fix(webhooks): restore auth-first ordering and add credential resolution warning

- Revert parallel auth+preprocessing to sequential auth→preprocessing
  to prevent rate-limit exhaustion via unauthenticated requests
- Add warning log when credential account resolution fails in background job

Author: waleedlatif1

apps/sim/app/api/webhooks/trigger/[path]/route.ts

@@ -79,12 +79,13 @@ export async function POST(
       return reachabilityResponse
     }
 
-    // Parallelize auth verification with preprocessing — they are independent
-    const [authError, preprocessResult] = await Promise.all([
-      verifyProviderAuth(foundWebhook, foundWorkflow, request, rawBody, requestId),
-      checkWebhookPreprocessing(foundWorkflow, foundWebhook, requestId),
-    ])
-
+    const authError = await verifyProviderAuth(
+      foundWebhook,
+      foundWorkflow,
+      request,
+      rawBody,
+      requestId
+    )
     if (authError) {
       if (webhooksForPath.length > 1) {
         logger.warn(`[${requestId}] Auth failed for webhook ${foundWebhook.id}, continuing to next`)
@@ -93,6 +94,7 @@ export async function POST(
       return authError
     }
 
+    const preprocessResult = await checkWebhookPreprocessing(foundWorkflow, foundWebhook, requestId)
     if (preprocessResult.error) {
       if (webhooksForPath.length > 1) {
         logger.warn(

apps/sim/background/webhook-execution.ts

@@ -211,6 +211,11 @@ async function executeWebhookJobInternal(
         : Promise.resolve(payload.credentialAccountUserId),
     ])
     const credentialAccountUserId = resolvedCredentialUserId
+    if (payload.credentialId && !credentialAccountUserId) {
+      logger.warn(
+        `[${requestId}] Failed to resolve credential account for credential ${payload.credentialId}`
+      )
+    }
 
     if (!workflowData) {
       throw new Error(