In our organization we use mod_dav_svn and ldap auth to control access to the repositories. One annoying limitation is the inability to use ldap groups for the autz files. I would LOVE to see virtual acl management that allows me to say “this GROUP has READ/WRITE access” and have it transparently write out the permissions using the uid’s of the group members

I’ll look into this, someone already suggested group support for mod_dav_svn (using htpasswd, not LDAP).

anything that would render a [group] entry in the auhtz and the appropriate @group entry for a repo permission off an ldap group would make my day :)

We do LDAP authentication in our organization too (Active Directory mostly), and Warehouse would have to support some external authentication before I even suggest it to management.

I don’t know if this is a feature request or general question, but does Warehouse support local system authentication? Meaning via PAM versus an .htpasswd file.

This would allow us to configure PAM/Kerberos for the LDAP portion, and then just configure Warehouse for local authentication.