Documentation and minor fix

[fbonalair]

• Completing README.md
• changing env var CROWDSEC_BOUNCER_HOST to CROWDSEC_AGENT_HOST
• adding "forbidden" as message if request is not authorized
• Bounce request now send http code 403 instead of 401