Add support for authentication by double secret url. We generate this
URL and set a 30 second timer after which the URL is useless. The URL can be used only once. It remains to be seen how we will actually present this URL to users.
Showing with 100 additions and 41 deletions