If subversion authorization file is used to restrict r and rw access to
secretive/ sensitive code, and this code is built using Hudson, Hudson users who
cannot access this code via subversion can access it using the project workspace
browser and even download the code.

Please allow workspace to be disabled. either per project level. or in total.
or add a workspace viewable option to the security module.

The security feature is a god send but unless the workspace issue is fixed it
cannot be used in a enterprise environment.

I'm begging all Hudson developers to fix this issue. It's an excellent
application and it would be a shame for it not to be used because of this
security risk.
related to 1287