I am exploring different binding types of SAML Authentication. Here are my understandings:
- The SP will send an Artifact to the IdP and the IdP will send back the same Artifact to the SP. This is create an hand-shake between SP and IdP.
- The SP will now respond with the actual SAML corresponding to the Artifact through the back channel.
But the query is, in case of IdP initiated Artifact binding, how does the IdP knows the following:
- Which SP to poll?
- When to poll the SP?
- The Attribute Assertion SAML Message is on the SP side. So how will the IdP know about the corresponding Artifact without any prior communication from SP?