Support to use rotate api to rotate token if a project access token already exists

[AaronLuo3296]

When using create api, every api call will create a new token with a new bot user. While using rotate api, the same bot user (user_id) will be kept which will benefit branch protection configuration if a bot user is allowed to push to some protected branch, eg. release branch.