website: format docs with prettier (#2833)

* run prettier

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add scim to comparison

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

website/docs/outposts/index.md

@@ -10,15 +10,15 @@ Upon creation, a service account and a token is generated. The service account o
 
 authentik can manage the deployment, updating and general lifecycle of an Outpost. To communicate with the underlying platforms on which the outpost is deployed, authentik has several built-in integrations.
 
-- If you've deployed authentik on docker-compose, authentik automatically creates an integration for the local docker socket (See [Docker](./integrations/docker.md)).
-- If you've deployed authentik on Kubernetes, with `kubernetesIntegration` set to true (default), authentik automatically creates an integrations for the local Kubernetes Cluster (See [Kubernetes](./integrations/kubernetes.md)).
+-   If you've deployed authentik on docker-compose, authentik automatically creates an integration for the local docker socket (See [Docker](./integrations/docker.md)).
+-   If you've deployed authentik on Kubernetes, with `kubernetesIntegration` set to true (default), authentik automatically creates an integrations for the local Kubernetes Cluster (See [Kubernetes](./integrations/kubernetes.md)).
 
 To deploy an outpost with these integrations, simply select them during the creation of an Outpost. A background task is started, which creates the container/deployment. You can see that Status on the System Tasks page.
 
 To deploy an outpost manually, see:
 
-- [Kubernetes](./manual-deploy-kubernetes.md)
-- [docker-compose](./manual-deploy-docker-compose.md)
+-   [Kubernetes](./manual-deploy-kubernetes.md)
+-   [docker-compose](./manual-deploy-docker-compose.md)
 
 ## Configuration
 

website/docs/outposts/integrations/docker.md

@@ -8,37 +8,37 @@ This integration has the advantage over manual deployments of automatic updates
 
 The following outpost settings are used:
 
-- `object_naming_template`: Configures how the container is called
-- `container_image`: Optionally overwrites the standard container image (see [Configuration](../../installation/configuration.md) to configure the global default)
-- `docker_network`: The docker network the container should be added to. This needs to be modified if you plan to connect to authentik using the internal hostname.
-- `docker_map_ports`: Enable/disable the mapping of ports. When using a proxy outpost with traefik for example, you might not want to bind ports as they are routed through traefik.
-- `docker_labels`: Optional additional labels that can be applied to the container.
+-   `object_naming_template`: Configures how the container is called
+-   `container_image`: Optionally overwrites the standard container image (see [Configuration](../../installation/configuration.md) to configure the global default)
+-   `docker_network`: The docker network the container should be added to. This needs to be modified if you plan to connect to authentik using the internal hostname.
+-   `docker_map_ports`: Enable/disable the mapping of ports. When using a proxy outpost with traefik for example, you might not want to bind ports as they are routed through traefik.
+-   `docker_labels`: Optional additional labels that can be applied to the container.
 
 The container is created with the following hardcoded properties:
 
-- Labels
+-   Labels
 
-    - `io.goauthentik.outpost-uuid`: Used by authentik to identify the container, and to allow for name changes.
+    -   `io.goauthentik.outpost-uuid`: Used by authentik to identify the container, and to allow for name changes.
 
     Additionally, the proxy outposts have the following extra labels to add themselves into traefik automatically.
 
-    - `traefik.enable`: "true"
-    - `traefik.http.routers.ak-outpost-<outpost-name>-router.rule`: `Host(...)`
-    - `traefik.http.routers.ak-outpost-<outpost-name>-router.service`: `ak-outpost-<outpost-name>-service`
-    - `traefik.http.routers.ak-outpost-<outpost-name>-router.tls`: "true"
-    - `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.healthcheck.path`: "/outpost.goauthentik.io/ping"
-    - `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.healthcheck.port`: "9300"
-    - `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.server.port`: "9000"
+    -   `traefik.enable`: "true"
+    -   `traefik.http.routers.ak-outpost-<outpost-name>-router.rule`: `Host(...)`
+    -   `traefik.http.routers.ak-outpost-<outpost-name>-router.service`: `ak-outpost-<outpost-name>-service`
+    -   `traefik.http.routers.ak-outpost-<outpost-name>-router.tls`: "true"
+    -   `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.healthcheck.path`: "/outpost.goauthentik.io/ping"
+    -   `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.healthcheck.port`: "9300"
+    -   `traefik.http.services.ak-outpost-<outpost-name>-service.loadbalancer.server.port`: "9000"
 
 ## Permissions
 
 To minimise the potential risks of mapping the docker socket into a container/giving an application access to the docker API, many people use Projects like [docker-socket-proxy](https://github.com/Tecnativa/docker-socket-proxy). authentik requires these permissions from the docker API:
 
-- Images/Pull: authentik tries to pre-pull the custom image if one is configured, otherwise falling back to the default image.
-- Containers/Read: Gather infos about currently running container
-- Containers/Create: Create new containers
-- Containers/Kill: Cleanup during upgrades
-- Containers/Remove: Removal of outposts
+-   Images/Pull: authentik tries to pre-pull the custom image if one is configured, otherwise falling back to the default image.
+-   Containers/Read: Gather infos about currently running container
+-   Containers/Create: Create new containers
+-   Containers/Kill: Cleanup during upgrades
+-   Containers/Remove: Removal of outposts
 
 ## Remote hosts (TLS)
 
@@ -46,10 +46,10 @@ To connect remote hosts, you can follow this Guide from Docker [Use TLS (HTTPS)
 
 Afterwards, create two Certificate-keypairs in authentik:
 
-- `Docker CA`, with the contents of `~/.docker/ca.pem` as Certificate
-- `Docker Cert`, with the contents of `~/.docker/cert.pem` as Certificate and `~/.docker/key.pem` as Private key.
+-   `Docker CA`, with the contents of `~/.docker/ca.pem` as Certificate
+-   `Docker Cert`, with the contents of `~/.docker/cert.pem` as Certificate and `~/.docker/key.pem` as Private key.
 
-Create an integration with `Docker CA` as *TLS Verification Certificate* and `Docker Cert` as *TLS Authentication Certificate*.
+Create an integration with `Docker CA` as _TLS Verification Certificate_ and `Docker Cert` as _TLS Authentication Certificate_.
 
 ## Remote hosts (SSH)
 
@@ -65,10 +65,10 @@ openssl req -x509 -sha256 -nodes -days 365 -out certificate.pem -key authentik
 
 You'll end up with three files:
 
-- `authentik.pub` is the public key, this should be added to the `~/.ssh/authorized_keys` file on the target host and user.
-- `authentik` is the private key, which should be imported into a Keypair in authentik.
-- `certificate.pem` is the matching certificate for the keypair above.
+-   `authentik.pub` is the public key, this should be added to the `~/.ssh/authorized_keys` file on the target host and user.
+-   `authentik` is the private key, which should be imported into a Keypair in authentik.
+-   `certificate.pem` is the matching certificate for the keypair above.
 
-Modify/create a new Docker integration, and set your *Docker URL* to `ssh://hostname`, and select the keypair you created above as *TLS Authentication Certificate/SSH Keypair*.
+Modify/create a new Docker integration, and set your _Docker URL_ to `ssh://hostname`, and select the keypair you created above as _TLS Authentication Certificate/SSH Keypair_.
 
-The *Docker URL* field include a user, if none is specified authentik connects with the user `authentik`.
+The _Docker URL_ field include a user, if none is specified authentik connects with the user `authentik`.

website/docs/outposts/integrations/kubernetes.md

@@ -8,30 +8,30 @@ This integration has the advantage over manual deployments of automatic updates
 
 This integration creates the following objects:
 
-- Deployment for the outpost container
-- Service
-- Secret to store the token
-- Prometheus ServiceMonitor (if the Prometheus Operator is installed in the target cluster)
-- Ingress (only Proxy outposts)
-- Traefik Middleware (only Proxy outposts with forward auth enabled)
+-   Deployment for the outpost container
+-   Service
+-   Secret to store the token
+-   Prometheus ServiceMonitor (if the Prometheus Operator is installed in the target cluster)
+-   Ingress (only Proxy outposts)
+-   Traefik Middleware (only Proxy outposts with forward auth enabled)
 
 The following outpost settings are used:
 
