I have a modular sinatra app with this in the configuration:
configure do disable :protection use Rack::Protection enable :sessions
