Fix content generated from proto

docs/pages/reference/operator-resources/resources.teleport.dev_samlconnectors.mdx

@@ -36,6 +36,7 @@ resource, which you can apply after installing the Teleport Kubernetes operator.
 |display|string|Display controls how this connector is displayed.|
 |entity_descriptor|string|EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.|
 |entity_descriptor_url|string|EntityDescriptorURL is a URL that supplies a configuration XML.|
+|force_authn|string or integer|ForceAuthn specified whether re-authentication should be forced on login. UNSPECIFIED is treated as NO. Can be either the string or the integer representation of each option.|
 |issuer|string|Issuer is the identity provider issuer.|
 |mfa|[object](#specmfa)|MFASettings contains settings to enable SSO MFA checks through this auth connector.|
 |provider|string|Provider is the external identity provider.|
@@ -73,6 +74,7 @@ resource, which you can apply after installing the Teleport Kubernetes operator.
 |enabled|boolean|Enabled specified whether this SAML connector supports MFA checks. Defaults to false.|
 |entity_descriptor|string|EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.|
 |entity_descriptor_url|string|EntityDescriptorUrl is a URL that supplies a configuration XML.|
+|force_authn|string or integer|ForceAuthn specified whether re-authentication should be forced for MFA checks. UNSPECIFIED is treated as YES to always re-authentication for MFA checks. This should only be set to NO if the IdP is setup to perform MFA checks on top of active user sessions. Can be either the string or the integer representation of each option.|
 
 ### spec.signing_key_pair
 

docs/pages/reference/terraform-provider/data-sources/saml_connector.mdx

@@ -40,6 +40,7 @@ Optional:
 - `display` (String) Display controls how this connector is displayed.
 - `entity_descriptor` (String, Sensitive) EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.
 - `entity_descriptor_url` (String) EntityDescriptorURL is a URL that supplies a configuration XML.
+- `force_authn` (Number) ForceAuthn specified whether re-authentication should be forced on login. UNSPECIFIED is treated as NO.
 - `issuer` (String) Issuer is the identity provider issuer.
 - `mfa` (Attributes) MFASettings contains settings to enable SSO MFA checks through this auth connector. (see [below for nested schema](#nested-schema-for-specmfa))
 - `provider` (String) Provider is the external identity provider.
@@ -80,6 +81,7 @@ Optional:
 - `enabled` (Boolean) Enabled specified whether this SAML connector supports MFA checks. Defaults to false.
 - `entity_descriptor` (String) EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.
 - `entity_descriptor_url` (String) EntityDescriptorUrl is a URL that supplies a configuration XML.
+- `force_authn` (Number) ForceAuthn specified whether re-authentication should be forced for MFA checks. UNSPECIFIED is treated as YES to always re-authentication for MFA checks. This should only be set to NO if the IdP is setup to perform MFA checks on top of active user sessions.
 
 
 ### Nested Schema for `spec.signing_key_pair`

docs/pages/reference/terraform-provider/resources/saml_connector.mdx

@@ -85,6 +85,7 @@ Optional:
 - `display` (String) Display controls how this connector is displayed.
 - `entity_descriptor` (String, Sensitive) EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.
 - `entity_descriptor_url` (String) EntityDescriptorURL is a URL that supplies a configuration XML.
+- `force_authn` (Number) ForceAuthn specified whether re-authentication should be forced on login. UNSPECIFIED is treated as NO.
 - `issuer` (String) Issuer is the identity provider issuer.
 - `mfa` (Attributes) MFASettings contains settings to enable SSO MFA checks through this auth connector. (see [below for nested schema](#nested-schema-for-specmfa))
 - `provider` (String) Provider is the external identity provider.
@@ -125,6 +126,7 @@ Optional:
 - `enabled` (Boolean) Enabled specified whether this SAML connector supports MFA checks. Defaults to false.
 - `entity_descriptor` (String) EntityDescriptor is XML with descriptor. It can be used to supply configuration parameters in one XML file rather than supplying them in the individual elements.
 - `entity_descriptor_url` (String) EntityDescriptorUrl is a URL that supplies a configuration XML.
+- `force_authn` (Number) ForceAuthn specified whether re-authentication should be forced for MFA checks. UNSPECIFIED is treated as YES to always re-authentication for MFA checks. This should only be set to NO if the IdP is setup to perform MFA checks on top of active user sessions.
 
 
 ### Nested Schema for `spec.signing_key_pair`

examples/chart/teleport-cluster/charts/teleport-operator/operator-crds/resources.teleport.dev_samlconnectors.yaml

@@ -115,6 +115,10 @@ spec:
                 description: EntityDescriptorURL is a URL that supplies a configuration
                   XML.
                 type: string
+              force_authn:
+                description: ForceAuthn specified whether re-authentication should
+                  be forced on login. UNSPECIFIED is treated as NO.
+                x-kubernetes-int-or-string: true
               issuer:
                 description: Issuer is the identity provider issuer.
                 type: string
@@ -136,6 +140,13 @@ spec:
                     description: EntityDescriptorUrl is a URL that supplies a configuration
                       XML.
                     type: string
+                  force_authn:
+                    description: ForceAuthn specified whether re-authentication should
+                      be forced for MFA checks. UNSPECIFIED is treated as YES to always
+                      re-authentication for MFA checks. This should only be set to
+                      NO if the IdP is setup to perform MFA checks on top of active
+                      user sessions.
+                    x-kubernetes-int-or-string: true
                 type: object
               provider:
                 description: Provider is the external identity provider.

integrations/operator/config/crd/bases/resources.teleport.dev_samlconnectors.yaml

@@ -115,6 +115,10 @@ spec:
                 description: EntityDescriptorURL is a URL that supplies a configuration
                   XML.
                 type: string
+              force_authn:
+                description: ForceAuthn specified whether re-authentication should
+                  be forced on login. UNSPECIFIED is treated as NO.
+                x-kubernetes-int-or-string: true
               issuer:
                 description: Issuer is the identity provider issuer.
                 type: string
@@ -136,6 +140,13 @@ spec:
                     description: EntityDescriptorUrl is a URL that supplies a configuration
                       XML.
                     type: string
+                  force_authn:
+                    description: ForceAuthn specified whether re-authentication should
+                      be forced for MFA checks. UNSPECIFIED is treated as YES to always
+                      re-authentication for MFA checks. This should only be set to
+                      NO if the IdP is setup to perform MFA checks on top of active
+                      user sessions.
+                    x-kubernetes-int-or-string: true
                 type: object
               provider:
                 description: Provider is the external identity provider.