A group of minor fixes2

[poursal]

Fixes the following:

1. Can update the limit externally (i.e. increase the limit for authenticated users)
2. Fix the reset-at wave problems by going to microseconds
3. Fix marginal bug in HIT, where by increment an expired key it creates a key that never expires
4. Be able to set the trusted LB that are allowed to send the FORWARD headers
5. Be able to switch between IP and authenticated user on the Identity Resolver

• A bug fix that I introduced and did not include

[nikolaposa]

@poursal I would appreciate if you could split your changes across multiple branches/PRs instead of having a single PR master directly from the master branch of your fork. For instance: fix/reset-at-wave, fix/never-expiring-key, feature/user-identity-resolver, etc. That way it would be much more easier for me to review them.