coder · EdwardAngert · Jan 3, 2025 · Nov 14, 2024 · Nov 14, 2024 · Nov 14, 2024
diff --git a/docs/admin/external-auth.md b/docs/admin/external-auth.md
@@ -168,8 +168,7 @@ CODER_EXTERNAL_AUTH_0_REGEX=github\.company\.org
 
 ## JFrog Artifactory
 
-See [this](../admin/integrations/jfrog-artifactory.md) guide on instructions on
-how to set up for JFrog Artifactory.
+Visit the [JFrog Artifactory](../admin/integrations/jfrog-artifactory.md) guide for instructions on how to set up for JFrog Artifactory.
 
 ## Custom scopes
 
@@ -190,6 +189,16 @@ Multiple providers is an Enterprise and Premium feature.
 
 Below is an example configuration with multiple providers:
 
+<blockquote class="admonition warning">
+
+**Note:** To support regex matching for paths like `github\.com/org`, add the following `git config` line to the [Coder agent startup script](https://registry.terraform.io/providers/coder/coder/latest/docs/resources/agent#startup_script):
+
+```shell
+git config --global credential.useHttpPath true
+```
+
+</blockquote>
+
 ```env
 # Provider 1) github.com
 CODER_EXTERNAL_AUTH_0_ID=primary-github
@@ -208,11 +217,3 @@ CODER_EXTERNAL_AUTH_1_AUTH_URL="https://github.example.com/login/oauth/authorize
 CODER_EXTERNAL_AUTH_1_TOKEN_URL="https://github.example.com/login/oauth/access_token"
 CODER_EXTERNAL_AUTH_1_VALIDATE_URL="https://github.example.com/api/v3/user"
 ```
-
-To support regex matching for paths (e.g. `github\.com/org`), you'll need to add
-this to the
-[Coder agent startup script](https://registry.terraform.io/providers/coder/coder/latest/docs/resources/agent#startup_script):
-
-```shell
-git config --global credential.useHttpPath true
-```
diff --git a/docs/admin/integrations/island.md b/docs/admin/integrations/island.md
@@ -10,16 +10,15 @@ April 24, 2024
 
 ---
 
-[Island](https://www.island.io/) is an enterprise-grade browser, offering a
-Chromium-based experience similar to popular web browsers like Chrome and Edge.
-It includes built-in security features for corporate applications and data,
-aiming to bridge the gap between consumer-focused browsers and the security
-needs of the enterprise.
+[Island](https://www.island.io/) is an enterprise-grade browser, offering a Chromium-based experience
+similar to popular web browsers like Chrome and Edge. It includes built-in
+security features for corporate applications and data, aiming to bridge the gap
+between consumer-focused browsers and the security needs of the enterprise.
 
-Coder natively integrates with Island's feature set, which include data loss
-protection (DLP), application awareness, browser session recording, and single
-sign-on (SSO). This guide intends to document these feature categories and how
-they apply to your Coder deployment.
+Coder natively integrates with Island's feature set, which include data
+loss protection (DLP), application awareness, browser session recording, and
+single sign-on (SSO). This guide intends to document these feature categories
+and how they apply to your Coder deployment.
 
 ## General Configuration
 
@@ -33,90 +32,85 @@ creating browser policies.
 
 ## Advanced Data Loss Protection
 
-Integrate Island's advanced data loss prevention (DLP) capabilities with Coder's
-cloud development environment (CDE), enabling you to control the “last mile”
-between developers’ CDE and their local devices, ensuring that sensitive IP
-remains in your centralized environment.
+Integrate Island's advanced data loss prevention (DLP) capabilities with
+Coder's cloud development environment (CDE), enabling you to control the
+"last mile" between developers' CDE and their local devices,
+ensuring that sensitive IP remains in your centralized environment.
 
 ### Block cut, copy, paste, printing, screen share
 
-1. [Create a Data Sandbox Profile](https://documentation.island.io/docs/create-and-configure-a-data-sandbox-profile)
+1. [Create a Data Sandbox Profile](https://documentation.island.io/docs/create-and-configure-a-data-sandbox-profile).
 
