The sso url should be set to the URL you have configured on your SSO provider site to handle the Discourse SSO request.
Discourse’s implementation of SSO does not use OAuth. It’s possible that is what’s causing confusion.
What language or framework is your SSO provider site using? It’s possible there is already an implementation of SSO for it that you can use.