Currently the repository pages are always public, which doesn't really make sense.
In our project for example, we'd like to generate a JavaDoc for the documentation, this however, always is HTML output and thus cannot be used on the Wiki.
Since the project is private, we cannot put it on the pages right now either as the whole world who know the url would be able to view the documentation.
It would make sense to be able to configure pages to be private, where the server would first check if the person who is trying to view the page is logged in, and if so, if he has the permissions to view the repository. This shouldn't be that hard to implement either as you could just create a wrapper for this, or use http headers for (token-based) authentication. (Just throwing some ideas)