diff --git a/website/content/docs/concepts/security/permissions.mdx b/website/content/docs/concepts/security/permissions.mdx
index 1e9dcb446f..e902cb6d1b 100644
--- a/website/content/docs/concepts/security/permissions.mdx
+++ b/website/content/docs/concepts/security/permissions.mdx
@@ -222,11 +222,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>account</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>account</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -234,19 +234,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create an account
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List accounts
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -257,23 +253,23 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Pin</li>
-          <ul>
-            <li>
-              <code>&lt;auth-method-id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;auth-method-id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>account</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>account</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -281,62 +277,38 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read an account
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update an account
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete an account
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code>
-            </li>
-          </ul>
-          <li>
-            <code>set-password</code>: Set a password on an account, without
-            requring the current password
-          </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-password</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=set-password</code>
-            </li>
-          </ul>
-          <li>
-            <code>change-password</code>: Change a password on an account given
-            the current password
-          </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=change-password</code>
-            </li>
-            <li>
-              <code>
-                id=&lt;pin&gt;;type=&lt;type&gt;;actions=change-password
-              </code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code></li>
+            </ul>
+          <li>
+            <code>set-password</code>: Set a password on an account, without requring the current password
+          </li>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-password</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=set-password</code></li>
+            </ul>
+          <li>
+            <code>change-password</code>: Change a password on an account given the current password
+          </li>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=change-password</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=change-password</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -354,11 +326,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>auth-method</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>auth-method</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -366,19 +338,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create an auth method
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List auth methods
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -389,17 +357,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>auth-method</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>auth-method</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -407,35 +375,27 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read an auth method
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update an auth method
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete an auth method
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>authenticate</code>: Authenticate to an auth method
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=authenticate</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=authenticate</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -453,11 +413,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>auth-token</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>auth-token</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -465,11 +425,9 @@ wildcard or templated grant strings.
           <li>
             <code>list</code>: List auth tokens
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -480,17 +438,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>auth-token</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>auth-token</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -498,19 +456,15 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read an auth token
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete an auth token
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -529,11 +483,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>group</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>group</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -541,19 +495,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a group
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List groups
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -564,17 +514,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>group</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>group</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -582,51 +532,39 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>add-members</code>: Add members to a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-members</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-members</code></li>
+            </ul>
           <li>
             <code>set-members</code>: Set the full set of members on a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-members</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-members</code></li>
+            </ul>
           <li>
             <code>remove-members</code>: Remove members from a group
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-members</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-members</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -643,11 +581,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -655,19 +593,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a host
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List hosts
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -678,23 +612,23 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Pin</li>
-          <ul>
-            <li>
-              <code>&lt;host-catalog-id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;host-catalog-id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -702,36 +636,24 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a host
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a host
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a host
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -748,11 +670,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host-catalog</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host-catalog</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -760,19 +682,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a host catalog
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List host catalogs
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -783,17 +701,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host-catalog</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host-catalog</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -801,27 +719,21 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a host catalog
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a host catalog
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a host catalog
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -838,11 +750,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host-set</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host-set</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -850,19 +762,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a host set
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List host sets
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -873,23 +781,23 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Pin</li>
-          <ul>
-            <li>
-              <code>&lt;host-catalog-id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;host-catalog-id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>host-set</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>host-set</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -897,69 +805,45 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a host set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a host set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a host set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>add-hosts</code>: Add hosts to a host-set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-hosts</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=add-hosts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-hosts</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=add-hosts</code></li>
+            </ul>
           <li>
             <code>set-hosts</code>: Set the full set of hosts on a host set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-hosts</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=set-hosts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-hosts</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=set-hosts</code></li>
+            </ul>
           <li>
             <code>remove-hosts</code>: Remove hosts from a host set
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-hosts</code>
-            </li>
-            <li>
-              <code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=remove-hosts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-hosts</code></li>
+              <li><code>id=&lt;pin&gt;;type=&lt;type&gt;;actions=remove-hosts</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -978,11 +862,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>role</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>role</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -990,19 +874,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a role
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List roles
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1013,17 +893,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>role</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>role</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1031,76 +911,57 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>add-principals</code>: Add principals to a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-principals</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-principals</code></li>
+            </ul>
           <li>
-            <code>set-principals</code>: Set the full set of principals on a
-            role
+            <code>set-principals</code>: Set the full set of principals on a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-principals</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-principals</code></li>
+            </ul>
           <li>
             <code>remove-principals</code>: Remove principals from a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-principals</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-principals</code></li>
+            </ul>
           <li>
             <code>add-grants</code>: Add grants to a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-grants</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-grants</code></li>
+            </ul>
           <li>
             <code>set-grants</code>: Set the full set of grants on a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-grants</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-grants</code></li>
+            </ul>
           <li>
             <code>remove-grants</code>: Remove grants from a role
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-grants</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-grants</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1118,11 +979,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>scope</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>scope</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1130,19 +991,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a scope
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List scopes
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1153,17 +1010,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>scope</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>scope</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1171,27 +1028,21 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a scope
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a scope
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a scope
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1208,11 +1059,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>session</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>session</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1220,11 +1071,9 @@ wildcard or templated grant strings.
           <li>
             <code>list</code>: List sessions
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1235,17 +1084,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>session</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>session</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1253,37 +1102,27 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a session
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>cancel</code>: Cancel a session
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=cancel</code>
-            </li>
-          </ul>
-          <li>
-            <code>read:self</code>: Read a session, which must be associated
-            with the calling user
-          </li>
-          <ul>
-            <li>
-              <code>id=*;type=session;actions=read:self</code>
-            </li>
-          </ul>
-          <li>
-            <code>cancel:self</code>: Cancel a session, which must be associated
-            with the calling user
-          </li>
-          <ul>
-            <li>
-              <code>id=*;type=session;actions=cancel:self</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=cancel</code></li>
+            </ul>
+          <li>
+            <code>read:self</code>: Read a session, which must be associated with the calling user
+          </li>
+            <ul>
+              <li><code>id=*;type=session;actions=read:self</code></li>
+            </ul>
+          <li>
+            <code>cancel:self</code>: Cancel a session, which must be associated with the calling user
+          </li>
+            <ul>
+              <li><code>id=*;type=session;actions=cancel:self</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1300,11 +1139,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>target</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>target</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1312,19 +1151,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a target
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List targets
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1335,17 +1170,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>target</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>target</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1353,60 +1188,45 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>add-host-sets</code>: Add host sets to a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-host-sets</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-host-sets</code></li>
+            </ul>
           <li>
-            <code>set-host-sets</code>: Set the full set of host sets on a
-            target
+            <code>set-host-sets</code>: Set the full set of host sets on a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-host-sets</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-host-sets</code></li>
+            </ul>
           <li>
             <code>remove-host-sets</code>: Remove host sets from a target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-host-sets</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-host-sets</code></li>
+            </ul>
           <li>
             <code>authorize-session</code>: Authorize a session via the target
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=authorize-session</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=authorize-session</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1424,11 +1244,11 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>user</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>user</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1436,19 +1256,15 @@ wildcard or templated grant strings.
           <li>
             <code>create</code>: Create a user
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=create</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=create</code></li>
+            </ul>
           <li>
             <code>list</code>: List users
           </li>
-          <ul>
-            <li>
-              <code>type=&lt;type&gt;;actions=list</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>type=&lt;type&gt;;actions=list</code></li>
+            </ul>
         </ul>
       </td>
     </tr>
@@ -1459,17 +1275,17 @@ wildcard or templated grant strings.
       <td>
         <ul>
           <li>ID</li>
-          <ul>
-            <li>
-              <code>&lt;id&gt;</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>&lt;id&gt;</code>
+              </li>
+            </ul>
           <li>Type</li>
-          <ul>
-            <li>
-              <code>user</code>
-            </li>
-          </ul>
+            <ul>
+              <li>
+                <code>user</code>
+              </li>
+            </ul>
         </ul>
       </td>
       <td>
@@ -1477,51 +1293,39 @@ wildcard or templated grant strings.
           <li>
             <code>read</code>: Read a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=read</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=read</code></li>
+            </ul>
           <li>
             <code>update</code>: Update a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=update</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=update</code></li>
+            </ul>
           <li>
             <code>delete</code>: Delete a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=delete</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=delete</code></li>
+            </ul>
           <li>
             <code>add-accounts</code>: Add accounts to a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=add-accounts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=add-accounts</code></li>
+            </ul>
           <li>
             <code>set-accounts</code>: Set the full set of accounts on a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=set-accounts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=set-accounts</code></li>
+            </ul>
           <li>
             <code>remove-accounts</code>: Remove accounts from a user
           </li>
-          <ul>
-            <li>
-              <code>id=&lt;id&gt;;actions=remove-accounts</code>
-            </li>
-          </ul>
+            <ul>
+              <li><code>id=&lt;id&gt;;actions=remove-accounts</code></li>
+            </ul>
         </ul>
       </td>
     </tr>