When the security-enabled attribute is set to true for the metrics endpoint and when the HTTP management interface has been secured using the Keycloak adapter, attempting to access the metrics endpoint results in a 401 - Unauthorized response with the "WWW-Authenticate: Bearer" header. We need some special handling to make sure that when the metrics endpoint is accessed, we are able to redirect the login to Keycloak / make use of an existing token, similar to what HAL does when the console is accessed.