diff --git a/auth/auth.qtpl b/auth/auth.qtpl
index 2e34332..b1f3507 100644
--- a/auth/auth.qtpl
+++ b/auth/auth.qtpl
@@ -1,8 +1,6 @@
 {% import "net/http" %}
-{% import "sort" %}
 {% import "github.com/bouncepaw/mycorrhiza/cfg" %}
 {% import "github.com/bouncepaw/mycorrhiza/l18n" %}
-{% import "github.com/bouncepaw/mycorrhiza/user" %}
 
 {% func Register(rq *http.Request) %}
 {% code
@@ -143,71 +141,3 @@ Telegram auth widget was requested by Yogurt. As you can see, we don't offer use
 </html>
 {% endfunc %}
 
-{% code
-var userListL10n = map[string]L10nEntry{
-    "heading": En("List of users").Ru("Список пользователей"),
-    "administrators": En("Administrators").Ru("Администраторы"),
-    "moderators": En("Moderators").Ru("Модераторы"),
-    "editors": En("Editors").Ru("Редакторы"),
-    "readers": En("Readers").Ru("Читатели"),
-}
-%}
-
-{% func UserList(lc *l18n.Localizer) %}
-<main class="main-width user-list">
-{% code
-var get = func(key string) string {
-	return userListL10n[key].Get(lc.Locale)
-}
-
-var (
-	admins = make([]string, 0)
-	moderators = make([]string, 0)
-	editors = make([]string, 0)
-    readers = make([]string, 0)
-)
-for u := range user.YieldUsers() {
-	switch u.Group {
-	// What if we place the users into sorted slices?
-	case "admin":
-		admins = append(admins, u.Name)
-	case "moderator":
-		moderators = append(moderators, u.Name)
-	case "editor", "trusted":
-		editors = append(editors, u.Name)
-    case "reader":
-        readers = append(readers, u.Name)
-	}
-}
-sort.Strings(admins)
-sort.Strings(moderators)
-sort.Strings(editors)
-sort.Strings(readers)
-%}
-	<h1>{%s get("heading") %}</h1>
-	<section>
-		<h2>{%s get("administrators") %}</h2>
-		<ol>{% for _, name := range admins %}
-			<li><a href="/hypha/{%s cfg.UserHypha %}/{%s name %}">{%s name %}</a></li>
-		{% endfor %}</ol>
-	</section>
-	<section>
-		<h2>{%s get("moderators") %}</h2>
-		<ol>{% for _, name := range moderators %}
-			<li><a href="/hypha/{%s cfg.UserHypha %}/{%s name %}">{%s name %}</a></li>
-		{% endfor %}</ol>
-	</section>
-	<section>
-		<h2>{%s get("editors") %}</h2>
-		<ol>{% for _, name := range editors %}
-			<li><a href="/hypha/{%s cfg.UserHypha %}/{%s name %}">{%s name %}</a></li>
-		{% endfor %}</ol>
-	</section>
-	<section>
-		<h2>{%s get("readers") %}</h2>
-		<ol>{% for _, name := range readers %}
-			<li><a href="/hypha/{%s cfg.UserHypha %}/{%s name %}">{%s name %}</a></li>
-		{% endfor %}</ol>
-	</section>
-</main>
-{% endfunc %}
diff --git a/auth/auth.qtpl.go b/auth/auth.qtpl.go
index dfbbd48..f0f8a22 100644
--- a/auth/auth.qtpl.go
+++ b/auth/auth.qtpl.go
@@ -8,515 +8,509 @@ package auth
 import "net/http"
 
 //line auth/auth.qtpl:2
-import "sort"
-
-//line auth/auth.qtpl:3
 import "github.com/bouncepaw/mycorrhiza/cfg"
 
-//line auth/auth.qtpl:4
+//line auth/auth.qtpl:3
 import "github.com/bouncepaw/mycorrhiza/l18n"
 
 //line auth/auth.qtpl:5
-import "github.com/bouncepaw/mycorrhiza/user"
-
-//line auth/auth.qtpl:7
 import (
 	qtio422016 "io"
 
 	qt422016 "github.com/valyala/quicktemplate"
 )
 
-//line auth/auth.qtpl:7
+//line auth/auth.qtpl:5
 var (
 	_ = qtio422016.Copy
 	_ = qt422016.AcquireByteBuffer
 )
 
-//line auth/auth.qtpl:7
+//line auth/auth.qtpl:5
 func StreamRegister(qw422016 *qt422016.Writer, rq *http.Request) {
-//line auth/auth.qtpl:7
+//line auth/auth.qtpl:5
 	qw422016.N().S(`
 `)
-//line auth/auth.qtpl:9
+//line auth/auth.qtpl:7
 	lc := l18n.FromRequest(rq)
 
