I am using sidekiq in my rails application. By Default, Sidekiq can be accessed

Question

0

Asked: June 14, 20262026-06-14T10:04:02+00:00 2026-06-14T10:04:02+00:00

I am using sidekiq in my rails application. By Default, Sidekiq can be accessed

0

I am using sidekiq in my rails application.
By Default, Sidekiq can be accessed by anybody by appending “/sidekiq” after the url.
I want to password protect / authenticate only the sidekiq part. How can i do that?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-14T10:04:03+00:00

Put the following into your sidekiq initializer

require 'sidekiq'
require 'sidekiq/web'

Sidekiq::Web.use(Rack::Auth::Basic) do |user, password|
  # Protect against timing attacks:
  # - See https://codahale.com/a-lesson-in-timing-attacks/
  # - See https://thisdata.com/blog/timing-attacks-against-string-comparison/
  # - Use & (do not use &&) so that it doesn't short circuit.
  # - Use digests to stop length information leaking
  Rack::Utils.secure_compare(::Digest::SHA256.hexdigest(user), ::Digest::SHA256.hexdigest(ENV["SIDEKIQ_USER"])) &
  Rack::Utils.secure_compare(::Digest::SHA256.hexdigest(password), ::Digest::SHA256.hexdigest(ENV["SIDEKIQ_PASSWORD"]))
end

And in the routes file:

mount Sidekiq::Web => '/sidekiq'

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am using sidekiq in my rails application. By Default, Sidekiq can be accessed

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply