.clone(), middleware::auth::auth))
 
         .layer(tower_http::catch_panic::CatchPanicLayer::custom(util::handle_panic))