Missing:
1. Figure out how to do some useful aliases for the mail
addresses. Either something like assigning @kas.agerlinskovgaard.dk
to kaare@agerlinskovgaard.dk or usual + aliases.
2. Oauth2 login is not working yet.
3. Need to be able to create accounts not handled by LDAP, such
that eg. forgejo can have an account to send mails from (maybe
also an account to receive mails?).
4. Once support in kanidm lands, need to look into application passwords
such that one doesn't have to use their regular posix password,
and maybe, ideally, doesn't need a posix password at all.
