Implement secure API key hashing and storage

[Smartdevs17]

Description

API keys are stored in plaintext in the database. Implement bcrypt hashing with key prefix for identification.

Acceptance Criteria

• API key hashing with bcrypt (cost factor 10)
• Key prefix (first 8 chars) for key identification
• Key rotation with overlapping validity
• Key creation audit with access logging
• Key revocation with immediate effect
• Migration script for existing keys

Technical Scope

• api/src/services/
• api/src/middleware/auth.ts
• Edge: key leakage in logs, timing attacks on comparison, bcrypt performance on high-traffic auth

[Wetshakat]

@Wetshakat has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

Gm maintainer I will like to work on this issue
ETA 3hrs

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Wetshakat to this issue.

[DevSolex]

@DevSolex has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

Hi Maintainer,

I’m a smart contract and full-stack developer interested in contributing to this issue. I’m an experienced contributor with hands-on experience in Rust, Soroban, Cairo, and TypeScript.

I’m passionate about building secure and scalable blockchain solutions, with a strong focus on writing clean, maintainable code. Based on the scope of this issue, I’m confident I can deliver a complete solution within 24 hours of assignment(ETA).
I would appreciate the opportunity to contribute and help move this forward.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @DevSolex to this issue.

[OTimileyin]

@OTimileyin has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

Hi, I'd like to work on this issue , ETA: 1 hours

ℹ️ Repo Maintainers: To accept this application, review their application or assign @OTimileyin to this issue.