auth: Rewrite permission system and improve support for it. - More proper ACL model for permissions. - Page-level ACL is only specified locally, not inherited anymore. - Protect more API and UI routes with permission checks. - Improve error handling and error pages.

Flask==0.12.2
Flask-Bcrypt==0.7.1
Flask-Login==0.2.10
Jinja2==2.10
Markdown==2.6.10
Pygments==2.2.0
SQLAlchemy==1.2.0
Whoosh==2.7.4
colorama==0.3.9
python-hglib==1.8
repoze.lru==0.6