The HZDR GitLab integrates with the Helmholtz AAI using OpenID Connect.
Therefore, the variable gitlab_rails['omniauth_providers'] is
configured in /etc/gitlab/gitlab.rb.
Depending on your requirements you might want users who sign in via the
Helmholtz AAI to become
external users
by default.
This option is configurable in /etc/gitlab/gitlab.rb as well.