Security events logging policy

We should set up a logging policy for the security related events. This would help detect abnormal behaviors and attacks.

• authentication attempt
• password update
• email update
• forgotten password mail
• token emission
• token refresh
• token revokation
• new consent
• consent revokation

We should also document the logging policy (mention which events are logged).

We could study if this worth setting up a specific python logger.