diff --git a/.gitlab/CODEOWNERS b/.gitlab/CODEOWNERS
index 8bfa77a45570ac124c9de6fef0a75b04d0a35da4..b527eb5bf2644f0f673c7aafdbb49b638cd29836 100644
--- a/.gitlab/CODEOWNERS
+++ b/.gitlab/CODEOWNERS
@@ -804,249 +804,256 @@ lib/gitlab/checks/** @proglottis @toon @zj-gitlab
 /doc/user/workspace/index.md @fneill
 
 [Authentication and Authorization]
-/app/assets/javascripts/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/alerts_settings/graphql/mutations/reset_http_token.mutation.graphql @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/authentication/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/ide/components/shared/tokened_input.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/invite_members/components/members_token_select.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/packages_and_registries/package_registry/components/list/tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/admin/impersonation_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/groups/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/ldap/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/oauth/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/omniauth_callbacks/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/profiles/password_prompt/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/profiles/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/profiles/two_factor_auths/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/projects/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pages/sessions/new/oauth_remember_me.js @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pipelines/components/pipelines_list/tokens/constants.js @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_branch_name_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_source_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_status_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_tag_name_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/projects/settings/topics/components/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/related_issues/components/issue_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/runner/components/registration/registration_token.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/runner/components/registration/registration_token_reset_dropdown_item.vue @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/runner/components/search_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/token_access/components/ @gitlab-org/manage/authentication-and-authorization
-/app/assets/javascripts/token_access/index.js @gitlab-org/manage/authentication-and-authorization
-/app/assets/stylesheets/page_bundles/profile_two_factor_auth.scss @gitlab-org/manage/authentication-and-authorization
-/app/controllers/admin/impersonation_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/access_tokens_actions.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/authenticates_with_two_factor.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/authenticates_with_two_factor_for_admin_mode.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/enforces_admin_authentication.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/enforces_two_factor_authentication.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/oauth_applications.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/project_unauthorized.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/sessionless_authentication.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/snippet_authorizations.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/concerns/workhorse_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/groups/settings/access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/ldap/ @gitlab-org/manage/authentication-and-authorization
-/app/controllers/oauth/ @gitlab-org/manage/authentication-and-authorization
-/app/controllers/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/profiles/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/profiles/personal_access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/profiles/two_factor_auths_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/profiles/webauthn_registrations_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/controllers/projects/settings/access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization
-/app/finders/groups/projects_requiring_authorizations_refresh/ @gitlab-org/manage/authentication-and-authorization
-/app/finders/personal_access_tokens_finder.rb @gitlab-org/manage/authentication-and-authorization
-/app/helpers/access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization
-/app/helpers/auth_helper.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/authentication_event.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/concerns/admin_changed_password_notifier.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/concerns/mirror_authentication.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/concerns/select_for_project_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/concerns/token_authenticatable.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/concerns/token_authenticatable_strategies/ @gitlab-org/manage/authentication-and-authorization
-/app/models/oauth_access_grant.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/oauth_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/project_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/token_with_iv.rb @gitlab-org/manage/authentication-and-authorization
-/app/models/webauthn_registration.rb @gitlab-org/manage/authentication-and-authorization
-/app/policies/personal_access_token_policy.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/access_token_validation_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/auth/ @gitlab-org/manage/authentication-and-authorization
-/app/services/authorized_project_update/ @gitlab-org/manage/authentication-and-authorization
-/app/services/chat_names/authorize_user_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/services/projects/move_project_authorizations_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/resource_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/services/todos/destroy/unauthorized_features_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/users/authorized_build_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/users/authorized_create_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/users/refresh_authorized_projects_service.rb @gitlab-org/manage/authentication-and-authorization
-/app/services/webauthn/ @gitlab-org/manage/authentication-and-authorization
-/app/validators/json_schemas/cluster_agent_authorization_configuration.json @gitlab-org/manage/authentication-and-authorization
-/app/views/admin/application_settings/_external_authorization_service_form.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/admin/impersonation_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/views/authentication/ @gitlab-org/manage/authentication-and-authorization
-/app/views/ci/token_access/ @gitlab-org/manage/authentication-and-authorization
-/app/views/dashboard/projects/_zero_authorized_projects.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/password_change.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/password_change.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/password_change_by_admin.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/password_change_by_admin.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/reset_password_instructions.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/mailer/reset_password_instructions.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/passwords/ @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/shared/_omniauth_box.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/shared/_signup_omniauth_provider_list.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/shared/_signup_omniauth_providers.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/devise/shared/_signup_omniauth_providers_top.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/doorkeeper/authorizations/ @gitlab-org/manage/authentication-and-authorization
