1 files changed, 19 insertions, 0 deletions

diff --git a/app/controllers/proxy.go b/app/controllers/proxy.go
index c8345e8..9e3ec13 100644
--- a/app/controllers/proxy.go
+++ b/app/controllers/proxy.go
@@ -12,6 +12,21 @@ import (
 
         "github.com/gorilla/websocket"
         "github.com/labstack/echo/v4"
+        "github.com/prometheus/client_golang/prometheus"
+        "github.com/prometheus/client_golang/prometheus/promauto"
+)
+
+var (
+        proxyError = promauto.NewCounterVec(prometheus.CounterOpts{
+                Namespace: "ssh_proxy",
+                Name:      "proxy_error",
+                Help:      "Total number of errors during proxy setup operation",
+        }, []string{"type"})
+        proxySuccess = promauto.NewCounter(prometheus.CounterOpts{
+                Namespace: "ssh_proxy",
+                Name:      "proxy_success",
+                Help:      "Total number of successful proxy sessions",
+        })
 )
 
 type ProxyHandler struct {
@@ -37,6 +52,7 @@ func (h *ProxyHandler) authorizeRequest(c echo.Context) error {
         }
 
         if !session.HasScope("ssh:proxy") {
+                proxyError.With(prometheus.Labels{"type": "token_missing_scope"}).Inc()
                 return fmt.Errorf("Authorized session does not have scope ssh:proxy")
         }
 
@@ -46,6 +62,7 @@ func (h *ProxyHandler) authorizeRequest(c echo.Context) error {
                 return nil
         }
 
+        proxyError.With(prometheus.Labels{"type": "not_authorized"}).Inc()
         return fmt.Errorf("User %s not authorized for host %s", session.UserId, host)
 }
 
@@ -70,6 +87,8 @@ func (h *ProxyHandler) Handle(c echo.Context) error {
         errc := make(chan error)
         ws := &proxy.WebsocketReadWriter{W: wsconn}
 
+        proxySuccess.Inc()
+
         go proxy.CopyWithErrors(proxyconn, ws, errc)
         go proxy.CopyWithErrors(ws, proxyconn, errc)