I am working in a SAML project, implementing SSO to a company' website. We are working in the Service Provider part.
I have been talking with the Identity Provider part and they told me that we (as SP) are going to receive a <Request> when the SSO occurs. But I though that, in SSO, the SP always is going to receive a <Response> (not a Request).
Is there any situation (in SSO) that the Service Provider receive a SSO Request?