feat(auth): enhance authentication system with login attempt tracking and configuration options

- Added a new `LoginAttempt` model to track login attempts, including rate limiting and lockout functionality.
- Introduced environment variables for configuring login rate limits and maximum failures.
- Updated the authentication middleware to handle login attempts and enforce rate limits.
- Enhanced the user model with indexing for username and email for improved lookup performance.
- Modified the `.env.example` file to include new optional authentication settings.
- Updated integration tests to cover new login attempt features and authentication state management.

e2e/tests/dashboard-workflows.spec.ts

@@ -86,8 +86,10 @@ test.describe("Dashboard Workflows", () => {
 
     await expect(cardLocator).toHaveCount(0);
 
-    const response = await request.get(`${API_URL}/drawings/${createdDrawing.id}`);
-    expect(response.status()).toBe(404);
+    await expect.poll(async () => {
+      const response = await request.get(`${API_URL}/drawings/${createdDrawing.id}`);
+      return response.status();
+    }).toBe(404);
     createdDrawingIds = createdDrawingIds.filter((id) => id !== createdDrawing.id);
   });