Rate limiting

## Reasoning

Rate limiting would avoid brute force attacks to find/use Monash Ninja codes. 
## Method

We could do one of the following:
- Use [hapi-rate-limit](https://www.npmjs.com/package/hapi-rate-limit) module.
- Implement rate limiting via an nginx configuration
- Use an API Gateway, like [Kong](https://getkong.org/).
