initial implementation of request forwarding, cookies set from dbwriter are still not being properly passed through - issue #460

add the dbwriter process.   it's not yet hooked up, but starts up and runs, and included in health check.

reorganize browserid process - break out view serving and wsapi handling.  preparation for dbwriter split.  issue #460

remove CORS from repository.  In-repo example now properly forwards requests to verifier from server.  closes #245

implement graceful process shutdown, and clear logging as to the reason why processes are terminating.  include winston handling of uncaught exceptions.  this all goes into a library that all of our processes use.  closes #529

in production (dev/beta/prod) use a more conventional logging format that includes timestamps.  closes #234

implement graceful process shutdown, and clear logging as to the reason why processes are terminating.  include winston handling of uncaught exceptions.  this all goes into a library that all of our processes use.  closes #529

in production (dev/beta/prod) use a more conventional logging format that includes timestamps.  closes #234

fix undefined reference (crash) in verifier after verification failure.  closes #523.  introduced in issue #82.

fix CSRF checking logic, once we identify a single problem with the CSRF token, don't fall through to further checks