Fix Clerk auth headers leaking onto public API routes

completed

Priority: 0

Branch: meridian/skip-clerk-public-api

PR: #243

Victor asked to fix misleading x-clerk-auth-reason/token-invalid headers on CommonGrid public API routes. Implement middleware bypass for /api/v1/* and /api/tiles/* before Clerk runs, preserving security + CORS headers; add regression tests; open/merge PR once CI green.

Event Timeline

created

status_change

in_progress → completed