Configure ORCID sandboxing by env variable
Introduce an environment variable to control whether ORCID is sandboxed or not.
Currently we are deploying a development build to our team server only because we want to use sandboxed ORCID authentication. This caused issues around manuscript upload (separately resolved as issue #58 (closed)), requires the database to be part of the docker build, and prevents code optimization. We should not be forced to deploy a development build purely to use sandboxed ORCID.