Secure api endpoints

### Why Is this Needed

[comment]: # (Describe the problem and why this task is needed. Provide description of the current state, what you would like to happen, and what actually happen)
*Summary*:

Some of the api (json) request on the api are not checking for csrftoken or `request.user.is_authenticated` making possible to fetch data from outside gitcoin.

### Description

[comment]: # (Feature or Bug? i.e Type: Bug)
*Type*:

### Current Behavior
[comment]: # (Describe what actually happened.)
Api exposed
### Expected Behavior
[comment]: # (Describe what you expected to happen.)
We have a right list of our public api and secure the endpoints with sensitive data 

### Definition of Done
[comment]: # (Any other information that would be useful, bullets are helpful.)
- Create a list of public endpoints 
- Secure the endpoints we don't want to expose

### Data Requirements
[comment]: # (How will we measure the success of this feature? What kind of tracking is needed for this feature (clicks, impressions, flag)?)

### Additional Information
[comment]: # (Any other information that would be useful, content, screenshots, etc.)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Secure api endpoints #8304

Why Is this Needed

Description

Current Behavior

Expected Behavior

Definition of Done

Data Requirements

Additional Information

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Secure api endpoints #8304

Description

Why Is this Needed

Description

Current Behavior

Expected Behavior

Definition of Done

Data Requirements

Additional Information

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions