rate-limiting: Disallow calling auth via external network

[naftis]

Depends on this issue https://github.com/opencrvs/opencrvs-core/issues/5930 which allows proxying auth requests through gateway. For security, we should hide auth completely behind gateway to always rate limit it.

Dev tasks

• [x] Figure out a fix to allow data-seeder to bypass rate limiting
• [x] Re-enable rate-limiting here: https://github.com/opencrvs/opencrvs-core/blob/develop/packages/gateway/src/constants.ts
• [x] Allow only making 10 requests per minute. See the screenshot 2* to understand why more requests are currently let through. Add a test to ensure that the problem is fixed.
• [x] Refactor services that make external requests to auth. This includes login + documentation updates?

[euanmillar]

Seeding should be fixed. Data generator should not be affected because it will not hit the limit.

Because we dont want to clear prod and run seeding / data gen there again ...

To code review this, we would need to provision another production "demo" environment where NODE_ENV is production and QA env var is also true, in order to test that seeding & data-generator work

If there is a problem ...

How about we allow "demo" scope to bypass rate limiting in order to enable the data-generator.