4442972b06
GitLab already has its own session store, so this extra Sidekiq session is unnecessary. In addition, the GitLab session store properly sets the Secure flag, unlike the default Rack session. CSRF protection in the Sidekiq /admin page continues to work with the existing GitLab session. See https://github.com/mperham/sidekiq/pull/3183 for more details. Part of #49120
5 lines
94 B
YAML
5 lines
94 B
YAML
---
|
|
title: Disable the Sidekiq Admin Rack session
|
|
merge_request: 21441
|
|
author:
|
|
type: security
|