fix(workers): allow /v1/files preview without auth

Author: shuaishuai

src/index.ts

@@ -81,19 +81,24 @@ app.onError((err, c) => {
   return withResponseHeaders(res, { "x-grok2api-build": buildSha });
 });
 
-app.route("/v1", openAiRoutes);
-app.route("/", mediaRoutes);
-app.route("/", adminRoutes);
-
 // Backward-compatible local-cache viewer URLs used by the multi-page admin UI.
 // In Workers we serve cache via /images/*, so redirect /v1/files/* to /images/*.
+//
+// IMPORTANT: define these routes BEFORE mounting `/v1` OpenAI routes.
+// Hono's `app.route("/v1", ...)` plus `use("/*", ...)` middleware would otherwise
+// intercept `/v1/files/*` and return 401 (no Authorization header) when users
+// click "view" in the admin cache page.
 app.get("/v1/files/image/:imgPath{.+}", (c) =>
   c.redirect(`/images/${encodeURIComponent(c.req.param("imgPath"))}`, 302),
 );
 app.get("/v1/files/video/:imgPath{.+}", (c) =>
   c.redirect(`/images/${encodeURIComponent(c.req.param("imgPath"))}`, 302),
 );
 
+app.route("/v1", openAiRoutes);
+app.route("/", mediaRoutes);
+app.route("/", adminRoutes);
+
 app.get("/_worker.js", (c) => c.notFound());
 
 app.get("/", (c) => c.redirect("/login", 302));