feat(kong-identity): UI instructions (#3766)

* Start adding UI and API tabs

Signed-off-by: Diana <75819066+cloudjumpercat@users.noreply.github.com>

* Finish UI steps, adjust API step formatting

Signed-off-by: Diana <75819066+cloudjumpercat@users.noreply.github.com>

* remove beta labels

Signed-off-by: Diana <75819066+cloudjumpercat@users.noreply.github.com>

---------

Signed-off-by: Diana <75819066+cloudjumpercat@users.noreply.github.com>

Author: cloudjumpercat

app/_how-tos/configure-kong-identity-oauth-introspection.md

@@ -4,7 +4,6 @@ content_type: how_to
 breadcrumbs:
   - /kong-identity/
 
-beta: true
 entities:
   - route
   - service

app/_how-tos/configure-kong-identity-oidc.md

@@ -4,7 +4,6 @@ content_type: how_to
 breadcrumbs:
   - /kong-identity/
 
-beta: true
 entities:
   - route
   - service

app/_how-tos/configure-kong-identity-upstream-oauth.md

@@ -4,7 +4,6 @@ content_type: how_to
 breadcrumbs:
   - /kong-identity/
 
-beta: true
 entities:
   - route
   - service

app/_how-tos/kong-identity-dcr.md

@@ -2,7 +2,6 @@
 title: Automatically create Dev Portal applications in Kong Identity with Dynamic Client Registration
 description: Learn how to configure Dynamic Client Registration to automatically create Dev Portal applications in Kong Identity.
 content_type: how_to
-beta: true
 products:
     - gateway
     - dev-portal

app/konnect-platform/kong-identity.md

@@ -2,7 +2,6 @@
 title: "Kong Identity"
 content_type: reference
 layout: reference
-beta: true
 
 products:
     - konnect
@@ -165,3 +164,133 @@ Claims support templating via the context passed to the client during the authen
 
 To test the templating, you can use the [`/v1/auth-servers/$authServerId/clients/$clientId/test-claim` endpoint](/api/konnect/kong-identity/v1/#/operations/testClaimForClient).
 
+
+## Configure Kong Identity
+
+To configure Kong Identity, do the following:
+
+{% navtabs "api-version" %}
+{% navtab "{{site.konnect_short_name}} UI" %}
+1. In the {{site.konnect_short_name}} sidebar, click [**Identity**](https://cloud.konghq.com/identity/).
+1. Click **New authorization server**.
+1. In the **Name** field, enter a name.
+1. In the **Audience** field, enter the audience.
+   
+   {:.info}
+   > **Note:** The value in the **Audience** field is the audience that the token is intended for, like a client ID or the upstream URL of the Gateway Service for the API resource. For example, `https://api.example.com/payments` and `http://myhttpbin.dev`. If you don't have an intended audience, you can put a placeholder value, like `orders-api`, in this field.
+1. Click **Create**.
+1. Click **New scope**.
+1. In the **Name** field, enter a name for your scope.
+1. Click **Create**.
+1. Navigate back to your authorization server.
+1. Click **New claim**.
+1. In the **Name** field, enter a name for your claim.
+1. In the **Value** field, enter the value for your claim. These can also be [dynamic](#dynamic-claim-templates).
+1. From the **When to include this claim in tokens** dropdown menu, select an option.
+1. Click **Create**.
+1. Navigate back to your authorization server.
+1. Click **New client**. 
+1. In the **Name** field, enter a name for your client.
+1. From the **Allowed scopes** dropdown menu, select an option.
+1. Click **Create**.
+1. Copy and save your client ID and secret. 
+{% endnavtab %}
+{% navtab "{{site.konnect_short_name}} API" %}
+1. Create an auth server using the [`/v1/auth-servers` endpoint](/api/konnect/kong-identity/v1/#/operations/createAuthServer):
+<!--vale off-->
+{% capture auth-server %}
+{% konnect_api_request %}
+url: /v1/auth-servers
+status_code: 200
+method: POST
+headers:
+  - 'Content-Type: application/json'
+body:
+  name: "Appointments Dev"
+  audience: "http://myhttpbin.dev"
+  description: "Auth server for the Appointment dev environment"
+{% endkonnect_api_request %}
+{% endcapture %}
+{{ auth-server | indent: 3 }}
+<!--vale on-->
+1. Export the auth server ID and issuer URL:
+   ```sh
+   export AUTH_SERVER_ID='YOUR-AUTH-SERVER-ID'
+   export ISSUER_URL='YOUR-ISSUER-URL'
+   ```
+1. Configure a scope in your auth server using the [`/v1/auth-servers/$AUTH_SERVER_ID/scopes` endpoint](/api/konnect/kong-identity/v1/#/operations/createAuthServerScope):
+<!--vale off-->
+{% capture scope %}
+{% konnect_api_request %}
+url: /v1/auth-servers/$AUTH_SERVER_ID/scopes 
+status_code: 200
+method: POST
+headers:
+  - 'Content-Type: application/json'
+body:
+  name: "my-scope"
+  description: "Scope to test Kong Identity"
+  default: false
+  include_in_metadata: false
+  enabled: true
+{% endkonnect_api_request %}
+{% endcapture %}
+{{ scope | indent: 3 }}
+<!--vale on-->
+1. Export your scope ID:
+   ```sh
+   export SCOPE_ID='YOUR-SCOPE-ID'
+   ```
+1. Configure a custom claim using the [`/v1/auth-servers/$AUTH_SERVER_ID/claims` endpoint](/api/konnect/kong-identity/v1/#/operations/createAuthServerClaim):
+<!--vale off-->
+{% capture claim %}
+{% konnect_api_request %}
+url: /v1/auth-servers/$AUTH_SERVER_ID/claims 
+status_code: 200
+method: POST
+headers:
+  - 'Content-Type: application/json'
+body:
+  name: "test-claim"
+  value: test
+  include_in_token: true
+  include_in_all_scopes: false
+  include_in_scopes: 
+  - $SCOPE_ID
+  enabled: true
+{% endkonnect_api_request %}
+{% endcapture %}
+{{ claim | indent: 3 }}
+
+1. Configure the client using the [`/v1/auth-servers/$AUTH_SERVER_ID/clients` endpoint](/api/konnect/kong-identity/v1/#/operations/createAuthServerClient):
+<!--vale off-->
+{% capture client %}
+{% konnect_api_request %}
+url: /v1/auth-servers/$AUTH_SERVER_ID/clients
+status_code: 201
+method: POST
+headers:
+  - 'Content-Type: application/json'
+body:
+  name: Client
+  grant_types:
+    - client_credentials
+  allow_all_scopes: false
+  allow_scopes:
+    - $SCOPE_ID
+  access_token_duration: 3600
+  id_token_duration: 3600
+  response_types:
+    - id_token
+    - token
+{% endkonnect_api_request %}
+{% endcapture %}
+{{ client | indent: 3 }}
+
+1. Export your client secret and client ID:
+   ```sh
+   export CLIENT_SECRET='YOUR-CLIENT-SECRET'
+   export CLIENT_ID='YOUR-CLIENT-ID'
+   ```
+{% endnavtab %}
+{% endnavtabs %}