I have some PRE middleware, that appears to be getting requests despite those URIs listed as GET /path “ignore” in endpoint designer. I assume there is some precedence here?
The ignore list fires after the pre middleware, pre middleware is almost the first middleware that gets executed.
The ignore paths bypass the auth MW though (and any built in MW that has session requirements), it’s designed for health checks and custom authorisation endpoints that shouldn’t be rate limited, quota’d or protected.