Reset password

Make password resettable

- [ ] Should passwords *be resettable*, if there is no *verified email address*?
- [ ] Determine, how long a password reset link should be valid (-> make configurable)
- [ ] Implement password reset view (or re-use Django's)
- [ ] Integrate with admin backend