I have been trying to use the KeyCloak proxy to authorize my client application.

In the application configurations, I have the option of setting the 'Client Protocol' to be either 'Saml' or 'OpenId-connect'. Although I have set it to both the options in my tests, I received the same response. It included 17 headers, which had KEYCLOAK_ACCESS_TOKEN, KEYCLOAK_SUBJECT, KEYCLOAK_USERNAME among others. No other useful information were included.

My question is, what is the difference I am supposed to expect in the responses between Saml and OpenId-Connect protocols? If I get a valid Saml response (XML), where is it exactly located?