-/app/views/doorkeeper/authorized_applications/ @gitlab-org/manage/authentication-and-authorization
-/app/views/errors/omniauth_error.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/groups/settings/_resource_access_token_creation.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/groups/settings/_two_factor_auth.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/groups/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/views/layouts/oauth_error.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_about_to_expire_email.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_about_to_expire_email.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_created_email.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_created_email.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_expired_email.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/notify/access_token_expired_email.text.erb @gitlab-org/manage/authentication-and-authorization
-/app/views/profiles/passwords/ @gitlab-org/manage/authentication-and-authorization
-/app/views/profiles/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/views/profiles/two_factor_auths/ @gitlab-org/manage/authentication-and-authorization
-/app/views/projects/mirrors/_authentication_method.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/projects/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/views/shared/_no_password.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/shared/_two_factor_auth_recovery_settings_check.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/shared/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/views/shared/members/_two_factor_auth_badge.html.haml @gitlab-org/manage/authentication-and-authorization
-/app/views/shared/tokens/ @gitlab-org/manage/authentication-and-authorization
-/app/workers/authorized_keys_worker.rb @gitlab-org/manage/authentication-and-authorization
-/app/workers/authorized_project_update/ @gitlab-org/manage/authentication-and-authorization
-/app/workers/authorized_projects_worker.rb @gitlab-org/manage/authentication-and-authorization
-/app/workers/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/application_settings_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/async_only_project_authorizations_refresh.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/enforce_auth_checks_on_uploads.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/forti_authenticator.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/forti_token_cloud.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/groups_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/omniauth_login_minimal_scopes.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/projects_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/refresh_authorizations_via_affected_projects_on_group_membership.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/skip_group_share_unlink_auth_refresh.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/specialized_worker_for_group_lock_update_auth_recalculation.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/update_oauth_registration_flow.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/development/webauthn.yml @gitlab-org/manage/authentication-and-authorization
-/config/feature_flags/ops/block_password_auth_for_saml_users.yml @gitlab-org/manage/authentication-and-authorization
-/config/initializers/01_secret_token.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/devise_dynamic_password_length_validation.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/devise_password_length.rb.example @gitlab-org/manage/authentication-and-authorization
-/config/initializers/gitlab_shell_secret_token.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/omniauth.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/rails_host_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/rails_host_authorization_gitpod.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers/webauthn.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers_before_autoloader/100_patch_omniauth_oauth2.rb @gitlab-org/manage/authentication-and-authorization
-/config/initializers_before_autoloader/100_patch_omniauth_saml.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/audit_events/components/tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/audit_events/token_utils.js @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/groups/settings/components/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/pages/groups/omniauth_callbacks/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/pipelines/components/pipelines_list/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/requirements/components/tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/saml_providers/scim_token_service.js @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/saml_sso/components/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/assets/javascripts/vue_merge_request_widget/components/approvals/approvals_auth.vue @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/concerns/ee/authenticates_with_two_factor.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/concerns/ee/enforces_two_factor_authentication.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/concerns/saml_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/ee/ldap/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/ee/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/ee/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/groups/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/groups/scim_oauth_controller.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/oauth/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/controllers/omniauth_kerberos_spnego_controller.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/finders/auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/helpers/ee/access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/helpers/ee/auth_helper.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/helpers/ee/personal_access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/models/concerns/password_complexity.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/models/ee/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/models/ee/project_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/models/scim_oauth_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/serializers/scim_oauth_access_token_entity.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/services/ee/auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/services/ee/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/services/ee/resource_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/services/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/services/security/token_revocation_service.rb @gitlab-org/manage/authentication-and-authorization
-/ee/app/validators/password/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/admin/application_settings/_personal_access_token_expiration_policy.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/credentials_inventory_mailer/personal_access_token_revoked_email.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/credentials_inventory_mailer/personal_access_token_revoked_email.text.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/groups/_personal_access_token_expiration_policy.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/groups/sso/_authorize_pane.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/notify/policy_revoked_personal_access_tokens_email.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/notify/policy_revoked_personal_access_tokens_email.text.erb @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/oauth/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/shared/credentials_inventory/_personal_access_tokens.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/shared/credentials_inventory/_project_access_tokens.html.haml @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/shared/credentials_inventory/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/views/shared/credentials_inventory/project_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/workers/auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/app/workers/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization
