Right now ra_svn only supports the ANONYMOUS and EXTERNAL
authentication mechanisms. This is enough to be useful (you can use
ssh for developers and daemon mode for anonymous read access), but
integrating Cyrus SASL would give users a multitude of other options:
passwords at various levels of security, Kerberos, one-time passwords,
etc.. The protocol is already designed to support SASL; this would
just be implementation work.
This ties into issue 1143; with more possible authentication
mechanisms comes more opportunities for server configuration.
Improvement
Major