Add http header to allow query to be executed without session creation

[richard-julien]

Use case

In some case, external client that call opencti (taxii client ...) are not able to manage an http session. This situation leads to a session explosion in opencti depending on the session maximum time. As these clients are able to add some extra header, the concept is to prevent session creation if this header is available This issue will also refactor part of code to use user loading from cache in auth and basic finding

opencti-no-session = ?1

opencti-no-session is a boolean and so ?0 or ?1 to be compliant with http specification

This header is not recommanded if the client is able to support session management.