-//line auth/auth.qtpl:10
+//line auth/auth.qtpl:8
 	qw422016.N().S(`
 <main class="main-width">
 	<section>
 	`)
-//line auth/auth.qtpl:13
+//line auth/auth.qtpl:11
 	if cfg.AllowRegistration {
-//line auth/auth.qtpl:13
+//line auth/auth.qtpl:11
 		qw422016.N().S(`
 		<form class="modal" method="post" action="/register?`)
-//line auth/auth.qtpl:14
+//line auth/auth.qtpl:12
 		qw422016.E().S(rq.URL.RawQuery)
-//line auth/auth.qtpl:14
+//line auth/auth.qtpl:12
 		qw422016.N().S(`" id="register-form" enctype="multipart/form-data" autocomplete="off">
 			<fieldset class="modal__fieldset">
 				<legend class="modal__title">`)
-//line auth/auth.qtpl:16
+//line auth/auth.qtpl:14
 		qw422016.E().S(lc.Get("auth.register_header", &l18n.Replacements{"name": cfg.WikiName}))
-//line auth/auth.qtpl:16
+//line auth/auth.qtpl:14
 		qw422016.N().S(`</legend>
 
 				<label for="register-form__username">`)
-//line auth/auth.qtpl:18
+//line auth/auth.qtpl:16
 		qw422016.E().S(lc.Get("auth.username"))
-//line auth/auth.qtpl:18
+//line auth/auth.qtpl:16
 		qw422016.N().S(`</label>
 				<br>
 				<input type="text" required autofocus id="login-form__username" name="username">
 				<br>
 				<label for="login-form__password">`)
-//line auth/auth.qtpl:22
+//line auth/auth.qtpl:20
 		qw422016.E().S(lc.Get("auth.password"))
-//line auth/auth.qtpl:22
+//line auth/auth.qtpl:20
 		qw422016.N().S(`</label>
 				<br>
 				<input type="password" required name="password">
 				<p>`)
-//line auth/auth.qtpl:25
+//line auth/auth.qtpl:23
 		qw422016.E().S(lc.Get("auth.password_tip"))
-//line auth/auth.qtpl:25
+//line auth/auth.qtpl:23
 		qw422016.N().S(`</p>
 				<p>`)
-//line auth/auth.qtpl:26
+//line auth/auth.qtpl:24
 		qw422016.E().S(lc.Get("auth.cookie_tip"))
-//line auth/auth.qtpl:26
+//line auth/auth.qtpl:24
 		qw422016.N().S(`</p>
 				<button class="btn" type="submit" value="Register">`)
-//line auth/auth.qtpl:27
+//line auth/auth.qtpl:25
 		qw422016.E().S(lc.Get("auth.register_button"))
-//line auth/auth.qtpl:27
+//line auth/auth.qtpl:25
 		qw422016.N().S(`</button>
 				<a class="btn btn_weak" href="/`)
-//line auth/auth.qtpl:28
+//line auth/auth.qtpl:26
 		qw422016.E().S(rq.URL.RawQuery)
-//line auth/auth.qtpl:28
+//line auth/auth.qtpl:26
 		qw422016.N().S(`">`)
-//line auth/auth.qtpl:28
+//line auth/auth.qtpl:26
 		qw422016.E().S(lc.Get("ui.cancel"))
-//line auth/auth.qtpl:28
+//line auth/auth.qtpl:26
 		qw422016.N().S(`</a>
 			</fieldset>
 		</form>
 		`)
-//line auth/auth.qtpl:31
+//line auth/auth.qtpl:29
 		streamtelegramWidget(qw422016, lc)
-//line auth/auth.qtpl:31
+//line auth/auth.qtpl:29
 		qw422016.N().S(`
 	`)
-//line auth/auth.qtpl:32
+//line auth/auth.qtpl:30
 	} else if cfg.UseAuth {
-//line auth/auth.qtpl:32
+//line auth/auth.qtpl:30
 		qw422016.N().S(`
 		<p>`)
-//line auth/auth.qtpl:33
+//line auth/auth.qtpl:31
 		qw422016.E().S(lc.Get("auth.noregister"))
-//line auth/auth.qtpl:33
+//line auth/auth.qtpl:31
 		qw422016.N().S(`</p>
 		<p><a href="/`)
-//line auth/auth.qtpl:34
+//line auth/auth.qtpl:32
 		qw422016.E().S(rq.URL.RawQuery)
-//line auth/auth.qtpl:34
+//line auth/auth.qtpl:32
 		qw422016.N().S(`">← `)
-//line auth/auth.qtpl:34
+//line auth/auth.qtpl:32
 		qw422016.E().S(lc.Get("auth.go_back"))
-//line auth/auth.qtpl:34
+//line auth/auth.qtpl:32
 		qw422016.N().S(`</a></p>
 	`)
-//line auth/auth.qtpl:35
+//line auth/auth.qtpl:33
 	} else {
-//line auth/auth.qtpl:35
+//line auth/auth.qtpl:33
 		qw422016.N().S(`
 		<p>`)
-//line auth/auth.qtpl:36
+//line auth/auth.qtpl:34
 		qw422016.E().S(lc.Get("auth.noauth"))
-//line auth/auth.qtpl:36
+//line auth/auth.qtpl:34
 		qw422016.N().S(`</p>
 		<p><a href="/`)
-//line auth/auth.qtpl:37
+//line auth/auth.qtpl:35
 		qw422016.E().S(rq.URL.RawQuery)
-//line auth/auth.qtpl:37
+//line auth/auth.qtpl:35
 		qw422016.N().S(`">← `)
-//line auth/auth.qtpl:37
+//line auth/auth.qtpl:35
 		qw422016.E().S(lc.Get("auth.go_back"))
-//line auth/auth.qtpl:37
+//line auth/auth.qtpl:35
 		qw422016.N().S(`</a></p>
 	`)
-//line auth/auth.qtpl:38
+//line auth/auth.qtpl:36
 	}
-//line auth/auth.qtpl:38
+//line auth/auth.qtpl:36
 	qw422016.N().S(`
 	</section>
 </main>
 `)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 }
 
