vhost general access rule
Given a vhost, it would be nice to have an optional general access rule that would be checked before any other access rule.
For example, let a vhost test.example.com, instead of access rules /admin/ => $authLevel >= 5 && $groups =~ /\badmin\b/ /secret/ => $authLevel >= 5 && $groups =~ /\bsu\b/ default => $authLevel >= 5
it would be more legible (and easier to manage) to have general => $authLevel >= 5 as general access rule, and /admin/ => $groups =~ /\badmin\b/ /secret/ => $groups =~ /\bsu\b/ default => accept
Of course, this general access would not be checked when skipping access control (with keyword 'skip'). But it would with 'unprotect'.
About manager, I think the general access rule should be defined in vhost options.