Task created:https://dev.coder.com/tasks/mafredri/f702c3a6-2206-437c-ae5f-f81ebab3260e

📚 Documentation Check

✅ Updates Needed

• docs/admin/external-auth/index.md - Add documentation for the newCODER_EXTERNAL_AUTH_N_PKCE_METHODS environment variable configuration option. This should explain:
  • What PKCE (Proof Key for Code Exchange) is and why it's used
  • How to configure it (e.g.,CODER_EXTERNAL_AUTH_0_PKCE_METHODS="S256 plain")
  • When administrators should enable it (security best practices, OAuth provider requirements)
  • Which OAuth providers typically require or support PKCE

📝 Reasoning

This PR adds PKCE support for external OAuth2 authentication, which is a user-facing feature that requires administrator configuration. Based on my analysis:

What Changed:

• AddedCodeChallengeMethodsSupported field toExternalAuthConfig andExternalAuthLinkProvider
• Added new environment variableCODER_EXTERNAL_AUTH_N_PKCE_METHODS for configuring PKCE methods
• OIDC providers now auto-detect PKCE support from discovery metadata
• API schemas were auto-generated and updated in/docs/reference/api/

Why Documentation is Needed:

• This is a new configuration option that administrators need to know about
• PKCE affects OAuth2 security and some providers may require it
• The environment variable follows the existing pattern but isn't documented in/docs/admin/external-auth/index.md
• Administrators need guidance on when and how to configure this option

What's Already Done:

• API reference docs (schemas and general) were auto-generated ✅
• No other documentation changes were included in this PR

This comment was generated by an AI Agent throughCoder Tasks

Added docs!