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 func WriteRegister(qq422016 qtio422016.Writer, rq *http.Request) {
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	StreamRegister(qw422016, rq)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 }
 
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 func Register(rq *http.Request) string {
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	WriteRegister(qb422016, rq)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 	return qs422016
-//line auth/auth.qtpl:41
+//line auth/auth.qtpl:39
 }
 
-//line auth/auth.qtpl:43
+//line auth/auth.qtpl:41
 func StreamLogin(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:43
+//line auth/auth.qtpl:41
 	qw422016.N().S(`
 <main class="main-width">
 	<section>
 	`)
-//line auth/auth.qtpl:46
+//line auth/auth.qtpl:44
 	if cfg.UseAuth {
-//line auth/auth.qtpl:46
+//line auth/auth.qtpl:44
 		qw422016.N().S(`
 		<form class="modal" method="post" action="/login" id="login-form" enctype="multipart/form-data" autocomplete="on">
 			<fieldset class="modal__fieldset">
 				<legend class="modal__title">`)
-//line auth/auth.qtpl:49
+//line auth/auth.qtpl:47
 		qw422016.E().S(lc.Get("auth.login_header", &l18n.Replacements{"name": cfg.WikiName}))
-//line auth/auth.qtpl:49
+//line auth/auth.qtpl:47
 		qw422016.N().S(`</legend>
 				<label for="login-form__username">`)
-//line auth/auth.qtpl:50
+//line auth/auth.qtpl:48
 		qw422016.E().S(lc.Get("auth.username"))
-//line auth/auth.qtpl:50
+//line auth/auth.qtpl:48
 		qw422016.N().S(`</label>
 				<br>
 				<input type="text" required autofocus id="login-form__username" name="username" autocomplete="username">
 				<br>
 				<label for="login-form__password">`)
-//line auth/auth.qtpl:54
+//line auth/auth.qtpl:52
 		qw422016.E().S(lc.Get("auth.password"))
-//line auth/auth.qtpl:54
+//line auth/auth.qtpl:52
 		qw422016.N().S(`</label>
 				<br>
 				<input type="password" required name="password" autocomplete="current-password">
 				<p>`)
-//line auth/auth.qtpl:57
+//line auth/auth.qtpl:55
 		qw422016.E().S(lc.Get("auth.cookie_tip"))
-//line auth/auth.qtpl:57
+//line auth/auth.qtpl:55
 		qw422016.N().S(`</p>
 				<button class="btn" type="submit" value="Log in">`)
-//line auth/auth.qtpl:58
+//line auth/auth.qtpl:56
 		qw422016.E().S(lc.Get("auth.login_button"))
-//line auth/auth.qtpl:58
+//line auth/auth.qtpl:56
 		qw422016.N().S(`</button>
 				<a class="btn btn_weak" href="/">`)
-//line auth/auth.qtpl:59
+//line auth/auth.qtpl:57
 		qw422016.E().S(lc.Get("ui.cancel"))
-//line auth/auth.qtpl:59
+//line auth/auth.qtpl:57
 		qw422016.N().S(`</a>
 			</fieldset>
 		</form>
 		`)
-//line auth/auth.qtpl:62
+//line auth/auth.qtpl:60
 		streamtelegramWidget(qw422016, lc)
-//line auth/auth.qtpl:62
+//line auth/auth.qtpl:60
 		qw422016.N().S(`
 	`)
-//line auth/auth.qtpl:63
+//line auth/auth.qtpl:61
 	} else {
-//line auth/auth.qtpl:63
+//line auth/auth.qtpl:61
 		qw422016.N().S(`
 		<p>`)
-//line auth/auth.qtpl:64
+//line auth/auth.qtpl:62
 		qw422016.E().S(lc.Get("auth.noauth"))
-//line auth/auth.qtpl:64
+//line auth/auth.qtpl:62
 		qw422016.N().S(`</p>
 		<p><a class="btn btn_weak" href="/">← `)
-//line auth/auth.qtpl:65
+//line auth/auth.qtpl:63
 		qw422016.E().S(lc.Get("auth.go_home"))
-//line auth/auth.qtpl:65
+//line auth/auth.qtpl:63
 		qw422016.N().S(`</a></p>
 	`)
-//line auth/auth.qtpl:66
+//line auth/auth.qtpl:64
 	}
-//line auth/auth.qtpl:66
+//line auth/auth.qtpl:64
 	qw422016.N().S(`
 	</section>
 </main>
 `)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 }
 