 1. Configure the following actions to allow/block (based on your security
-   requirements):
+   requirements).
 
-- Screenshot and Screen Share
-- Printing
-- Save Page
-- Clipboard Limitations
+   - Screenshot and Screen Share
+   - Printing
+   - Save Page
+   - Clipboard Limitations
 
-1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   to apply the Data Sandbox Profile
+1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) to apply the Data Sandbox Profile.
 
-1. Define the Coder Application group as the Destination Object
+1. Define the Coder Application group as the Destination Object.
 
 1. Define the Data Sandbox Profile as the Action in the Last Mile Protection
-   section
+   section.
 
 ### Conditionally allow copy on Coder's CLI authentication page
 
-1. [Create a URL Object](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   with the following configuration:
+1. [Create a URL Object](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) with the following configuration.
 
-- **Include**
-- **URL type**: Wildcard
-- **URL address**: `coder.example.com/cli-auth`
-- **Casing**: Insensitive
+   - **Include**
+   - **URL type**: Wildcard
+   - **URL address**: `coder.example.com/cli-auth`
+   - **Casing**: Insensitive
 
-1. [Create a Data Sandbox Profile](https://documentation.island.io/docs/create-and-configure-a-data-sandbox-profile)
+1. [Create a Data Sandbox Profile](https://documentation.island.io/docs/create-and-configure-a-data-sandbox-profile).
 
-1. Configure action to allow copy/paste
+1. Configure action to allow copy/paste.
 
-1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   to apply the Data Sandbox Profile
+1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) to apply the Data Sandbox Profile.
 
-1. Define the URL Object you created as the Destination Object
+1. Define the URL Object you created as the Destination Object.
 
 1. Define the Data Sandbox Profile as the Action in the Last Mile Protection
-   section
+   section.
 
 ### Prevent file upload/download from the browser
 
-1. Create a Protection Profiles for both upload/download
+1. Create a Protection Profiles for both upload/download.
 
-- [Upload documentation](https://documentation.island.io/docs/create-and-configure-an-upload-protection-profile)
-- [Download documentation](https://documentation.island.io/v1/docs/en/create-and-configure-a-download-protection-profile)
+   - [Upload documentation](https://documentation.island.io/docs/create-and-configure-an-upload-protection-profile)
+   - [Download documentation](https://documentation.island.io/v1/docs/en/create-and-configure-a-download-protection-profile)
 
-1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   to apply the Protection Profiles
+1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) to apply the Protection Profiles.
 
-1. Define the Coder Application group as the Destination Object
+1. Define the Coder Application group as the Destination Object.
 
 1. Define the applicable Protection Profile as the Action in the Data Protection
-   section
+   section.
 
 ### Scan files for sensitive data
 
-1. [Create a Data Loss Prevention scanner](https://documentation.island.io/docs/create-a-data-loss-prevention-scanner)
+1. [Create a Data Loss Prevention scanner](https://documentation.island.io/docs/create-a-data-loss-prevention-scanner).
 
-1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   to apply the DLP Scanner
+1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) to apply the DLP Scanner.
 
-1. Define the Coder Application group as the Destination Object
+1. Define the Coder Application group as the Destination Object.
 
-1. Define the DLP Scanner as the Action in the Data Protection section
+1. Define the DLP Scanner as the Action in the Data Protection section.
 
 ## Application Awareness and Boundaries
 
 Ensure that Coder is only accessed through the Island browser, guaranteeing that
-your browser-level DLP policies are always enforced, and developers can’t
+your browser-level DLP policies are always enforced, and developers can't
 sidestep such policies simply by using another browser.
 
 ### Configure browser enforcement, conditional access policies
 
-1. Create a conditional access policy for your configured identity provider.
+Create a conditional access policy for your configured identity provider.
 
-> Note: the configured IdP must be the same for both Coder and Island
+Note that the configured IdP must be the same for both Coder and Island.
 
 - [Azure Active Directory/Entra ID](https://documentation.island.io/docs/configure-browser-enforcement-for-island-with-azure-ad#create-and-apply-a-conditional-access-policy)
 - [Okta](https://documentation.island.io/docs/configure-browser-enforcement-for-island-with-okta)
@@ -129,35 +123,34 @@ screenshots, mouse clicks, and keystrokes.
 
