fix event

deskripsi:
- fix riwayat event

src/middleware.ts

@@ -120,6 +120,33 @@ export const middleware = async (req: NextRequest) => {
     return setCorsHeaders(response);
   }
 
+  // Handle API requests
+  if (pathname.startsWith(apiPath)) {
+
+    if (!token) {
+      return setCorsHeaders(unauthorizedResponse());
+    }
+
+    try {
+      const validationResponse = await fetch(
+        new URL(validationApiRoute, req.url),
+        {
+          headers: {
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${token}`,
+          },
+        }
+      );
+
+      if (!validationResponse.ok) {
+        throw new Error("Failed to validate API request");
+      }
+    } catch (error) {
+      console.error("Error validating API request:", error);
+      return setCorsHeaders(unauthorizedResponse());
+    }
+  }
+
   // Handle /dev routes that require active status
   if (pathname.startsWith("/dev")) {
     try {
@@ -153,32 +180,6 @@ export const middleware = async (req: NextRequest) => {
     }
   }
 
-  // Handle API requests
-  if (pathname.startsWith(apiPath)) {
-    if (!token) {
-      return setCorsHeaders(unauthorizedResponse());
-    }
-
-    try {
-      const validationResponse = await fetch(
-        new URL(validationApiRoute, req.url),
-        {
-          headers: {
-            "Content-Type": "application/json",
-            Authorization: `Bearer ${token}`,
-          },
-        }
-      );
-
-      if (!validationResponse.ok) {
-        throw new Error("Failed to validate API request");
-      }
-    } catch (error) {
-      console.error("Error validating API request:", error);
-      return setCorsHeaders(unauthorizedResponse());
-    }
-  }
-
   const response = NextResponse.next();
   // Ensure token is preserved in cookie
   if (token) {