You can clone with
HTTPS or Subversion.
Implement support for signed tokens that can be verified using a secret key instead of looking in a central database. Good for scalability and limiting memory usage, but bad because can't invalidate tokens on the server side.
Added support for signature based tokens #6. (WIP)