diff --git a/pkg/api/pluginproxy/ds_auth_provider.go b/pkg/api/pluginproxy/ds_auth_provider.go
index 320c4cc2cd3..85d6beb35e6 100644
--- a/pkg/api/pluginproxy/ds_auth_provider.go
+++ b/pkg/api/pluginproxy/ds_auth_provider.go
@@ -64,7 +64,7 @@ func ApplyRoute(ctx context.Context, req *http.Request, proxyPath string, route
 	}
 
 	if req.Header.Get("Authorization") == "" && ds.Type == "stackdriver" {
-		defaultCredentials, err := google.FindDefaultCredentials(ctx)
+		defaultCredentials, err := google.FindDefaultCredentials(ctx, "https://www.googleapis.com/auth/monitoring.read")
 		projectName := ds.JsonData.Get("defaultProject").MustString()
 		if projectName == "" {
 			ds.JsonData.Set("defaultProject", defaultCredentials.ProjectID)
@@ -81,24 +81,6 @@ func ApplyRoute(ctx context.Context, req *http.Request, proxyPath string, route
 		}
 	}
 
-	if req.Header.Get("Authorization") == "" && ds.Type == "stackdriver" {
-		credentials, err := google.FindDefaultCredentials(ctx, "https://www.googleapis.com/auth/monitoring.read")
-		projectName := ds.JsonData.Get("defaultProject").MustString()
-		if projectName == "" {
-			ds.JsonData.Set("defaultProject", credentials.ProjectID)
-		}
-		if err != nil {
-			logger.Error("Failed to get access token", "error", err)
-		} else {
-			token, err := credentials.TokenSource.Token()
-			if err != nil {
-				logger.Error("Failed to get access token", "error", err)
-			} else {
-				req.Header.Add("Authorization", fmt.Sprintf("Bearer %s", token.AccessToken))
-			}
-		}
-	}
-
 	logger.Info("Requesting", "url", req.URL.String())
 
 }