Redmine

Sudo mode was implemented in #19851 to protect sensitive administrative actions by requiring users to re-enter their password, reducing the impact of hijacked or unattended sessions.

It is currently disabled by default and not exposed in the administration UI, so administrators are unlikely to discover it unless they read config/configuration.yml.example.

Given the increasing importance of secure defaults, I think sudo mode should be enabled by default. Services such as GitHub already require reauthentication for sensitive actions by default, so quite a few users are likely familiar with this security flow.

Installations that do not want this behavior could still opt out with sudo_mode: false in configuration.yml.