Add support for displaying and managing legacy SSO providers (#628)

* feat: add support for displaying and managing legacy SSO providers

- Introduced UI section for environment/YAML-configured SSO providers.
- Added warnings and guidance on migrating legacy providers to database-backed configuration.
- Enhanced localization with new keys for legacy provider management.
- Updated form and toggle components for improved usability.

* Expand SSO documentation: add SAML 2.0 support, JIT provisioning settings, super-admin setup steps, audit logging, and user administration details.

* Update JIT provisioning docs: clarify role mapping behavior and add examples; note new `logout_idp` audit log event.

---------

Co-authored-by: Josh Waldrep <joshua.waldrep5+github@gmail.com>

app/controllers/admin/sso_providers_controller.rb

@@ -7,6 +7,12 @@ module Admin
     def index
       authorize SsoProvider
       @sso_providers = policy_scope(SsoProvider).order(:name)
+
+      # Load runtime providers (from YAML/env) that might not be in the database
+      # This helps show users that legacy providers are active but not manageable via UI
+      @runtime_providers = Rails.configuration.x.auth.sso_providers || []
+      db_provider_names = @sso_providers.pluck(:name)
+      @legacy_providers = @runtime_providers.reject { |p| db_provider_names.include?(p[:name].to_s) }
     end
 
     def show