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 func WriteLogin(qq422016 qtio422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	StreamLogin(qw422016, lc)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 }
 
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 func Login(lc *l18n.Localizer) string {
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	WriteLogin(qb422016, lc)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 	return qs422016
-//line auth/auth.qtpl:69
+//line auth/auth.qtpl:67
 }
 
 // Telegram auth widget was requested by Yogurt. As you can see, we don't offer user administrators control over it. Of course we don't.
 
-//line auth/auth.qtpl:72
+//line auth/auth.qtpl:70
 func streamtelegramWidget(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:72
+//line auth/auth.qtpl:70
 	qw422016.N().S(`
 `)
-//line auth/auth.qtpl:73
+//line auth/auth.qtpl:71
 	if cfg.TelegramEnabled {
-//line auth/auth.qtpl:73
+//line auth/auth.qtpl:71
 		qw422016.N().S(`
 <p class="telegram-notice">`)
-//line auth/auth.qtpl:74
+//line auth/auth.qtpl:72
 		qw422016.E().S(lc.Get("auth.telegram_tip"))
-//line auth/auth.qtpl:74
+//line auth/auth.qtpl:72
 		qw422016.N().S(`</p>
 <script async src="https://telegram.org/js/telegram-widget.js?15" data-telegram-login="`)
-//line auth/auth.qtpl:75
+//line auth/auth.qtpl:73
 		qw422016.E().S(cfg.TelegramBotName)
-//line auth/auth.qtpl:75
+//line auth/auth.qtpl:73
 		qw422016.N().S(`" data-size="medium" data-userpic="false" data-auth-url="`)
-//line auth/auth.qtpl:75
+//line auth/auth.qtpl:73
 		qw422016.E().S(cfg.URL)
-//line auth/auth.qtpl:75
+//line auth/auth.qtpl:73
 		qw422016.N().S(`/telegram-login"></script>
 `)
-//line auth/auth.qtpl:76
+//line auth/auth.qtpl:74
 	}
-//line auth/auth.qtpl:76
+//line auth/auth.qtpl:74
 	qw422016.N().S(`
 `)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 }
 
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 func writetelegramWidget(qq422016 qtio422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	streamtelegramWidget(qw422016, lc)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 }
 
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 func telegramWidget(lc *l18n.Localizer) string {
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	writetelegramWidget(qb422016, lc)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 	return qs422016
-//line auth/auth.qtpl:77
+//line auth/auth.qtpl:75
 }
 
-//line auth/auth.qtpl:79
+//line auth/auth.qtpl:77
 func StreamLoginError(qw422016 *qt422016.Writer, err string, lc *l18n.Localizer) {
-//line auth/auth.qtpl:79
+//line auth/auth.qtpl:77
 	qw422016.N().S(`
 <main class="main-width">
 	<section>
 	`)
-//line auth/auth.qtpl:82
+//line auth/auth.qtpl:80
 	switch err {
-//line auth/auth.qtpl:83
+//line auth/auth.qtpl:81
 	case "unknown username":
+//line auth/auth.qtpl:81
+		qw422016.N().S(`
+		<p class="error">`)
+//line auth/auth.qtpl:82
+		qw422016.E().S(lc.Get("auth.error_username"))
+//line auth/auth.qtpl:82
+		qw422016.N().S(`</p>
+	`)
+//line auth/auth.qtpl:83
+	case "wrong password":
 //line auth/auth.qtpl:83
 		qw422016.N().S(`
 		<p class="error">`)
 //line auth/auth.qtpl:84
-		qw422016.E().S(lc.Get("auth.error_username"))
+		qw422016.E().S(lc.Get("auth.error_password"))
 //line auth/auth.qtpl:84
 		qw422016.N().S(`</p>
 	`)
 //line auth/auth.qtpl:85
-	case "wrong password":
+	default:
 //line auth/auth.qtpl:85
 		qw422016.N().S(`
 		<p class="error">`)
 //line auth/auth.qtpl:86
-		qw422016.E().S(lc.Get("auth.error_password"))
+		qw422016.E().S(err)
 //line auth/auth.qtpl:86
 		qw422016.N().S(`</p>
 	`)
 //line auth/auth.qtpl:87
-	default:
-//line auth/auth.qtpl:87
-		qw422016.N().S(`
-		<p class="error">`)
-//line auth/auth.qtpl:88
-		qw422016.E().S(err)
-//line auth/auth.qtpl:88
-		qw422016.N().S(`</p>
-	`)
-//line auth/auth.qtpl:89
 	}
-//line auth/auth.qtpl:89
+//line auth/auth.qtpl:87
 	qw422016.N().S(`
 		<p><a href="/login">← `)
-//line auth/auth.qtpl:90
+//line auth/auth.qtpl:88
 	qw422016.E().S(lc.Get("auth.try_again"))
-//line auth/auth.qtpl:90
+//line auth/auth.qtpl:88
 	qw422016.N().S(`</a></p>
 	</section>
 </main>
 `)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 }
 
