website/docs: update airgapped config (#9049)

* website/docs: update airgapped config

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix immich urls

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

website/docs/installation/air-gapped.md

@@ -1,39 +0,0 @@
----
-title: Air-gapped environments
----
-
-## Outbound connections
-
-By default, authentik creates outbound connections to the following URLs:
-
--   https://version.goauthentik.io: Periodic update check
--   https://goauthentik.io: Anonymous analytics on startup
--   https://secure.gravatar.com: Avatars for users
--   https://authentik.error-reporting.a7k.io: Error reporting
-
-To disable these outbound connections, set the following in your `.env` file:
-
-```
-AUTHENTIK_DISABLE_UPDATE_CHECK=true
-AUTHENTIK_ERROR_REPORTING__ENABLED=false
-AUTHENTIK_DISABLE_STARTUP_ANALYTICS=true
-AUTHENTIK_AVATARS=initials
-```
-
-For a Helm-based install, set the following in your values.yaml file:
-
-```yaml
-authentik:
-    avatars: none
-    error_reporting:
-        enabled: false
-    disable_update_check: true
-    disable_startup_analytics: true
-```
-
-## Container images
-
-Container images can be pulled from the following URLs:
-
--   ghcr.io/goauthentik/server (https://ghcr.io)
--   beryju/authentik (https://index.docker.io)

website/docs/installation/air-gapped.mdx

@@ -0,0 +1,68 @@
+---
+title: Air-gapped environments
+---
+
+## Outbound connections
+
+By default, authentik creates outbound connections to the following URLs:
+
+-   https://version.goauthentik.io: Periodic update check
+-   https://goauthentik.io: Anonymous analytics on startup
+-   https://secure.gravatar.com: Avatars for users
+-   https://authentik.error-reporting.a7k.io: Error reporting
+
+To disable these outbound connections, set the following in your `.env` file:
+
+## Configuration options
+
+To see a list of all configuration options, see [here](./configuration.mdx).
+
+import Tabs from "@theme/Tabs";
+import TabItem from "@theme/TabItem";
+
+<Tabs
+  defaultValue="docker-compose"
+  values={[
+    {label: 'docker-compose', value: 'docker-compose'},
+    {label: 'Kubernetes', value: 'kubernetes'},
+  ]}>
+  <TabItem value="docker-compose">
+Add the following block to your `.env` file:
+
+```shell
+AUTHENTIK_DISABLE_STARTUP_ANALYTICS=true
+AUTHENTIK_DISABLE_UPDATE_CHECK=true
+AUTHENTIK_ERROR_REPORTING__ENABLED=false
+```
+
+Afterwards, run the upgrade commands from the latest release notes.
+
+  </TabItem>
+  <TabItem value="kubernetes">
+Add the following block to your `values.yml` file:
+
+```yaml
+authentik:
+    error_reporting:
+        enabled: false
+    disable_update_check: true
+    disable_startup_analytics: true
+```
+
+Afterwards, run the upgrade commands from the latest release notes.
+
+  </TabItem>
+</Tabs>
+
+## Settings
+
+In addition to the configuration options above, the following [System settings](../core/settings.md) need to also be adjusted:
+
+-   **Avatars**: By default this setting uses [Gravatar](https://secure.gravatar.com/). The option can be set to a combination of any of the other options, for example `initials`
+
+## Container images
+
+Container images can be pulled from the following URLs:
+
+-   ghcr.io/goauthentik/server (https://ghcr.io)
+-   beryju/authentik (https://index.docker.io)

website/integrations/services/immich/index.md

@@ -32,7 +32,10 @@ The following placeholders will be used:
     - **Redirect URIs/Origins (RegEx)**:
       :::note
       Please note that the following URIs are just examples. Be sure to include all of the domains / URLs that you will use to access Immich.
-      ::: - app.immich:/ - https://immich.company/auth/login - https://immich.company/user-settings
+      :::
+        - app.immich:/
+        - https://immich.company/auth/login
+        - https://immich.company/user-settings
     - **Signing Key**: authentik Self-signed Certificate
     - Leave everything else as default
 2. Open the new provider you've just created.