APTMirror: Authentication for mirroring private repositories

In order to mirror private repositories, it would be useful for the APTMirror task to support basic authentication.

Of course, passwords must be handled carefully and not exposed in task logs, the Internals tab of work requests, or the API. It probably makes most sense to store them in a new asset category.