iterative · jesper7 · Mar 9, 2023 · Mar 1, 2023 · Mar 2, 2023 · Mar 3, 2023
diff --git a/content/docs/sidebar.json b/content/docs/sidebar.json
@@ -616,20 +616,20 @@
       },
       "troubleshooting",
       {
-        "slug": "selfhosted",
+        "slug": "self-hosting",
         "source": false,
         "children": [
           {
             "slug": "installation",
             "source": "installation/index.md",
             "children": [
               {
-                "label": "AMI",
-                "slug": "ami"
+                "label": "AWS AMI",
+                "slug": "aws-ami"
               },
               {
-                "label": "Helm",
-                "slug": "helm"
+                "label": "Kubernetes (Helm)",
+                "slug": "k8s-helm"
               }
             ]
           },
@@ -641,13 +641,21 @@
                 "label": "TLS certificates",
                 "slug": "tls"
               },
+              {
+                "label": "CA certificates",
+                "slug": "ca"
+              },
               {
                 "label": "GitHub integration",
                 "slug": "github"
               },
               {
                 "label": "GitLab integration",
                 "slug": "gitlab"
+              },
+              {
+                "label": "Bitbucket integration",
+                "slug": "bitbucket"
               }
             ]
           },

diff --git a/content/docs/studio/self-hosting/configuration/bitbucket.md b/content/docs/studio/self-hosting/configuration/bitbucket.md
@@ -0,0 +1,3 @@
+# Bitbucket integration
+
+To be updated.
diff --git a/content/docs/studio/self-hosting/configuration/ca.md b/content/docs/studio/self-hosting/configuration/ca.md
@@ -0,0 +1,16 @@
+# CA certificates
+
+Does your Git forge use a certificate signed by a custom certificate authority
+(CA)? If so, Studio needs to have the CA certificate in order to connect to the
+Git forge.
+
+To do this, copy your CA certificate as plain text, then insert it in the
+`customCaCert` key in the `values.yaml` configuration file:
+
+```yaml
+global:
+  customCaCert: |-
+    -----BEGIN CERTIFICATE-----
+    ....
+    -----END CERTIFICATE-----
+```
diff --git a/...studio/selfhosted/configuration/github.md → ...udio/self-hosting/configuration/github.md b/...studio/selfhosted/configuration/github.md → ...udio/self-hosting/configuration/github.md
@@ -22,15 +22,15 @@ Fill out the details as follows:
 
    **Repository permissions:**
 
-- Contents: Read / Write
-- Issues: Read / Write
-- Metadata: Read
-- Pull Requests: Read / Write
-- Webhooks: Read / Write
+   - Contents: Read / Write
+   - Issues: Read / Write
+   - Metadata: Read
+   - Pull Requests: Read / Write
+   - Webhooks: Read / Write
 
-**User permissions:**
+   **User permissions:**
 
-- Email addresses: Read
+   - Email addresses: Read
 
 4. Click **Create Github App**
 
@@ -63,9 +63,10 @@ scmProviders:
     appSecret: <GitHub OAuth App Secret>
     privateKey: <GitHub OAuth App Private Key>
 
-    # Optional. This is useful in cases where Studio is on an internal
+    # Optional
+    # This is useful in cases where Studio is on an internal
     # network, but the webhook endpoint is on an external network
-    webhookUrl: <GitHub Webhook URL, e.g. https://<domain>/webhook/github/>
+    # webhookUrl: https://webhook.studio.company.com/webhook/github/
 ```
 
 <admon type="info">

diff --git a/...studio/selfhosted/configuration/gitlab.md → ...udio/self-hosting/configuration/gitlab.md b/...studio/selfhosted/configuration/gitlab.md → ...udio/self-hosting/configuration/gitlab.md
@@ -40,9 +40,12 @@ scmProviders:
 
     clientId: <GitLab OAuth App Client ID>
     secretKey: <GitLab OAuth App Secret Key>
-
-    webhookUrl: <GitLab Webhook URL>
     webhookSecret: <GitLab Webhook Secret>
+
+    # Optional
+    # This is useful in cases where Studio is on an internal
+    # network, but the webhook endpoint is on an external network
+    # webhookUrl: https://webhook.studio.company.com/webhook/gitlab/
 ```
 
