feat: apitoken types to support prefixes

[mdtro]

In support of getsentry/rfcs#32.

Add a nullable token_type column to the ApiToken model. This will be used to help us identify the different kinds of API tokens we have in the application via a prefix. With this, we'll be able to integrate with GitHub and others' secret scanning program to prevent token leaks. Legacy (e.g. tokens that already exist) will have a null value here, so we'll know they are not one of our new tokens with the prefix format once all tokens are stored solely as hashed values.

[github-actions]

This PR has a migration; here is the generated SQL for src/sentry/migrations/0653_apitoken_add_token_type.py ()

--
-- Add field token_type to apitoken
--
ALTER TABLE "sentry_apitoken" ADD COLUMN "token_type" varchar(7) NULL;

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 84.19%. Comparing base (9d940ab) to head (6c691fa).

Additional details and impacted files

@@           Coverage Diff           @@
##           master   #65684   +/-   ##
=======================================
  Coverage   84.18%   84.19%           
=======================================
  Files        5271     5272    +1     
  Lines      235792   235802   +10     
  Branches    40810    40810           
=======================================
+ Hits       198508   198523   +15     
+ Misses      37065    37060    -5     
  Partials      219      219           

Files	Coverage Δ
src/sentry/models/apitoken.py	100.00% <100.00%> (ø)
src/sentry/types/token.py	100.00% <100.00%> (ø)

... and 7 files with indirect coverage changes

[markstory]

Schema change looks good to me.