chore: order is_auth'd middleware correctly (#10225)

Needs to be earlier than ConditionalGetMiddleware or the flag
will not be set for 304 responses.

Author: jennifer-richards

ietf/settings.py

@@ -454,6 +454,7 @@ def skip_unreadable_post(record):
     "django.contrib.sessions.middleware.SessionMiddleware",
     "django.contrib.auth.middleware.AuthenticationMiddleware",
     "django.contrib.messages.middleware.MessageMiddleware",
+    "ietf.middleware.is_authenticated_header_middleware",
     "django.middleware.http.ConditionalGetMiddleware",
     "simple_history.middleware.HistoryRequestMiddleware",
     # comment in this to get logging of SQL insert and update statements:
@@ -464,7 +465,6 @@ def skip_unreadable_post(record):
     "django.middleware.clickjacking.XFrameOptionsMiddleware",
     "django.middleware.security.SecurityMiddleware",
     "ietf.middleware.unicode_nfkc_normalization_middleware",
-    "ietf.middleware.is_authenticated_header_middleware",
 ]
 
 ROOT_URLCONF = 'ietf.urls'