Fix HIGH priority issues: unbounded queries, rate limiting, health checks

Issue #3 - Unbounded Query Results (OOM):
- get_all_archived_history() now uses keyset pagination with bounded max_rows (50k default)
- Added 'id' field to records from get_archived_history() and get_archived_history_keyset()
- Protocol signature updated with page_size, max_rows, last_ban_id params

Issue #7 - Docker Health Check Fails:
- Added curl to Dockerfile.backend runtime image
- HEALTHCHECK now uses 'curl -f http://localhost:8000/api/health'
- compose.prod.yml: increased start_period to 40s, timeout to 10s
- Frontend healthcheck proxies to backend /api/health

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

backend/app/routers/jail_config.py

@@ -15,6 +15,7 @@ from app.dependencies import (
     PendingRecoveryDep,
 )
 from app.exceptions import BadRequestError
+from app.mappers import config_mappers
 from app.models.config import (
     ActivateJailRequest,
     AddLogPathRequest,
@@ -68,7 +69,8 @@ async def get_jail_configs(
     Returns:
         :class:`~app.models.config.JailConfigListResponse`.
     """
-    return await config_service.list_jail_configs(socket_path)
+    domain_result = await config_service.list_jail_configs(socket_path)
+    return config_mappers.map_domain_jail_config_list_to_response(domain_result)
 
 
 
@@ -150,7 +152,8 @@ async def get_jail_config(
         HTTPException: 404 when the jail does not exist.
         HTTPException: 502 when fail2ban is unreachable.
     """
-    return await config_service.get_jail_config(socket_path, name)
+    domain_result = await config_service.get_jail_config(socket_path, name)
+    return config_mappers.map_domain_jail_config_to_response(domain_result)