[Feature]: Improve security and setup by adding secure session cookies and `.env.example` file

[gar6307]

Where are you from?

Mention the even you are from.

[Yes] GSSoc

[No ] OSCI

Description of the Feature

I want to make the backend more secure and easier for new contributors to set up.

Proposed changes:

1. Add secure session cookie settings like httpOnly, sameSite, and secure flags.
2. Disable the X-Powered-By header to hide Express info for security.
3. Create a .env.example file to help new contributors quickly set up environment variables.
4. Improve the /api/health endpoint by showing database name, memory usage, and environment details.

These changes will improve security, make the project easier to understand, and help new contributors get started faster.

Estimated time to implement the feature

1-2 days

Additional context

These are small but important changes that will make the project more professional and contributor-friendly.

For example:

• Secure session cookies prevent session hijacking.
• .env.example file makes setup easier for first-time contributors.
• Improving the health check will help with monitoring and debugging.

[github-actions]

Thank you for raising this issue!

We'll review it as soon as possible. We truly appreciate your contributions! ✨

Meanwhile make sure you've visited the README.md, CONTRIBUTING.md, and CODE_OF_CONDUCT.md before creating a PR for this. Also, please do NOT create a PR until this issue has been assigned to you. 😊

[gar6307]

Hello Myself Garima Shahi. I have raised an issue and already clarified it. Kindly assign me with gssoc'25 label and level.

[GollaBharath]

@gar6307 I have assinged this issue to you

[adi-ray]

@GollaBharath Is this issue still up for grabs?

[GollaBharath]

@adi-ray i am assigning this issue to u

[AadityaBansal01]

Hi! I am a GSSoC contributor. Could you please assign this issue to me? I would like to work on it and contribute to the project.

Thank you!