There was a previous thread where an Admin suggested OAuth or OpenID were bad ideas to authenticate before submitting a ticket. I work for a small business that doesn't have an Active Directory or LDAP server to authenticate against. I had considered making my OSTicket server only accessible locally, but I have a dozen telecommuters all across the country. We use gmail for business, so it would be nice to have a front page on OSTicket site that requested their email and password and authenticated before they can submit a ticket. That way, OSticket can be WAN accessible, but can't be spammed by random rogue tickets.
