Authorization

It's not good enough to authenticate the user is who he or she is, but we also need to restrict access to service to those who are authorized for those services.

TODO: Describe JWT tokens and how to use rust to generate them, and to have the khadga backend make use of them.