-/ee/config/routes/oauth.rb @gitlab-org/manage/authentication-and-authorization
-/ee/lib/ee/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/lib/ee/gitlab/omniauth_initializer.rb @gitlab-org/manage/authentication-and-authorization
-/ee/lib/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/lib/gitlab/auth_logger.rb @gitlab-org/manage/authentication-and-authorization
-/ee/lib/gitlab/authority_analyzer.rb @gitlab-org/manage/authentication-and-authorization
-/ee/lib/gitlab/geo/oauth/ @gitlab-org/manage/authentication-and-authorization
-/ee/lib/gitlab/kerberos/ @gitlab-org/manage/authentication-and-authorization
-/ee/lib/omni_auth/ @gitlab-org/manage/authentication-and-authorization
-/ee/lib/system_check/geo/authorized_keys_check.rb @gitlab-org/manage/authentication-and-authorization
-/ee/lib/system_check/geo/authorized_keys_flag_check.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/ci/reset_token_result.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/impersonation_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/impersonation_token_with_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/personal_access_token_with_details.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/personal_access_token_with_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/resource_access_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/entities/resource_access_token_with_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/helpers/authentication.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/helpers/packages/basic_auth_helpers.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/personal_access_tokens.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/resource_access_tokens.rb @gitlab-org/manage/authentication-and-authorization
-/lib/api/support/token_with_expiration.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/api_authentication/ @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/auth.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/auth_logger.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/authorized_keys.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/background_migration/encrypt_static_object_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/background_migration/expire_o_auth_tokens.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/background_migration/migrate_u2f_webauthn.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/background_migration/update_users_where_two_factor_auth_required_from_group.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/chat_name_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/ci/pipeline/expression/token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/external_authorization/ @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/external_authorization.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/graphql/authorize/ @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/jwt_authenticatable.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/jwt_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/lfs_token.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/mail_room/ @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/omniauth_initializer.rb @gitlab-org/manage/authentication-and-authorization
-/lib/gitlab/project_authorizations.rb @gitlab-org/manage/authentication-and-authorization
-/lib/json_web_token/ @gitlab-org/manage/authentication-and-authorization
-/lib/omni_auth/ @gitlab-org/manage/authentication-and-authorization
-/lib/system_check/app/authorized_keys_permission_check.rb @gitlab-org/manage/authentication-and-authorization
-/lib/system_check/incoming_email/imap_authentication_check.rb @gitlab-org/manage/authentication-and-authorization
-/lib/tasks/gitlab/password.rake @gitlab-org/manage/authentication-and-authorization
-/lib/tasks/tokens.rake @gitlab-org/manage/authentication-and-authorization
+/app/assets/javascripts/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/alerts_settings/graphql/mutations/reset_http_token.mutation.graphql @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/authentication/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/ide/components/shared/tokened_input.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/invite_members/components/members_token_select.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/packages_and_registries/package_registry/components/list/tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/admin/impersonation_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/groups/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/ldap/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/oauth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/omniauth_callbacks/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/profiles/password_prompt/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/profiles/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/profiles/two_factor_auths/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/projects/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pages/sessions/new/oauth_remember_me.js @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pipelines/components/pipelines_list/tokens/constants.js @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_branch_name_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_source_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_status_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/pipelines/components/pipelines_list/tokens/pipeline_tag_name_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/projects/settings/topics/components/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/related_issues/components/issue_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/runner/components/registration/registration_token.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/runner/components/registration/registration_token_reset_dropdown_item.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/runner/components/search_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/token_access/components/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/javascripts/token_access/index.js @gitlab-org/manage/authentication-and-authorization/approvers
+/app/assets/stylesheets/page_bundles/profile_two_factor_auth.scss @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/admin/impersonation_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/access_tokens_actions.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/authenticates_with_two_factor.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/authenticates_with_two_factor_for_admin_mode.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/enforces_admin_authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/enforces_two_factor_authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/oauth_applications.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/project_unauthorized.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/sessionless_authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/snippet_authorizations.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/concerns/workhorse_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/groups/settings/access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/ldap/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/oauth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/profiles/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/profiles/personal_access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/profiles/two_factor_auths_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/profiles/webauthn_registrations_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/controllers/projects/settings/access_tokens_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/finders/groups/projects_requiring_authorizations_refresh/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/finders/personal_access_tokens_finder.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/helpers/access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/helpers/auth_helper.