The new request (api/v1/rest/status) to retrieve token usage status can use two improvements:
It works without including a token in the header. In that case it returns valid json with status ok but empty usage info. Better to return the "token required" message, like many other API requests do.
The request returns the internal SQL query used, such details need (should) not be surfaced to the end users. Remove the field from the response json please.
The new request (api/v1/rest/status) to retrieve token usage status can use two improvements: