device profile selectors

Author: ranbel

src/content/docs/cloudflare-one/connections/connect-devices/warp/configure-warp/device-profiles.mdx

@@ -130,20 +130,76 @@ Alternatively, if you do not have access to the CLI, you can use [DEX remote cap
 
 ## Selectors
 
-| Selector                 | Description                                                                                                                                      | WARP mode required |
-| ------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------ | ------------------ |
-| User email               | Email address of a user <br /> `[email protected]`                                                                                           | Gateway with WARP  |
-| User group emails        | Email address of an [IdP group](/cloudflare-one/policies/gateway/identity-selectors/#idp-groups-in-gateway) <br /> `[email protected]`     | Gateway with WARP  |
-| User group IDs           | ID of an [IdP group](/cloudflare-one/policies/gateway/identity-selectors/#idp-groups-in-gateway) <br /> `12jf495bhjd7893ml09o`                   | Gateway with WARP  |
-| User group names         | Name of an [IdP group](/cloudflare-one/policies/gateway/identity-selectors/#idp-groups-in-gateway) <br /> `developers`                           | Gateway with WARP  |
-| Operating system         | Operating system of the device <br /> `macOS`                                                                                                    | Any mode           |
-| Operating system version | [OS version](/cloudflare-one/identity/devices/warp-client-checks/os-version/#determine-the-os-version) specified in Semver format <br /> `1.2.0` | Any mode           |
-| Managed network          | [Network location](/cloudflare-one/connections/connect-devices/warp/configure-warp/managed-networks/) of the device                              | Any mode           |
-| SAML Attributes          | Attribute name and value from a [SAML IdP](/cloudflare-one/policies/gateway/identity-selectors/#generic-saml-idp)                                | Gateway with WARP  |
-| Service Token          | [Service token](/cloudflare-one/connections/connect-devices/warp/deployment/device-enrollment/#check-for-service-token) used to enroll the device                      | Any mode   |
+You can configure device profiles to match against the following selectors, or criteria. Identity-based selectors are only available if the user [enrolled the device](/cloudflare-one/connections/connect-devices/warp/deployment/manual-deployment/) by logging in to an identity provider (IdP).
+
+### User email
+
+Apply a device profile based on the user's email.
+
+<Render file="gateway/selectors/user-email" params={{ UIname: "User email" }}/>
+
+### User group emails
+
+Apply a device profile based on an IdP group email address of which the user is configured as a member in the IdP.
+
+<Render file="gateway/selectors/user-group-email" params={{ UIname: "User group emails" }}/>
+
+### User group IDs
+
+Apply a device profile based on an IdP group ID of which the user is configured as a member in the IdP.
+
+<Render file="gateway/selectors/user-group-ids" params={{ UIname: "User group IDs" }}/>
+
+### User group names
+
+Apply a device profile based on an IdP group name of which the user is configured as a member in the IdP.
+
+<Render file="gateway/selectors/user-group-names" params={{ UIname: "User group names" }}/>
+
+### Operating system
+
+Apply a device profile based on the operating system of the device.
+
+| UI name         | API example                                       |
+| --------------- | ------------------------------------------------- |
+| Operating system | `os.name in {\"windows\" \"mac\"}` |
+
+### Operating system version
+
+Apply a device profile based on the [OS version](/cloudflare-one/identity/devices/warp-client-checks/os-version/#determine-the-os-version) of the device.
+
+| UI name         | API example                                       |
+| --------------- | ------------------------------------------------- |
+| Operating system version | `os.version == \"1.2.0\"` |
+
+ <Render file="warp/os-version-semver" />
+
+### Managed network
+
+Apply a device profile based on the [managed network](/cloudflare-one/connections/connect-devices/warp/configure-warp/managed-networks/) that the device is connected to.
+
+| UI name         | API example                                       |
+| --------------- | ------------------------------------------------- |
+| Managed network | `network == \"Austin office\"` |
+
+### SAML attributes
+
+Apply a device profile based on an attribute name and value from a [SAML IdP](/cloudflare-one/policies/gateway/identity-selectors/#generic-saml-idp).
+
+<Render file="gateway/selectors/saml-attributes" />
+
+### Service token
+
+Apply a device profile based on the [service token](/cloudflare-one/connections/connect-devices/warp/deployment/device-enrollment/#check-for-service-token) used to enroll the device.
+
+| UI name         | API example                                       |
+| --------------- | ------------------------------------------------- |
+| Service Token | `identity.service_token_uuid == \"f174e90a-fafe-4643-bbbc-4a0ed4fc8415\"` |
 
 ## Comparison operators
 
+Comparison operators determine how device profiles match a selector.
+
 | Operator | Meaning                                    |
 | -------- | ------------------------------------------ |
 | is       | equals the defined value                   |

src/content/docs/cloudflare-one/identity/devices/warp-client-checks/os-version.mdx

@@ -25,10 +25,9 @@ The OS Version device posture attribute checks whether the version of a device's
 2. Scroll down to **WARP client checks** and select **Add new**.
 3. Select **OS version**.
 4. Configure the **Operating system**, **Operator**, and **Version** fields to specify the [OS version](#determine-the-os-version) you want devices to match.
-:::note
 
-The OS version must be specified as a valid [Semver](https://semver.org/). For example, if your device is running OS version `1.2`, you must enter `1.2.0`.
-:::
+	<Render file="warp/os-version-semver" />
+
 5. (Optional) Configure additional OS-specific fields:
 
 		<Tabs> <TabItem label="macOS">

src/content/docs/cloudflare-one/policies/gateway/identity-selectors.mdx

@@ -36,41 +36,31 @@ Gateway will automatically detect changes in user name, title, and group members
 
 Specify a value from the SAML Attribute Assertion.
 
-| UI name         | API example                                       |
-| --------------- | ------------------------------------------------- |
-| SAML Attributes | `identity.saml_attributes == "\"group=finance\""` |
+<Render file="gateway/selectors/saml-attributes" />
 
 ### User Email
 
 Use this selector to create identity-based Gateway rules based on a user's email.
 
-| UI name    | API example value                           |
-| ---------- | ------------------------------------------- |
-| User Email | `identity.email == "[email protected]"` |
+<Render file="gateway/selectors/user-email" params={{ UIname: "User Email" }}/>
 
 ### User Group IDs
 
 Use this selector to create identity-based Gateway rules based on an IdP group ID of which the user is configured as a member in the IdP.
 
-| UI name        | API example                                    |
-| -------------- | ---------------------------------------------- |
-| User Group IDs | `identity.groups.id == "12jf495bhjd7893ml09o"` |
+<Render file="gateway/selectors/user-group-ids" params={{ UIname: "User Group IDs" }}/>
 
 ### User Group Email
 
 Use this selector to create identity-based Gateway rules based on an IdP group email address of which the user is configured as a member in the IdP.
 
-| UI name          | API example                                       |
-| ---------------- | ------------------------------------------------- |
-| User Group Email | `identity.groups.id == "[email protected]"` |
+<Render file="gateway/selectors/user-group-email" params={{ UIname: "User Group Email" }}/>
 
 ### User Group Names
 
 Use this selector to create identity-based Gateway rules based on an IdP group name of which the user is configured as a member in the IdP.
 
-| UI name          | API example                             |
-| ---------------- | --------------------------------------- |
-| User Group Names | `identity.groups.name == "\"finance\""` |
+<Render file="gateway/selectors/user-group-names" params={{ UIname: "User Group Names" }}/>
 
 ### User Name
 

src/content/partials/cloudflare-one/gateway/selectors/saml-attributes.mdx

@@ -0,0 +1,7 @@
+---
+{}
+---
+
+| UI name         | API example                                       |
+| --------------- | ------------------------------------------------- |
+| SAML Attributes | `identity.saml_attributes == "\"group=finance\""` |

src/content/partials/cloudflare-one/gateway/selectors/user-email.mdx

@@ -0,0 +1,8 @@
+---
+params:
+  - UIname
+---
+
+| UI name    | API example value                           |
+| ---------- | ------------------------------------------- |
+| {props.UIname} | `identity.email == "[email protected]"` |

src/content/partials/cloudflare-one/gateway/selectors/user-group-email.mdx

@@ -0,0 +1,8 @@
+---
+params:
+  - UIname
+---
+
+| UI name          | API example                                       |
+| ---------------- | ------------------------------------------------- |
+| {props.UIname} | `identity.groups.email == "[email protected]"` |

src/content/partials/cloudflare-one/gateway/selectors/user-group-ids.mdx

@@ -0,0 +1,8 @@
+---
+params:
+  - UIname
+---
+
+| UI name          | API example                                       |
+| ---------------- | ------------------------------------------------- |
+| {props.UIname} | `identity.groups.id == "12jf495bhjd7893ml09o"` |

src/content/partials/cloudflare-one/gateway/selectors/user-group-names.mdx

@@ -0,0 +1,8 @@
+---
+params:
+  - UIname
+---
+
+| UI name          | API example                                       |
+| ---------------- | ------------------------------------------------- |
+| {props.UIname} | `identity.groups.name == "\"finance\""` |

src/content/partials/cloudflare-one/warp/os-version-semver.mdx

@@ -0,0 +1,10 @@
+---
+{}
+
+---
+
+:::note
+
+The OS version must be specified as a valid [Semver](https://semver.org/). For example, if your device is running OS version `1.2`, you must enter `1.2.0`.
+
+:::