Add 2 factor authentication

[tim-fabian]

• TOTP with Google Authenticator
• An easy way should be added to set this up for an existing account
• There should be a simple way to require the second factor on specific routes (best case some kind of decorator)
• Save devices from which 2 factor was used to not require it on every login