Consider secret keys on the level fo users #46
Description
Arguably each user should have their own secret key. Right now we use a shared server and client secret, assuming that the predominant use case is one or a small set of users.
And the reason a database works here (given the lack of a shared filesystem) is because we are technically only running /deploying the restful API server on the broker pod. The broker pod is the single point of interaction for a remote request (to hit the rest of the workers / cluster).