Convex Chat HTTP endpoint is insecure!

[mzafarr]

It doesn't even check if user is authenticated, which is a big security issue.