refactor(ui): extract ConfigureSSOWizard and lift data ownership to the host

[iagodahlem]

The <OrganizationProfile /> SSO surface is becoming a "Security" page that shows the connection state and launches the configuration wizard. This PR lays the structural foundation by separating the wizard (a pure flow) from its hosts (who own the data):

• New ConfigureSSOWizard — the pure, data-injected ConfigureSSO flow: the provider seeded with host-supplied data plus the step graph, now assembled in one place. It performs no fetching and never observes a loading state; hosts own data fetching, the loading skeleton, and permission gating.
• OrganizationSecurityPage now owns the data: it calls the enterprise-connection hook, gates loading and permissions, and injects the resolved data into the wizard. This is the seam the upcoming Security page overview builds on.
• The standalone ConfigureSSO component (internal mount / sandbox) keeps owning its own data through its private content wrapper — the shape a future public standalone export would wrap.
• The connection domain entity gains a status summary (unconfigured / in_progress / active / inactive): the display-facing lifecycle the Security page's badge/state model will read. The wizard's navigation guards keep reading the raw booleans.

No behavior change on either mount; empty changeset.

Part of ORGS-1603. Stacked on #8796.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
clerk-js-sandbox	Ready	Preview, Comment	Jun 10, 2026 3:24pm

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Repository YAML (base), Repository UI (inherited)

Review profile: CHILL

Plan: Pro

Run ID: 160d405a-38c5-4cb9-bc77-899ffeb40bb5

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[changeset-bot]

🦋 Changeset detected

Latest commit: 168e840

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 0 packages

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR