User defaults for different authentication sources

Is it possible to somehow configure different default settings for users coming from different authentication sources?

My use case: I want to use Gitea in my organization. I have added an LDAP authentication source for internal users, that should be able to create organizations, repositories and so on. At the same time, I want to allow standard registrations for external users, which should only have access to repositories and organizations that they get invited to by internal users.

Currently, using


makes external users restricted, but keeps LDAP users not restricted, which is good. Unfortunately, restricted users can still create repositories and organizations.


also removes this ability from all users, not only external ones.
Furthermore, using


affects all users.

Basically, I am looking for a way to automatically handle restriction regarding repo and org creation between different user groups (internal and external). It is not really feasible to configure the default for one of the two groups and manually change the values for each new user of the other group.