 ### Activity Logging Module
 
-1. [Create an Activity Logging Profile](https://documentation.island.io/docs/create-and-configure-an-activity-logging-profile)
+1. [Create an Activity Logging Profile](https://documentation.island.io/docs/create-and-configure-an-activity-logging-profile). Supported browser
+   events include:
 
-Supported browser events include:
+   - Web Navigation
+   - File Download
+   - File Upload
+   - Clipboard/Drag & Drop
+   - Print
+   - Save As
+   - Screenshots
+   - Mouse Clicks
+   - Keystrokes
 
-- Web Navigation
-- File Download
-- File Upload
-- Clipboard/Drag & Drop
-- Print
-- Save As
-- Screenshots
-- Mouse Clicks
-- Keystrokes
+1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general) to apply the Activity Logging Profile.
 
-1. [Create a Policy Rule](https://documentation.island.io/docs/create-and-configure-a-policy-rule-general)
-   to apply the Activity Logging Profile
-
-1. Define the Coder Application group as the Destination Object
+1. Define the Coder Application group as the Destination Object.
 
 1. Define the Activity Logging Profile as the Action in the Security &
-   Visibility section
+   Visibility section.
 
 ## Identity-aware logins (SSO)
 
-Integrate Island's identity management system with Coder's authentication
-mechanisms to enable identity-aware logins.
+Integrate Island's identity management system with Coder's
+authentication mechanisms to enable identity-aware logins.
 
 ### Configure single sign-on (SSO) seamless authentication between Coder and Island
 
 Configure the same identity provider (IdP) for both your Island and Coder
-deployment. Upon initial login to the Island browser, the user's session token
-will automatically be passed to Coder and authenticate their Coder session.
+deployment. Upon initial login to the Island browser, the user's session
+token will automatically be passed to Coder and authenticate their Coder
+session.
diff --git a/docs/admin/integrations/jfrog-artifactory.md b/docs/admin/integrations/jfrog-artifactory.md
@@ -36,14 +36,11 @@ two type of modules that automate the JFrog Artifactory and Coder integration.
 ### JFrog-OAuth
 
 This module is usable by JFrog self-hosted (on-premises) Artifactory as it
-requires configuring a custom integration. This integration benefits from
-Coder's [external-auth](../../admin/external-auth.md) feature and allows each
-user to authenticate with Artifactory using an OAuth flow and issues user-scoped
-tokens to each user.
+requires configuring a custom integration. This integration benefits from Coder's [external-auth](../../admin/external-auth.md) feature allows each user to authenticate with Artifactory using an OAuth flow and issues user-scoped tokens to each user.
 
 To set this up, follow these steps:
 
-1. Modify your Helm chart `values.yaml` for JFrog Artifactory to add,
+1. Add the following to your Helm chart `values.yaml` for JFrog Artifactory. Replace `CODER_URL` with your JFrog Artifactory base URL:
 
    ```yaml
    artifactory:
@@ -62,17 +59,12 @@ To set this up, follow these steps:
            scope: "applied-permissions/user"
    ```
 
-   > Note Replace `CODER_URL` with your Coder deployment URL, e.g.,
-   > <coder.example.com>
-
 1. Create a new Application Integration by going to
-   <https://JFROG_URL/ui/admin/configuration/integrations/new> and select the
+   `https://JFROG_URL/ui/admin/configuration/integrations/new` and select the
    Application Type as the integration you created in step 1.
 
-   ![JFrog Platform new integration](../../images/guides/artifactory-integration/jfrog-oauth-app.png)
-
-1. Add a new [external authentication](../../admin/external-auth.md) to Coder by
-   setting these env variables,
+1. Add a new [external authentication](../../admin/external-auth.md) to Coder by setting these
+   environment variables in a manner consistent with your Coder deployment. Replace `JFROG_URL` with your JFrog Artifactory base URL:
 
    ```env
    # JFrog Artifactory External Auth
@@ -86,12 +78,7 @@ To set this up, follow these steps:
    CODER_EXTERNAL_AUTH_1_SCOPES="applied-permissions/user"
    ```
 
