docs(oidc): kasm workspaces (#5314)

This adds a Kasm Workspaces OpenID Connect 1.0 integration guide.

Signed-off-by: Harold <73724671+HaroldVB@users.noreply.github.com>

docs/content/en/integration/openid-connect/kasm-workspaces/index.md

@@ -0,0 +1,92 @@
+---
+title: "Kasm Workspaces"
+description: "Integrating Kasm Workspaces with the Authelia OpenID Connect Provider."
+lead: ""
+date: 2023-04-25T23:07:05+2:00
+draft: false
+images: []
+menu:
+  integration:
+    parent: "openid-connect"
+weight: 620
+toc: true
+community: true
+---
+
+## Tested Versions
+
+* [Authelia]
+  * [v4.37.5](https://github.com/authelia/authelia/releases/tag/v4.37.5)
+* [Kasm Workspaces]
+  * [1.13.0](https://kasmweb.com/docs/latest/release_notes/1.13.0.html)
+
+## Before You Begin
+
+{{% oidc-common %}}
+
+### Assumptions
+
+This example makes the following assumptions:
+
+* __Application Root URL:__ `https://kasm.example.com`
+* __Authelia Root URL:__ `https://auth.example.com`
+* __Client ID:__ `kasm`
+* __Client Secret:__ `insecure_secret`
+
+## Configuration
+
+### Application
+
+To configure [Kasm Workspaces] to utilize Authelia as an [OpenID Connect 1.0] Provider use the following configuration:
+
+1. Visit Authentication
+2. Visit OpenID
+3. Set the following values:
+   1. Enable *Automatic User Provision* if you want users to automatically be created in [Kasm Workspaces].
+   2. Enable *Auto Login* if you want automatic user login.
+   3. Enable *Default* if you want Authelia to be the default sign-in method.
+   4. Client ID: `kasm`
+   5. Client Secret: `insecure_secret`
+   6. Authorization URL: `https://auth.example.com/api/oidc/authorization`
+   7. Token URL: `https://auth.example.com/api/oidc/token`
+   8. User Info URL: `https://auth.example.com/api/oidc/userinfo`
+   9. Scope (One Per Line): `openid profile groups email`
+   10. User Identifier: `preferred_username`
+
+{{< figure src="kasm.png" alt="Kasam Workspaces" width="736" style="padding-right: 10px" >}}
+
+### Authelia
+
+The following YAML configuration is an example __Authelia__
+[client configuration](../../../configuration/identity-providers/open-id-connect.md#clients) for use with
+[Kasm Workspaces] which will operate with the above example:
+
+```yaml
+identity_providers:
+  oidc:
+    ## The other portions of the mandatory OpenID Connect 1.0 configuration go here.
+    ## See: https://www.authelia.com/c/oidc
+    clients:
+      - id: kasm
+        description: Kasm Workspaces
+        secret: '$pbkdf2-sha512$310000$c8p78n7pUMln0jzvd4aK4Q$JNRBzwAo0ek5qKn50cFzzvE9RXV88h1wJn5KGiHrD0YKtZaR/nCb2CJPOsKaPK0hjf.9yHxzQGZziziccp6Yng'  # The digest of 'insecure_secret'.
+        public: false
+        authorization_policy: two_factor
+        redirect_uris:
+          - https://kasm.example.com/api/oidc_callback
+        scopes:
+          - openid
+          - profile
+          - groups
+          - email
+        consent_mode: implicit
+        userinfo_signing_algorithm: none
+```
+
+## See Also
+
+* [Kasm Workspaces OpenID Connect Authentication Documentation](https://kasmweb.com/docs/latest/guide/oidc.html)
+
+[Authelia]: https://www.authelia.com
+[Kasm Workspaces]: https://kasmweb.com/
+[OpenID Connect 1.0]: ../../openid-connect/introduction.md