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 func WriteLoginError(qq422016 qtio422016.Writer, err string, lc *l18n.Localizer) {
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	StreamLoginError(qw422016, err, lc)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 }
 
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 func LoginError(err string, lc *l18n.Localizer) string {
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	WriteLoginError(qb422016, err, lc)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 	return qs422016
-//line auth/auth.qtpl:93
+//line auth/auth.qtpl:91
 }
 
-//line auth/auth.qtpl:95
+//line auth/auth.qtpl:93
 func StreamLogout(qw422016 *qt422016.Writer, can bool, lc *l18n.Localizer) {
-//line auth/auth.qtpl:95
+//line auth/auth.qtpl:93
 	qw422016.N().S(`
 <main class="main-width">
 	<section>
 	`)
-//line auth/auth.qtpl:98
+//line auth/auth.qtpl:96
 	if can {
-//line auth/auth.qtpl:98
+//line auth/auth.qtpl:96
 		qw422016.N().S(`
 		<h1>`)
-//line auth/auth.qtpl:99
+//line auth/auth.qtpl:97
 		qw422016.E().S(lc.Get("auth.logout_header"))
-//line auth/auth.qtpl:99
+//line auth/auth.qtpl:97
 		qw422016.N().S(`</h1>
 		<form method="POST" action="/logout">
 			<input class="btn btn_accent" type="submit" value="`)
-//line auth/auth.qtpl:101
+//line auth/auth.qtpl:99
 		qw422016.E().S(lc.Get("auth.logout_button"))
-//line auth/auth.qtpl:101
+//line auth/auth.qtpl:99
 		qw422016.N().S(`"/>
 			<a class="btn btn_weak" href="/">`)
-//line auth/auth.qtpl:102
+//line auth/auth.qtpl:100
 		qw422016.E().S(lc.Get("auth.go_home"))
-//line auth/auth.qtpl:102
+//line auth/auth.qtpl:100
 		qw422016.N().S(`</a>
 		</form>
 	`)
-//line auth/auth.qtpl:104
+//line auth/auth.qtpl:102
 	} else {
-//line auth/auth.qtpl:104
+//line auth/auth.qtpl:102
 		qw422016.N().S(`
 		<p>`)
-//line auth/auth.qtpl:105
+//line auth/auth.qtpl:103
 		qw422016.E().S(lc.Get("auth.logout_anon"))
-//line auth/auth.qtpl:105
+//line auth/auth.qtpl:103
 		qw422016.N().S(`</p>
 		<p><a href="/login">`)
-//line auth/auth.qtpl:106
+//line auth/auth.qtpl:104
 		qw422016.E().S(lc.Get("auth.login_title"))
-//line auth/auth.qtpl:106
+//line auth/auth.qtpl:104
 		qw422016.N().S(`</a></p>
 		<p><a href="/">← `)
-//line auth/auth.qtpl:107
+//line auth/auth.qtpl:105
 		qw422016.E().S(lc.Get("auth.go_home"))
-//line auth/auth.qtpl:107
+//line auth/auth.qtpl:105
 		qw422016.N().S(`</a></p>
 	`)
-//line auth/auth.qtpl:108
+//line auth/auth.qtpl:106
 	}
-//line auth/auth.qtpl:108
+//line auth/auth.qtpl:106
 	qw422016.N().S(`
 	</section>
 </main>
 `)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 }
 
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 func WriteLogout(qq422016 qtio422016.Writer, can bool, lc *l18n.Localizer) {
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	StreamLogout(qw422016, can, lc)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 }
 
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 func Logout(can bool, lc *l18n.Localizer) string {
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	WriteLogout(qb422016, can, lc)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 	return qs422016
-//line auth/auth.qtpl:111
+//line auth/auth.qtpl:109
 }
 
