Improve docs on authentication

[brillout]

From Discord:

How is one supposed to set response headers with Telefunc? I've thought on making my authentication through Telefunc, but I need to set a cookie on the response

Currently, the answer is that you should implement authentication endpoints directly on your server without Telefunc. Then follow https://telefunc.com/permissions.

We should improve the documenation to clarify that.

As for being able to implement authentication over Telefunc, I'm not sure the benefit outweighs bloating Telefunc. Comment and arguments welcome.

[brillout]

Let's track progress on documentation at https://github.com/brillout/telefunc/issues/104.