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/authentication_event.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/concerns/admin_changed_password_notifier.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/concerns/mirror_authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/concerns/select_for_project_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/concerns/token_authenticatable.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/concerns/token_authenticatable_strategies/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/oauth_access_grant.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/oauth_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/project_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/token_with_iv.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/models/webauthn_registration.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/policies/personal_access_token_policy.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/access_token_validation_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/authorized_project_update/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/chat_names/authorize_user_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/projects/move_project_authorizations_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/resource_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/todos/destroy/unauthorized_features_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/users/authorized_build_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/users/authorized_create_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/users/refresh_authorized_projects_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/services/webauthn/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/validators/json_schemas/cluster_agent_authorization_configuration.json @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/admin/application_settings/_external_authorization_service_form.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/admin/impersonation_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/authentication/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/ci/token_access/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/dashboard/projects/_zero_authorized_projects.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/password_change.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/password_change.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/password_change_by_admin.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/password_change_by_admin.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/reset_password_instructions.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/mailer/reset_password_instructions.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/passwords/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/shared/_omniauth_box.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/shared/_signup_omniauth_provider_list.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/shared/_signup_omniauth_providers.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/devise/shared/_signup_omniauth_providers_top.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/doorkeeper/authorizations/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/doorkeeper/authorized_applications/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/errors/omniauth_error.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/groups/settings/_resource_access_token_creation.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/groups/settings/_two_factor_auth.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/groups/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/layouts/oauth_error.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_about_to_expire_email.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_about_to_expire_email.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_created_email.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_created_email.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_expired_email.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/notify/access_token_expired_email.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/profiles/passwords/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/profiles/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/profiles/two_factor_auths/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/projects/mirrors/_authentication_method.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/projects/settings/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/shared/_no_password.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/shared/_two_factor_auth_recovery_settings_check.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/shared/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/shared/members/_two_factor_auth_badge.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/app/views/shared/tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/workers/authorized_keys_worker.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/workers/authorized_project_update/ @gitlab-org/manage/authentication-and-authorization/approvers
+/app/workers/authorized_projects_worker.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/app/workers/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/access_token_pagination.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/application_settings_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/enforce_auth_checks_on_uploads.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/forti_authenticator.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/forti_token_cloud.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/groups_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/pbkdf2_password_encryption.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/pbkdf2_password_encryption_write.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/projects_tokens_optional_encryption.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/skip_group_share_unlink_auth_refresh.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/specialized_worker_for_group_lock_update_auth_recalculation.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/update_oauth_registration_flow.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/development/webauthn.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/feature_flags/ops/block_password_auth_for_saml_users.yml @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/01_secret_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/devise_dynamic_password_length_validation.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/devise_password_length.rb.example @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/gitlab_shell_secret_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/omniauth.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/rails_host_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/rails_host_authorization_gitpod.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers/webauthn.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers_before_autoloader/100_patch_omniauth_oauth2.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/config/initializers_before_autoloader/100_patch_omniauth_saml.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/audit_events/components/tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/audit_events/token_utils.js @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/groups/settings/components/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/pages/admin/application_settings/general/components/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/pages/groups/omniauth_callbacks/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/pages/passwords/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/pages/profiles/passwords/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/password/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/pipelines/components/pipelines_list/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/requirements/components/tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/runner/components/search_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/saml_providers/scim_token_service.js @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/saml_sso/components/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/assets/javascripts/vue_merge_request_widget/components/approvals/approvals_auth.vue @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/concerns/ee/authenticates_with_two_factor.