Fixes #4

Fixes #2

Fixes #1

The email works when sent from app.py, but not from any other file.
Also, it requires mysql-connector-python version 8.0.5, for some reason.
Right now the email is logged, so even if it couldn't get through the
server testing works.

Fixes #7

Fixes #9

Fixes #15

Fixes #6

The implementation enforces a timeout of one minute after three or
more incorrect login attempts for an account.

Fixes #8

Fixes #22

The new scheme uses bcrypt and a random salt for each user.
This is not compatible with old passwords.

Fixes #13

Fixes #10

Fixes #11

Fixes #23

Fixes #16

Fixes #24

Fixes #14

The random string token is stored in the database, and is revoked when
the user logs out.

Fixes #17

Fixes #5

Fixes #18

Fixes #3