bug: Replace auth system with tokens

The current system just checks that a user exists. There is no verification of identity and no checks for collisions in used usernames. See #51 

The verification flow should do the following:
 - [ ] Send a mail or use a webgate to get a JWT
 - [ ] JWT should be validated in a flow separate to the command itself and roles should be assigned based off of the roles of the member in LDAP