fix(proxy): fix auth middleware ordering for Hono

Co-Authored-By: Claude <noreply@anthropic.com>

packages/proxy/src/auth/middleware.ts

@@ -7,6 +7,12 @@ export const authMiddleware: MiddlewareHandler = async (c, next) => {
     return next();
   }
 
+  // Skip auth for auth routes themselves
+  const path = new URL(c.req.url).pathname;
+  if (path.startsWith('/api/auth')) {
+    return next();
+  }
+
   const header = c.req.header('Authorization');
   const token = header?.startsWith('Bearer ') ? header.slice(7) : null;
 

packages/proxy/src/server/app.ts

@@ -14,12 +14,12 @@ const app = new Hono();
 // CORS for API
 app.use('/api/*', corsMiddleware);
 
-// Auth routes (before auth middleware)
-app.route('/api/auth', authRoutes);
-
-// Auth middleware (after auth routes)
+// Auth middleware (skips /api/auth/* internally)
 app.use('/api/*', authMiddleware);
 
+// Auth routes
+app.route('/api/auth', authRoutes);
+
 // API routes
 app.route('/api', api);