Hi all; I've written this patch sometimes ago that add path authentification to _rewrite handler :
http://github.com/benoitc/couchdb/commit/9c15cf8ed710db3805bd1a7d792ba53457cb9c48 So if you have a rule : { "from": "/somepath", "to": "/path", "roles": ["_admin", "somerole"] } It will test user roles against this patch and allow the use to see the result only if he's authorized. It handle only roles for now, but adding usernames could be easy too. Do you think It worth to make it upstream ? (ie commit it in trunk) Let me know. - benoƮt
