GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.

hashed password stored in database even when LDAP authentication is used

When logging in via LDAP for the first time, a hashed version of the user's password is stored in the database. This is not required and should be avoided, to minimise the risk of leaking sensitive data.

Admin message

hashed password stored in database even when LDAP authentication is used