Mount and use the Secret for authenticating internal API calls
Summary
Although GitLab Shell is not required for a minimal GitLab instance to work, the underlying configuration of Puma uses its secret token to authenticate internal
API calls from other components, including Gitaly.
Success criteria
-
A new shared Secret must be specified or generated for internal API authentication. -
Puma mounts the Secret and references it in the Rails application configuration.