For the helm chart to become more production ready, it should allow for SSO configuration to be added as a secret on creation so that manual setup is not required in the UI.

This may end up being more of an application code change if it can't grab information based off of environment variables or config files. As of now, it appears that all SSO information is stored in the backend database after an API call is made through the UI. Maybe a job container that runs a curl command to the API endpoint with user provided OIDC or SAML details in a secret or configmap to auto configure for you?