Password reset link should not appear in email when password authentication is disabled with LDAP

When Allow password authentication for the web interface is disabled and using LDAP, new user creation sends an email to the user to set up their password. However, the password reset link should not appear in this email since password authentication is disabled.

Expected behavior: The password reset link should not be included in the email when password authentication for the web interface is disabled.

Current behavior: The password reset link appears in the email even though password authentication is disabled.

The email that is sent:

Hi User!

The Administrator created an account for you. Now you are a member of the company GitLab application.

login.......................................... user@example.com

Click here to set your password (https://hostname/users/password/edit?reset_password_token=token)

This link is valid for 2 days. After it expires, you can request a new one (https://hostname/users/password/new?user_email=user@example.com) .

GitLab internal ZD

Edited Jan 15, 2026 by 🤖 GitLab Bot 🤖