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/concerns/ee/enforces_two_factor_authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/concerns/saml_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/ee/ldap/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/ee/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/ee/passwords_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/groups/omniauth_callbacks_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/groups/scim_oauth_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/oauth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/controllers/omniauth_kerberos_spnego_controller.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/finders/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/helpers/ee/access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/helpers/ee/auth_helper.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/helpers/ee/personal_access_tokens_helper.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/models/concerns/password_complexity.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/models/ee/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/models/ee/project_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/models/scim_oauth_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/serializers/scim_oauth_access_token_entity.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/services/ee/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/services/ee/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/services/ee/resource_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/services/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/services/security/token_revocation_service.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/validators/password/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/admin/application_settings/_personal_access_token_expiration_policy.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/credentials_inventory_mailer/personal_access_token_revoked_email.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/credentials_inventory_mailer/personal_access_token_revoked_email.text.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/groups/_personal_access_token_expiration_policy.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/groups/sso/_authorize_pane.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/notify/policy_revoked_personal_access_tokens_email.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/notify/policy_revoked_personal_access_tokens_email.text.erb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/oauth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/shared/_password_requirements_list.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/shared/credentials_inventory/_personal_access_tokens.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/shared/credentials_inventory/_project_access_tokens.html.haml @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/shared/credentials_inventory/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/views/shared/credentials_inventory/project_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/workers/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/app/workers/personal_access_tokens/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/config/routes/oauth.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/ee/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/ee/gitlab/omniauth_initializer.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/gitlab/auth_logger.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/gitlab/authority_analyzer.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/gitlab/geo/oauth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/gitlab/kerberos/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/omni_auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/system_check/geo/authorized_keys_check.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/ee/lib/system_check/geo/authorized_keys_flag_check.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/ci/reset_token_result.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/impersonation_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/impersonation_token_with_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/personal_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/personal_access_token_with_details.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/personal_access_token_with_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/resource_access_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/entities/resource_access_token_with_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/helpers/authentication.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/helpers/packages/basic_auth_helpers.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/personal_access_tokens.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/resource_access_tokens.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/api/support/token_with_expiration.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/api_authentication/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/auth.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/auth_logger.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/authorized_keys.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/background_migration/encrypt_static_object_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/background_migration/expire_o_auth_tokens.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/background_migration/migrate_u2f_webauthn.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/background_migration/update_users_where_two_factor_auth_required_from_group.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/chat_name_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/ci/pipeline/expression/token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/external_authorization/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/external_authorization.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/grape_logging/loggers/token_logger.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/graphql/authorize/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/jwt_authenticatable.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/jwt_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/lfs_token.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/mail_room/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/omniauth_initializer.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/gitlab/project_authorizations.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/json_web_token/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/omni_auth/ @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/system_check/app/authorized_keys_permission_check.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/system_check/incoming_email/imap_authentication_check.rb @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/tasks/gitlab/password.rake @gitlab-org/manage/authentication-and-authorization/approvers
+/lib/tasks/tokens.rake @gitlab-org/manage/authentication-and-authorization/approvers
diff --git a/tooling/config/CODEOWNERS.yml b/tooling/config/CODEOWNERS.yml
index a8ae90437e24ac7c1b0a2a77a663424d5f3a9729..18f3abfc97b521f46dd3f2e6468436cc12c4a060 100644
--- a/tooling/config/CODEOWNERS.yml
+++ b/tooling/config/CODEOWNERS.yml
@@ -3,7 +3,7 @@
 # And paste the contents into .gitlab/CODEOWNERS
 
 '[Authentication and Authorization]':
-  '@gitlab-org/manage/authentication-and-authorization':
+  '@gitlab-org/manage/authentication-and-authorization/approvers':
     allow:
       keywords:
         - 'password'