Return 401 unauthorized when agent token is missing or invalid
Currently 403 is returned. See gitlab-org/cluster-integration/gitlab-agent#116 (comment 540480035).
Having incorrect status code makes it harder to debug why exactly the request is not coming through.