core-security: create secure profile

Create a new secure profile which configures authorization servers
(github and MUNI) as well as secures API endpoints.

By default the application is started in insecure mode. Meaning that no
login is required (good for scenario) and all API endpoints do not
require any authentication whatsoever.

To secure the application you must activate the 'secure' profile.
For example run the following:
`mvn spring-boot:run -Dspring-boot.profiles=secure`

or when running as jar:
`java -Dspring.profiles.active=secure -jar my-epic-jar-file.jar`