Add option to require login for signed_url view

[alukach]

It seems sensible that end-users would want to require login for the signed_url() view in order to limit those who could access signed S3 policies. This could be done via a property in settings.py.