-//line auth/auth.qtpl:113
+//line auth/auth.qtpl:111
 func StreamLock(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:113
+//line auth/auth.qtpl:111
 	qw422016.N().S(`
 <!doctype html>
 <html>
@@ -524,9 +518,9 @@ func StreamLock(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
 	<meta charset="utf-8">
 	<meta name="viewport" content="width=device-width, initial-scale=1">
 	<title>🔒 `)
-//line auth/auth.qtpl:119
+//line auth/auth.qtpl:117
 	qw422016.E().S(lc.Get("auth.lock_title"))
-//line auth/auth.qtpl:119
+//line auth/auth.qtpl:117
 	qw422016.N().S(`</title>
 	<link rel="shortcut icon" href="/static/favicon.ico">
 	<link rel="stylesheet" href="/static/style.css">
@@ -536,270 +530,68 @@ func StreamLock(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
 		<section class="locked-notice__message">
 			<p class="locked-notice__lock">🔒</p>
 			<h1 class="locked-notice__title">`)
-//line auth/auth.qtpl:127
+//line auth/auth.qtpl:125
 	qw422016.E().S(lc.Get("auth.lock_title"))
-//line auth/auth.qtpl:127
+//line auth/auth.qtpl:125
 	qw422016.N().S(`</h1>
 			<form class="locked-notice__login-form" method="post" action="/login" id="login-form" enctype="multipart/form-data" autocomplete="on">
 				<label for="login-form__username">`)
-//line auth/auth.qtpl:129
+//line auth/auth.qtpl:127
 	qw422016.E().S(lc.Get("auth.username"))
-//line auth/auth.qtpl:129
+//line auth/auth.qtpl:127
 	qw422016.N().S(`</label>
 				<br>
 				<input type="text" required autofocus id="login-form__username" name="username" autocomplete="username">
 				<br>
 				<label for="login-form__password">`)
-//line auth/auth.qtpl:133
+//line auth/auth.qtpl:131
 	qw422016.E().S(lc.Get("auth.password"))
-//line auth/auth.qtpl:133
+//line auth/auth.qtpl:131
 	qw422016.N().S(`</label>
 				<br>
 				<input type="password" required name="password" autocomplete="current-password">
 				<br>
 				<button class="btn" type="submit" value="Log in">`)
-//line auth/auth.qtpl:137
+//line auth/auth.qtpl:135
 	qw422016.E().S(lc.Get("auth.login_button"))
-//line auth/auth.qtpl:137
+//line auth/auth.qtpl:135
 	qw422016.N().S(`</button>
 			</form>
 			`)
-//line auth/auth.qtpl:139
+//line auth/auth.qtpl:137
 	streamtelegramWidget(qw422016, lc)
-//line auth/auth.qtpl:139
+//line auth/auth.qtpl:137
 	qw422016.N().S(`
 		</section>
 	</main>
 </body>
 </html>
 `)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 }
 
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 func WriteLock(qq422016 qtio422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	StreamLock(qw422016, lc)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 }
 
