Secure routable controller methods

[MGatner]

Description
Fix for #1849 - changes system/Controller.php methods to protected and adds a 404 route for initController method

Checklist:

• Securely signed commits
• Component(s) with PHPdocs
• Unit testing, with >80% coverage
• User guide updated
• Conforms to style guide

[lonnieezell]

Could you check out the breaking tests? I think this is the first place I saw those erroring out.

[MGatner]

Error 1 of 3 is caused by CLI's routes attempting to parse callbacks as a string - see #1847 (comment).
This will be fixed by #1859

[MGatner]

Errors 2 & 3 are both from system tests trying to call the now-protected methods directly. I believe this can be resolved by rewriting the test to use getPrivateMethodInvoker. The earliest I could look at doing this would be late next week, but I think it is a relatively easy change.
Relevant Travis CI logs:

2) CodeIgniter\ControllerTest::testCachePage
Error: Call to protected method CodeIgniter\Controller::cachePage() from context 'CodeIgniter\ControllerTest'
/home/travis/build/codeigniter4/CodeIgniter4/tests/system/ControllerTest.php:90
3) CodeIgniter\ControllerTest::testValidate
Error: Call to protected method CodeIgniter\Controller::validate() from context 'CodeIgniter\ControllerTest'
/home/travis/build/codeigniter4/CodeIgniter4/tests/system/ControllerTest.php:100

[MGatner]

I believe this is ready now - test failures were resolved by using getPrivateMethodInvoker() as expected.

[lonnieezell]

Looks good. Thanks!