I will do this in March/April if I have time.
Several people have requested authentication via LDAP. Inevitably people will request authentication by PAM, Kerberos, MySQL, SASL, CAS, etc.
The simple and universal solution is to allow the use of HTTP authentication. This leverages the fact that all major web servers support pluggable authentication. For example, Apache has many mod_auth_* modules.
The existing method would still be the default and HTTP authentication would be for "advanced" sysadmins.
This will simplify configuration and prevent the explosion of code that would be required to support more than one form of authentication.
Support for LDAP authentication is scheduled for version 1.2, although it can be extended to other authentication methods as well. Using HTTP authentication as a universal solution seems a good idea. I'm taking note of it for future consideration.
Regards,
Michał