-   > Note Replace `JFROG_URL` with your JFrog Artifactory base URL, e.g.,
-   > <example.jfrog.io>
-
-1. Create or edit a Coder template and use the
-   [JFrog-OAuth](https://registry.coder.com/modules/jfrog-oauth) module to
-   configure the integration.
+1. Create or edit a Coder template and use the [JFrog-OAuth](https://registry.coder.com/modules/jfrog-oauth) module to configure the integration:
 
    ```tf
    module "jfrog" {
@@ -100,7 +87,7 @@ To set this up, follow these steps:
      agent_id = coder_agent.example.id
      jfrog_url = "https://jfrog.example.com"
      configure_code_server = true # this depends on the code-server
-        username_field = "username" # If you are using GitHub to login to both Coder and Artifactory, use username_field = "username"
+     username_field = "username" # If you are using GitHub to login to both Coder and Artifactory, use username_field = "username"
      package_managers = {
        "npm": "npm",
        "go": "go",
@@ -111,22 +98,17 @@ To set this up, follow these steps:
 
 ### JFrog-Token
 
-This module makes use of the
-[Artifactory terraform provider](https://registry.terraform.io/providers/jfrog/artifactory/latest/docs)
-and an admin-scoped token to create user-scoped tokens for each user by matching
-their Coder email or username with Artifactory. This can be used for both SaaS
-and self-hosted(on-premises) Artifactory instances.
+This module makes use of the [Artifactory terraform
+provider](https://registry.terraform.io/providers/jfrog/artifactory/latest/docs) and an admin-scoped token to create
+user-scoped tokens for each user by matching their Coder email or username with
+Artifactory. This can be used for both SaaS and self-hosted (on-premises)
+Artifactory instances.
 
 To set this up, follow these steps:
 
-1. Get a JFrog access token from your Artifactory instance. The token must be an
-   [admin token](https://registry.terraform.io/providers/jfrog/artifactory/latest/docs#access-token)
-   with scope `applied-permissions/admin`.
-1. Create or edit a Coder template and use the
-   [JFrog-Token](https://registry.coder.com/modules/jfrog-token) module to
-   configure the integration and pass the admin token. It is recommended to
-   store the token in a sensitive terraform variable to prevent it from being
-   displayed in plain text in the terraform state.
+1. Get a JFrog access token from your Artifactory instance. The token must be an [admin token](https://registry.terraform.io/providers/jfrog/artifactory/latest/docs#access-token) with scope `applied-permissions/admin`.
+
+1. Create or edit a Coder template and use the [JFrog-Token](https://registry.coder.com/modules/jfrog-token) module to configure the integration and pass the admin token. It is recommended to store the token in a sensitive Terraform variable to prevent it from being displayed in plain text in the terraform state:
 
    ```tf
    variable "artifactory_access_token" {
@@ -150,24 +132,21 @@ To set this up, follow these steps:
    ```
 
    <blockquote class="info">
+
    The admin-level access token is used to provision user tokens and is never exposed to developers or stored in workspaces.
+
    </blockquote>
 
-If you do not want to use the official modules, you can check example template
-that uses Docker as the underlying compute
-[here](https://github.com/coder/coder/tree/main/examples/jfrog/docker). The same
-concepts apply to all compute types.
+If you don't want to use the official modules, you can read through the [example template](https://github.com/coder/coder/tree/main/examples/jfrog/docker), which uses Docker as the underlying compute. The
+same concepts apply to all compute types.
 
 ## Offline Deployments
 
-See the
-[offline deployments](../templates/extending-templates/modules.md#offline-installations)
-section for instructions on how to use coder-modules in an offline environment
-with Artifactory.
+See the [offline deployments](../templates/extending-templates/modules.md#offline-installations) section for instructions on how to use Coder modules in an offline environment with Artifactory.
+
+## Next Steps
 
-## More reading
+- See the [full example Docker template](https://github.com/coder/coder/tree/main/examples/jfrog/docker).
 
-- See the full example template
-  [here](https://github.com/coder/coder/tree/main/examples/jfrog/docker).
 - To serve extensions from your own VS Code Marketplace, check out
   [code-marketplace](https://github.com/coder/code-marketplace#artifactory-storage).