Functioning principles
Threads
Comment threads are identified by the URL path of the commentable page and an ID.
When the thread for a specific path is requested, it is created if it does not exist.
Admin/moderation
The admin is authenticated via HTTP basic auth.
Comments can be unapproved, deleted and purged by the admin.
The admin can be notified of new comments via email.
Comments
Comments can be posted either via an AJAX request or a POSTed form data.
On creation, a comment yields an update_key that can be used for later modification or deletion.
Deleted comments are just “marked as” deleted, and only the admin can purge (ie actually remove from the DB) comments.