feat!: add toggle-able Bento authorization middleware

[davidlougheed]

this doesn't implement any full-response endpoints or much in the way of complex fallback/different responses - just setting up the basics

[gsfk]

Okay great! Just a few comments so far:

Werkzeug version needs to be <2.3 (werkzeug issue, debugpy issue)

Info endpoints (the ones in info.py) do not require auth.

returns 403 in a lot of cases where another response would be better, eg:

• masks all 500 errors as 403, even in dev mode
• beacon endpoints are configurable, they can be toggled on and off in the main beacon_config.json. So for example it's possible to have a beacon that implements /individuals but not /g_variants. In this case the corresponding flask blueprint is never loaded. For these endpoints 404 would be be better.
• For the functions that have raise NotImplemented() as their body, some of these will get full auth implementations, and the rest I'll remove outright. Ideally the ones that are removed entirely will return 404.