DOCSP-35651 oidc atlasdatabaseuser example (#10)

* added oidc atlasdatabaseuser example

Author: kyuan-mongodb

source/atlasdatabaseuser-custom-resource.txt

@@ -266,6 +266,27 @@ specification with :ref:`X.509 authentication <ak8so-x509>`.
      projectRef:
        name: my-project
 
+Database User with |oidc| Authentication
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+The following example shows an ``AtlasDatabaseUser`` custom resource
+specification with |oidc|.
+
+.. code-block:: sh
+
+   apiVersion: atlas.mongodb.com/v1
+   kind: AtlasDatabaseUser
+   metadata:
+     name: my-database-user
+   spec:
+     roles:
+       - roleName: "readWriteAnyDatabase"
+         databaseName: "admin"
+     projectRef:
+       name: my-project
+     username: my-oidc-group-id/my-idp-group-name
+     oidcAuthType: IDP_GROUP
+
 Parameters
 ----------
 
@@ -292,6 +313,18 @@ to customize your specifications.
    If the database user authenticates with :ref:`X.509 <ak8so-x509>`, 
    this value must be ``\$external``.
 
+.. setting:: spec.oidcAuthType
+
+   *Type*: string
+
+   *Conditional*
+
+   |oidc| method by which the database authenticates the
+   provided :setting:`spec.username`. 
+   
+   If the database user authenticates with :manual:`OpenID Connect
+   </core/security-oidc>`, this value must be ``IDP_GROUP``.
+
 .. setting:: spec.passwordSecretRef
 
    *Type*: string
@@ -359,6 +392,10 @@ to customize your specifications.
    Human-readable label that identifies the user needed to authenticate 
    to the MongoDB database or collection.
 
+   If the database user authenticates with :manual:`OpenID Connect
+   </core/security-oidc>`, this value must be your |service| |oidc|
+   |idp| followed by a forward slash ``/`` and your |idp| group name.
+
 .. setting:: spec.x509Type
 
    *Type*: string