401 when access control is enabled

Summary

We see a spike of 401 errors for GitLab Pages when authentication is enabled.

Internal reports:

• https://gitlab.slack.com/archives/C0609EXHX6F/p1718804067108369
• https://gitlab.slack.com/archives/C1BSEQ138/p1718804384228199

(I'll also post a debug recording as a confidential comment)

Workaround

• Delete the cookies for the page that shows 401
• Or wait for 15 min (default cookie expiration)

Possible fixes