I've finished implementing password protection in the git repository. This is how the submit form looks:
http://www.thregr.org/~wavexx/tmp/pass_sub.png and how the ticket is presented when the user clicks on it: http://www.thregr.org/~wavexx/tmp/pass_req.png When the ticket is generated, the password is still shown in clear text. Clicking on "send via email" includes the password in the message. After that though, only the hash is stored and the password is not shown in the listing. Administrators can't download the ticket without the password, but they can purge it.
