In this scenario, a user is logged on to the Identity Provider (IDP)
and attempts to access a resource on a remote SP
server. The SAML Assertion
is transported to the SP
via HTTP POST.
There might be more information for this subject on one of the following: