website/integrations: standardize resource sections and update template (#20423)

Standardize resource sections and update template Co-authored-by: Dominic R <dominic@sdko.org>
2026-06-17 19:09:11 +03:00 · 2026-02-24 02:27:37 +00:00
parent 089cc011f1
commit a49764dee0
23 changed files with 23 additions and 23 deletions
@@ -141,7 +141,7 @@ ChatGPT only enables the **Manage SSO** wizard after you verify ownership of you

 To verify that authentik is correctly integrated with ChatGPT, log out, then attempt to log back in by entering your email address and clicking **Continue**. You should be redirected to authentik and upon a successful login, redirected back to ChatGPT.

-## References
+## Resources

 - [OpenAI Help - Configuring SSO for ChatGPT](https://help.openai.com/en/articles/9534785-configuring-sso-for-chatgpt)
 - [OpenAI Help - SSO for ChatGPT Business - FAQ](https://help.openai.com/en/articles/11489188-sso-for-chatgpt-business-faq)
@@ -115,6 +115,6 @@ LOCAL_AUTH_ENABLED="false"

 To confirm that authentik is properly configured with Joplin Server, log out of Joplin and then attempt to sign in again. The login page should redirect you to authentik; after a successful authentik login you should be returned to Joplin with access to your notes.

-## References
+## Resources

 - [Joplin Server – SAML configuration](https://joplinapp.org/help/apps/server/saml/)
@@ -68,7 +68,7 @@ OIDC_SECURITY_ASSUME_EMAIL_IS_VERIFIED=true

 Restart mastodon-web.service

-## Additional Resources
+## Resources

 - https://github.com/mastodon/mastodon/pull/16221
 - https://forum.fedimins.net/t/sso-fuer-verschiedene-dienste/42
@@ -68,6 +68,6 @@ config :ueberauth, Ueberauth.Strategy.Keycloak.OAuth,

 Restart mobilizon.service

-## Additional Resources
+## Resources

 - https://docs.mobilizon.org/3.%20System%20administration/configure/auth/#oauth
@@ -126,7 +126,7 @@ With this setup, Dovecot can also be used with other email clients that support

 To verify that authentik is correctly integrated with Roundcube, first log out of Roundcube. Log in to roundcube using authentik credentials. A mailbox should open and you should be able to send and receive mail.

-## References
+## Resources

 - [Roundcube documentation - Configuration: OAuth2](https://github.com/roundcube/roundcubemail/wiki/Configuration:-OAuth2)
 - [Dovecot documentation - Open Authentication v2.0 Database](https://doc.dovecot.org/main/core/config/auth/databases/oauth2.html)
@@ -99,6 +99,6 @@ If your usernames in authentik and WriteFreely are different, you might need to

 To link the accounts, first log into Writefreely with local credentials, and then navigate to **Customize -->Account Settings**. In the option "Linked Accounts", click on "authentik".

-## Additional Resources
+## Resources

 - https://writefreely.org/docs/latest/admin/config
@@ -82,7 +82,7 @@ The certificate file name must match the idp identifier name you set in the conf
 Remember to restart Zulip.
 :::

-## Additional Resources
+## Resources

 Please refer to the following for further information:

@@ -90,7 +90,7 @@ To support the integration of DigitalOcean with authentik, you need to create a
 3. Click **Edit**, expand **UI Settings**, and set **Launch URL** to the **SSO sign-in URL** copied from the DigitalOcean control panel.
 4. Click **Update**.

-## References
+## Resources

 - [DigitalOcean Documentation - How to Configure Single Sign-On for Teams](https://docs.digitalocean.com/platform/teams/how-to/configure-sso/)

@@ -61,7 +61,7 @@ To verify that authentik is properly integrated with OVHcloud, first log out of

 You’ll be redirected to your authentik instance to complete authentication. Once successful, you’ll be logged in to OVHcloud.

-## References
+## Resources

 - [OVHcloud Help Center - User management & Federation](https://help.ovhcloud.com/csm/en-ie-documentation-manage-operate-user-federation?id=kb_browse_cat&kb_id=3d4a8129a884a950f07829d7d5c75243&kb_category=21734cbe50d47d90476b12dfd60b3542&spa=1)
 - [OVHcloud US Help Center - User management & Federation](https://support.us.ovhcloud.com/hc/en-us/sections/27230986868883-Federation)
@@ -153,7 +153,7 @@ Configure Snipe-IT SAML settings by going to settings (the gear icon), and selec

 All other field can be left blank.

-## Additional Resources
+## Resources

 - https://snipe-it.readme.io/docs/ldap-sync-login
 - https://snipe-it.readme.io/docs/saml
@@ -76,7 +76,7 @@ OIDC_SCOPES="openid email profile"

 Then restart Arcane to apply the changes.

-## References
+## Resources

 - [Arcane Docs - OIDC Single Sign-On](https://getarcane.app/docs/configuration/sso)

@@ -104,7 +104,7 @@ Please note that by default, sssd returns all user accounts; active and disabled

 :::

-## Additional Resources
+## Resources

 The setup of sssd might vary based on Linux distribution and version; here are some resources that can help you get this set up:

@@ -85,6 +85,6 @@ To support the integration of TrueCommand with authentik, you need to create an
 - SAML Identity Provider URL: `Paste the Metadata URL from your clipboard.`
 - Click _Save_, then click _Configure_ again then select _Start the SAML service_, then click _Save_ to start the service.

-## Additional Resources
+## Resources

 - https://www.truenas.com/docs/truecommand/administration/settings/samlad/
@@ -69,6 +69,6 @@ To bypass SSO for troubleshooting, navigate to `https://audiobookshelf.company/l

 To confirm that authentik is properly configured with Audiobookshelf, log out and attempt to log back in using OpenID Connect. You should be redirected to authentik for authentication and then redirected back to Audiobookshelf.

-## References
+## Resources

 - [Audiobookshelf OIDC Authentication documentation](https://www.audiobookshelf.org/guides/oidc_authentication/)
@@ -101,6 +101,6 @@ If you're already signed in, go to **User Settings** > **Security** and click **

 To confirm that authentik is properly configured with ezBookkeeping, log out of ezBookkeeping, click **Log in with authentik**, and complete the authentik sign-in flow. A successful authentication should return you to ezBookkeeping with access to your account.

-## References
+## Resources

 - [ezBookkeeping Documentation - Configuration](https://ezbookkeeping.mayswind.net/configuration#authentication)
@@ -80,6 +80,6 @@ Click on the user whose role should be increased from **Pending** to at least **
 More details on how to administer Open WebUI can be found here: `https://docs.openwebui.com/`.
 :::

-## References
+## Resources

 - [Open WebUI Documentation - Federated Authentication Support](https://docs.openwebui.com/features/sso/)
@@ -67,6 +67,6 @@ To hide the local login form and show only SSO, set `PULSE_AUTH_HIDE_LOCAL_LOGIN

 To confirm that authentik is properly configured with Pulse, log out and attempt to log back in using Single Sign-On. You should be redirected to authentik for authentication and then redirected back to Pulse.

-## References
+## Resources

 - [Pulse OIDC Single Sign-On documentation](https://github.com/rcourtman/Pulse/blob/main/docs/OIDC.md)
@@ -139,7 +139,7 @@ If you encounter any issues:
 - Check the FortiGate logs for SAML-related errors
  :::

-## Additional Resources
+## Resources

 - [FortiGate SSLVPN Documentation](https://docs.fortinet.com/document/fortigate/7.2.8/administration-guide/397719/ssl-vpn)
 - [FortiGate SAML Configuration Guide](https://docs.fortinet.com/document/fortigate/7.2.8/administration-guide/954635/saml-sp)
@@ -66,7 +66,7 @@ If you are developing Drupal locally with DDEV and authentik is also running loc

 TODO

-## Additional Resources
+## Resources

 - [Drupal OpenID Connect Module Documentation](https://www.drupal.org/project/openid_connect)
 - [Drupal User Account Settings Documentation](https://www.drupal.org/docs/user_guide/en/user-registration.html)
@@ -184,7 +184,7 @@ New-MgDomainFederationConfiguration `

 To confirm that authentik is properly configured with Microsoft365, log out of your Microsoft account, then attempt to log back in by visiting [Microsoft 365 Portal](https://m365.cloud.microsoft/) and clicking **Sign In**. Enter an email address in your federated domain, then click **Next**. You should be redirected to authentik and, once authenticated, redirected back to Microsoft and logged in.

-## References
+## Resources

 - [Microsoft Learn - Use a SAML 2.0 Identity Provider for Single Sign On](https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-fed-saml-idp)
 - [Microsoft Graph PowerShell - Domain Federation Configuration](https://learn.microsoft.com/en-us/powershell/module/microsoft.graph.identity.directorymanagement/new-mgdomainfederationconfiguration)
@@ -252,7 +252,7 @@ Salesforce requires specific SCIM attributes that are not included in the defaul
 4. In the **Backchannel Providers** field, select the SCIM provider you created.
 5. Click **Update** to save the application.

-## References
+## Resources

 - [Salesforce Help - Configure SSO with Salesforce as a SAML Service Provider](https://help.salesforce.com/s/articleView?id=sf.sso_saml.htm&type=5)
 - [Salesforce Help - Just-in-Time SAML Assertion Fields for Salesforce](https://help.salesforce.com/s/articleView?id=sf.sso_jit_requirements.htm&type=5)
@@ -81,7 +81,7 @@ SSO_SIGNUPS_MATCH_EMAIL=true # Match first SSO login to existing account by emai

 Then restart Vaultwarden to apply the changes.

-## References
+## Resources

 - [Vaultwarden Wiki - SSO using OpenID Connect](https://github.com/dani-garcia/vaultwarden/wiki/Enabling-SSO-support-using-OpenId-Connect)

@@ -54,7 +54,7 @@ Template sentence that you can typically use here: "To confirm that authentik is

 If there are more specific validation methods for the Service (e.g., clicking a button), include these instructions for clarity.

-## References
+## Resources

 List the external sources (official docs, community articles, blogs, videos) that were used to create this guide.