auth
scope - ONE user and password, one disc database
- Check for some kind of cookie or Token.
- If yes, go to database page as it is. If not, go to log in
- Sign in - username and password. Check password again plaintext first
- If password is bad, display error. If yes, figure out a token/cookie