Ver 2.0,1; Nginx based endpoint protection

Write nginx rules to protect some endpoints from bruteforce like attacks:
* /auth/login from bruteforce
* /auth/me from server overload, because it use crypto functions to validate token
* /notifications polling (maybe rewrite polling architect to use global state and Streaming response)