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 func Lock(lc *l18n.Localizer) string {
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	WriteLock(qb422016, lc)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:144
+//line auth/auth.qtpl:142
 	return qs422016
-//line auth/auth.qtpl:144
-}
-
-//line auth/auth.qtpl:147
-var userListL10n = map[string]L10nEntry{
-	"heading":        En("List of users").Ru("Список пользователей"),
-	"administrators": En("Administrators").Ru("Администраторы"),
-	"moderators":     En("Moderators").Ru("Модераторы"),
-	"editors":        En("Editors").Ru("Редакторы"),
-	"readers":        En("Readers").Ru("Читатели"),
-}
-
-//line auth/auth.qtpl:156
-func StreamUserList(qw422016 *qt422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:156
-	qw422016.N().S(`
-<main class="main-width user-list">
-`)
-//line auth/auth.qtpl:159
-	var get = func(key string) string {
-		return userListL10n[key].Get(lc.Locale)
-	}
-
-	var (
-		admins     = make([]string, 0)
-		moderators = make([]string, 0)
-		editors    = make([]string, 0)
-		readers    = make([]string, 0)
-	)
-	for u := range user.YieldUsers() {
-		switch u.Group {
-		// What if we place the users into sorted slices?
-		case "admin":
-			admins = append(admins, u.Name)
-		case "moderator":
-			moderators = append(moderators, u.Name)
-		case "editor", "trusted":
-			editors = append(editors, u.Name)
-		case "reader":
-			readers = append(readers, u.Name)
-		}
-	}
-	sort.Strings(admins)
-	sort.Strings(moderators)
-	sort.Strings(editors)
-	sort.Strings(readers)
-
-//line auth/auth.qtpl:186
-	qw422016.N().S(`
-	<h1>`)
-//line auth/auth.qtpl:187
-	qw422016.E().S(get("heading"))
-//line auth/auth.qtpl:187
-	qw422016.N().S(`</h1>
-	<section>
-		<h2>`)
-//line auth/auth.qtpl:189
-	qw422016.E().S(get("administrators"))
-//line auth/auth.qtpl:189
-	qw422016.N().S(`</h2>
-		<ol>`)
-//line auth/auth.qtpl:190
-	for _, name := range admins {
-//line auth/auth.qtpl:190
-		qw422016.N().S(`
-			<li><a href="/hypha/`)
-//line auth/auth.qtpl:191
-		qw422016.E().S(cfg.UserHypha)
-//line auth/auth.qtpl:191
-		qw422016.N().S(`/`)
-//line auth/auth.qtpl:191
-		qw422016.E().S(name)
-//line auth/auth.qtpl:191
-		qw422016.N().S(`">`)
-//line auth/auth.qtpl:191
-		qw422016.E().S(name)
-//line auth/auth.qtpl:191
-		qw422016.N().S(`</a></li>
-		`)
-//line auth/auth.qtpl:192
-	}
-//line auth/auth.qtpl:192
-	qw422016.N().S(`</ol>
-	</section>
-	<section>
-		<h2>`)
-//line auth/auth.qtpl:195
-	qw422016.E().S(get("moderators"))
-//line auth/auth.qtpl:195
-	qw422016.N().S(`</h2>
-		<ol>`)
-//line auth/auth.qtpl:196
-	for _, name := range moderators {
-//line auth/auth.qtpl:196
-		qw422016.N().S(`
-			<li><a href="/hypha/`)
-//line auth/auth.qtpl:197
-		qw422016.E().S(cfg.UserHypha)
-//line auth/auth.qtpl:197
-		qw422016.N().S(`/`)
-//line auth/auth.qtpl:197
-		qw422016.E().S(name)
-//line auth/auth.qtpl:197
-		qw422016.N().S(`">`)
-//line auth/auth.qtpl:197
-		qw422016.E().S(name)
-//line auth/auth.qtpl:197
-		qw422016.N().S(`</a></li>
-		`)
-//line auth/auth.qtpl:198
-	}
-//line auth/auth.qtpl:198
-	qw422016.N().S(`</ol>
-	</section>
-	<section>
-		<h2>`)
-//line auth/auth.qtpl:201
-	qw422016.E().S(get("editors"))
-//line auth/auth.qtpl:201
-	qw422016.N().S(`</h2>
-		<ol>`)
-//line auth/auth.qtpl:202
-	for _, name := range editors {
-//line auth/auth.qtpl:202
-		qw422016.N().S(`
-			<li><a href="/hypha/`)
-//line auth/auth.qtpl:203
-		qw422016.E().S(cfg.UserHypha)
-//line auth/auth.qtpl:203
-		qw422016.N().S(`/`)
-//line auth/auth.qtpl:203
-		qw422016.E().S(name)
-//line auth/auth.qtpl:203
-		qw422016.N().S(`">`)
-//line auth/auth.qtpl:203
-		qw422016.E().S(name)
-//line auth/auth.qtpl:203
-		qw422016.N().S(`</a></li>
-		`)
-//line auth/auth.qtpl:204
-	}
-//line auth/auth.qtpl:204
-	qw422016.N().S(`</ol>
-	</section>
-	<section>
-		<h2>`)
-//line auth/auth.qtpl:207
-	qw422016.E().S(get("readers"))
-//line auth/auth.qtpl:207
-	qw422016.N().S(`</h2>
-		<ol>`)
-//line auth/auth.qtpl:208
-	for _, name := range readers {
-//line auth/auth.qtpl:208
-		qw422016.N().S(`
-			<li><a href="/hypha/`)
-//line auth/auth.qtpl:209
-		qw422016.E().S(cfg.UserHypha)
-//line auth/auth.qtpl:209
-		qw422016.N().S(`/`)
-//line auth/auth.qtpl:209
-		qw422016.E().S(name)
-//line auth/auth.qtpl:209
-		qw422016.N().S(`">`)
-//line auth/auth.qtpl:209
-		qw422016.E().S(name)
-//line auth/auth.qtpl:209
-		qw422016.N().S(`</a></li>
-		`)
-//line auth/auth.qtpl:210
-	}
-//line auth/auth.qtpl:210
-	qw422016.N().S(`</ol>
-	</section>
-</main>
-`)
-//line auth/auth.qtpl:213
-}
-
-//line auth/auth.qtpl:213
-func WriteUserList(qq422016 qtio422016.Writer, lc *l18n.Localizer) {
-//line auth/auth.qtpl:213
-	qw422016 := qt422016.AcquireWriter(qq422016)
-//line auth/auth.qtpl:213
-	StreamUserList(qw422016, lc)
-//line auth/auth.qtpl:213
-	qt422016.ReleaseWriter(qw422016)
-//line auth/auth.qtpl:213
-}
-
-//line auth/auth.qtpl:213
-func UserList(lc *l18n.Localizer) string {
-//line auth/auth.qtpl:213
-	qb422016 := qt422016.AcquireByteBuffer()
-//line auth/auth.qtpl:213
-	WriteUserList(qb422016, lc)
-//line auth/auth.qtpl:213
-	qs422016 := string(qb422016.B)
-//line auth/auth.qtpl:213
-	qt422016.ReleaseByteBuffer(qb422016)
-//line auth/auth.qtpl:213
-	return qs422016
-//line auth/auth.qtpl:213
+//line auth/auth.qtpl:142
 }
diff --git a/user/users.go b/user/users.go
index 41f4135..d2ca5ef 100644
--- a/user/users.go
+++ b/user/users.go
@@ -1,6 +1,9 @@
 package user
 
