Update managing api security

src/Managing.Api/appsettings.Production.json

@@ -23,12 +23,17 @@
       }
     }
   },
-  "AllowedHosts": "*",
   "Kaigen": {
     "BaseUrl": "https://api.kaigen.managing.live",
     "DebitEndpoint": "/api/credits/debit",
     "RefundEndpoint": "/api/credits/refund"
   },
+  "N8n": {
+    "WebhookUrl": "https://n8n.kai.managing.live/webhook/fa9308b6-983b-42ec-b085-71599d655951",
+    "IndicatorRequestWebhookUrl": "https://n8n.kai.managing.live/webhook/3aa07b66-1e64-46a7-8618-af300914cb11",
+    "Username": "managing-api",
+    "Password": "mH%g5qr!WvCd6%9Fck22Xo"
+  },
   "SqlMonitoring": {
     "Enabled": true,
     "LoggingEnabled": false,
@@ -41,5 +46,58 @@
       "https://app.kaigen.ai",
       "https://api.kaigen.ai"
     ]
+  },
+  "Authentication": {
+    "Schemes": {
+      "Bearer": {
+        "ValidIssuer": "https://api.kaigen.ai",
+        "ValidAudiences": "https://app.kaigen.ai"
+      }
+    }
+  },
+  "Jwt": {
+    "ValidateIssuer": true,
+    "ValidateAudience": true,
+    "ClockSkewSeconds": 0
+  },
+  "IpRateLimiting": {
+    "EnableEndpointRateLimiting": true,
+    "StackBlockedRequests": false,
+    "RealIpHeader": "X-Real-IP",
+    "ClientIdHeader": "X-ClientId",
+    "HttpStatusCode": 429,
+    "IpWhitelist": [],
+    "EndpointWhitelist": [],
+    "ClientWhitelist": [],
+    "GeneralRules": [
+      {
+        "Endpoint": "*",
+        "Period": "1m",
+        "Limit": 100
+      },
+      {
+        "Endpoint": "POST:/user/create-token",
+        "Period": "1m",
+        "Limit": 5
+      },
+      {
+        "Endpoint": "POST:*",
+        "Period": "1m",
+        "Limit": 30
+      }
+    ]
+  },
+  "IpRateLimitPolicies": {
+    "IpRules": [],
+    "ClientRules": [],
+    "EndpointRules": []
+  },
+  "Kestrel": {
+    "Limits": {
+      "MaxRequestBodySize": 10485760,
+      "MaxRequestHeadersTotalSize": 32768,
+      "MaxConcurrentConnections": 100,
+      "MaxConcurrentUpgradedConnections": 100
+    }
   }
 }