 <admon type="info">

diff --git a/content/docs/studio/self-hosting/configuration/index.md b/content/docs/studio/self-hosting/configuration/index.md
@@ -0,0 +1,59 @@
+# Configuration
+
+Studio uses a standardized, unified YAML configuration file, often referred to
+as `values.yaml` in the documentation.
+
+## Updating the configuration
+
+To update the configuration and apply the changes, follow the instructions
+below:
+
+<admon type="info">
+
+If you've deployed Studio with the AMI, you'll need to SSH to the EC2 instance
+before continuing.
+
+</admon>
+
+1. Update Studio's `values.yaml` config file
+
+**Example: Updating the hostname**
+
+Merge the existing `values.yaml` file with the following contents:
+
+```yaml
+global:
+  host: studio.company2.com
+```
+
+3. Reload Studio
+
+```cli
+$ helm upgrade --wait studio iterative/studio --namespace studio -f values.yaml
+```
+
+## More configuration options
+
+The previous chapter provided a basic example of updating the Studio
+configuration. In most cases, you'll likely need to do more configuration to set
+up Studio to your needs.
+
+Studio integrates with several Git forges (also referred to as SCM providers),
+each of which are configured differently. For any Git forge type you'll need to
+configure an app prior to Studio installation, and also configure a dedicated
+block under `scmProviders` in the `values.yaml` file:
+
+- [GitHub](/doc/studio/self-hosting/configuration/github)
+- [GitLab](/doc/studio/self-hosting/configuration/gitlab)
+- [Bitbucket](/doc/studio/self-hosting/configuration/bitbucket)
+
+<admon type="tip">
+
+If your Git forge uses a certificate signed by a custom certificate authority,
+see [CA certificates](/doc/studio/self-hosting/configuration/ca)
+
+</admon>
+
+To allow secure access to Studio, we highly recommend setting up a valid TLS
+certificate. To set this up, check out the
+[TLS certificates](/doc/studio/self-hosting/configuration/tls) page.
diff --git a/...cs/studio/selfhosted/configuration/tls.md → .../studio/self-hosting/configuration/tls.md b/...cs/studio/selfhosted/configuration/tls.md → .../studio/self-hosting/configuration/tls.md
@@ -7,54 +7,29 @@ We strongly recommend deploying Studio with a TLS certificate.
 To configure TLS certificates to Studio, following the instructions below
 according to your installation method:
 
-<toggle>
-<tab title="AMI">
+<admon type="info">
+
+If you've deployed Studio with the AMI, you'll need to copy your TLS certificate
+and private key to the EC2 instance and start an SSH session before continuing.
+Example:
 
 1. Transfer your TLS certificate and private key to the EC2 instance
 
-```shell
+```cli
 $ scp studio.crt studio.pem ubuntu@my-ec2-instance:.
 ```
 
 2. Connect with SSH to your EC2 instance
 
-```shell
+```cli
 $ ssh ubuntu@my-ec2-instance
 ```
 
-3. Store your TLS certificate and private key in an object
-
-```shell
-$ kubectl create secret tls studio-ingress-tls \
-      --namespace studio \
-      --cert=studio.crt \
-      --key=studio.pem
-```
-
-4. Update Studio's config file
-
-Merge the `values.yaml` file with the following contents:
-
-```yaml
-global:
-  ingress:
-    tlsEnabled: true
-    tlsSecretName: studio-ingress-tls
-```
-
-5. Reload Studio
-
-```shell
-$ helm upgrade --wait studio iterative/studio --namespace studio -f values.yaml
-```
-
-</tab>
-
-<tab title="Helm">
+</admon>
 
 1. Store your TLS certificate and private key in an object
 
-```shell
+```cli
 $ kubectl create secret tls studio-ingress-tls \
       --namespace studio \
       --cert=studio.crt \
@@ -74,10 +49,6 @@ global:
 
 3. Reload Studio
 
-```shell
+```cli
 $ helm upgrade --wait studio iterative/studio --namespace studio -f values.yaml
 ```
-
-</tab>
-
-</toggle>