-- `object_naming_template`: Configures how the container is called
-- `container_image`: Optionally overwrites the standard container image (see [Configuration](../../installation/configuration.md) to configure the global default)
-- `kubernetes_replicas`: Replica count for the deployment of the outpost
-- `kubernetes_namespace`: Namespace to deploy in, defaults to the same namespace authentik is deployed in (if available)
-- `kubernetes_ingress_annotations`: Any additional annotations to add to the ingress object, for example cert-manager
-- `kubernetes_ingress_secret_name`: Name of the secret that is used for TLS connections
-- `kubernetes_service_type`: Service kind created, can be set to LoadBalancer for LDAP outposts for example
-- `kubernetes_disabled_components`: Disable any components of the kubernetes integration, can be any of
-    - 'secret'
-    - 'deployment'
-    - 'service'
-    - 'prometheus servicemonitor'
-    - 'ingress'
-    - 'traefik middleware'
-- `kubernetes_image_pull_secrets`: If the above docker image is in a private repository, use these secrets to pull.
+-   `object_naming_template`: Configures how the container is called
+-   `container_image`: Optionally overwrites the standard container image (see [Configuration](../../installation/configuration.md) to configure the global default)
+-   `kubernetes_replicas`: Replica count for the deployment of the outpost
+-   `kubernetes_namespace`: Namespace to deploy in, defaults to the same namespace authentik is deployed in (if available)
+-   `kubernetes_ingress_annotations`: Any additional annotations to add to the ingress object, for example cert-manager
+-   `kubernetes_ingress_secret_name`: Name of the secret that is used for TLS connections
+-   `kubernetes_service_type`: Service kind created, can be set to LoadBalancer for LDAP outposts for example
+-   `kubernetes_disabled_components`: Disable any components of the kubernetes integration, can be any of
+    -   'secret'
+    -   'deployment'
+    -   'service'
+    -   'prometheus servicemonitor'
+    -   'ingress'
+    -   'traefik middleware'
+-   `kubernetes_image_pull_secrets`: If the above docker image is in a private repository, use these secrets to pull.
 
     NOTE: The secret must be created manually in the namespace first.
 

website/docs/outposts/manual-deploy-docker-compose.md

@@ -12,25 +12,25 @@ You can also run the outpost in a separate docker-compose project, you just have
 version: "3.5"
 
 services:
-  authentik_proxy:
-    image: ghcr.io/goauthentik/proxy
-    # Optionally specify which networks the container should be
-    # might be needed to reach the core authentik server
-    # networks:
-    #   - foo
-    ports:
-      - 4180:4180
-      - 4443:4443
-      # Starting in authentik 2021.9, use the ports below
-      # - 9000:9000
-      # - 9443:9443
-    environment:
-      AUTHENTIK_HOST: https://your-authentik.tld
-      AUTHENTIK_INSECURE: "false"
-      AUTHENTIK_TOKEN: token-generated-by-authentik
-      # Starting with 2021.9, you can optionally set this too
-      # when authentik_host for internal communication doesn't match the public URL
-      # AUTHENTIK_HOST_BROWSER: https://external-domain.tld
+    authentik_proxy:
+        image: ghcr.io/goauthentik/proxy
+        # Optionally specify which networks the container should be
+        # might be needed to reach the core authentik server
+        # networks:
+        #   - foo
+        ports:
+            - 4180:4180
+            - 4443:4443
+            # Starting in authentik 2021.9, use the ports below
+            # - 9000:9000
+            # - 9443:9443
+        environment:
+            AUTHENTIK_HOST: https://your-authentik.tld
+            AUTHENTIK_INSECURE: "false"
+            AUTHENTIK_TOKEN: token-generated-by-authentik
+            # Starting with 2021.9, you can optionally set this too
+            # when authentik_host for internal communication doesn't match the public URL
+            # AUTHENTIK_HOST_BROWSER: https://external-domain.tld
 ```
 
 ### LDAP outpost
@@ -39,17 +39,17 @@ services:
 version: "3.5"
 
 services:
-  authentik_ldap:
-    image: ghcr.io/goauthentik/ldap
-    # Optionally specify which networks the container should be
-    # might be needed to reach the core authentik server
-    # networks:
-    #   - foo
-    ports:
-      - 389:3389
-      - 636:6636
-    environment:
-      AUTHENTIK_HOST: https://your-authentik.tld
-      AUTHENTIK_INSECURE: "false"
-      AUTHENTIK_TOKEN: token-generated-by-authentik
+    authentik_ldap:
+        image: ghcr.io/goauthentik/ldap
+        # Optionally specify which networks the container should be
+        # might be needed to reach the core authentik server
+        # networks:
+        #   - foo
+        ports:
+            - 389:3389
+            - 636:6636
+        environment:
+            AUTHENTIK_HOST: https://your-authentik.tld
+            AUTHENTIK_INSECURE: "false"
+            AUTHENTIK_TOKEN: token-generated-by-authentik
 ```