-import "sync"
+import (
+	"sort"
+	"sync"
+)
 
 var users sync.Map
 var tokens sync.Map
@@ -99,3 +102,24 @@ func terminateSession(token string) {
 	tokens.Delete(token)
 	dumpTokens()
 }
+
+func UsersInGroups() (admins []string, moderators []string, editors []string, readers []string) {
+	for u := range YieldUsers() {
+		switch u.Group {
+		// What if we place the users into sorted slices?
+		case "admin":
+			admins = append(admins, u.Name)
+		case "moderator":
+			moderators = append(moderators, u.Name)
+		case "editor", "trusted":
+			editors = append(editors, u.Name)
+		case "reader":
+			readers = append(readers, u.Name)
+		}
+	}
+	sort.Strings(admins)
+	sort.Strings(moderators)
+	sort.Strings(editors)
+	sort.Strings(readers)
+	return
+}
diff --git a/web/pages.go b/web/pages.go
index a2f08ba..e360895 100644
--- a/web/pages.go
+++ b/web/pages.go
@@ -8,7 +8,7 @@ import (
 //go:embed views/*.html
 var fs embed.FS
 
-var pageOrphans, pageBacklinks *newtmpl.Page
+var pageOrphans, pageBacklinks, pageUserList *newtmpl.Page
 
 func initPages() {
 	pageOrphans = newtmpl.NewPage(fs, "views/orphans.html", map[string]string{
@@ -20,4 +20,11 @@ func initPages() {
 		"backlinks to link": `Обратные ссылки на <a href="/hypha/{{.}}">{{beautifulName .}}</a>`,
 		"description":       `Ниже перечислены гифы, на которых есть ссылка на эту гифу, трансклюзия этой гифы или эта гифа вставлена как изображение.`,
 	})
+	pageUserList = newtmpl.NewPage(fs, "views/user-list.html", map[string]string{
+		"title":          "Список пользователей",
+		"administrators": "Администраторы",
+		"moderators":     "Модераторы",
+		"editors":        "Редакторы",
+		"readers":        "Читатели",
+	})
 }
diff --git a/web/views/user-list.html b/web/views/user-list.html
new file mode 100644
index 0000000..1ae4984
--- /dev/null
+++ b/web/views/user-list.html
@@ -0,0 +1,30 @@
+{{define "title"}}List of users{{end}}
+{{define "body"}}
+	<main class="main-width user-list">
+		<h1>{{template "title"}}</h1>
+		<section>{{$u := .UserHypha}}
+			<h2>{{block "administrators" .}}Administrators{{end}}</h2>
+			<ol>
+				{{range .Admins}}<li><a href="/hypha/{{$u}}/{{.}}">{{.}}</a></li>{{end}}
+			</ol>
+		</section>
+		<section>
+			<h2>{{block "moderators" .}}Moderators{{end}}</h2>
+			<ol>
+	            {{range .Moderators}}<li><a href="/hypha/{{$u}}/{{.}}">{{.}}</a></li>{{end}}
+			</ol>
+		</section>
+		<section>
+			<h2>{{block "editors" .}}Editors{{end}}</h2>
+			<ol>
+	            {{range .Editors}}<li><a href="/hypha/{{$u}}/{{.}}">{{.}}</a></li>{{end}}
+			</ol>
+		</section>
+		<section>
+			<h2>{{block "readers" .}}Readers{{end}}</h2>
+			<ol>
+	            {{range .Readers}}<li><a href="/hypha/{{$u}}/{{.}}">{{.}}</a></li>{{end}}
+			</ol>
+		</section>
+	</main>
+	{{end}}
\ No newline at end of file
diff --git a/web/web.go b/web/web.go
index b4d31e1..c18b379 100644
--- a/web/web.go
+++ b/web/web.go
@@ -126,10 +126,14 @@ func groupMiddleware(group string) func(http.Handler) http.Handler {
 
 // Auth
 func handlerUserList(w http.ResponseWriter, rq *http.Request) {
-	lc := l18n.FromRequest(rq)
-	w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
-	w.WriteHeader(http.StatusOK)
-	w.Write([]byte(viewutil.Base(viewutil.MetaFrom(w, rq), lc.Get("ui.users_title"), auth.UserList(lc), map[string]string{})))
+	admins, moderators, editors, readers := user.UsersInGroups()
+	_ = pageUserList.RenderTo(viewutil.MetaFrom(w, rq),
+		map[string]any{
+			"Admins":     admins,
+			"Moderators": moderators,
+			"Editors":    editors,
+			"Readers":    readers,
+		})
 }
 
 func handlerLock(w http.ResponseWriter, rq *http.Request) {