Hello,It seems Fediz tomcat plugin does not support EncryptedAssertion with SAML protocol.
Is there any way to enable this ? it seems tokenDecryptionKey is only consumed by wsfed protocol.
I will try to make a pull request, but seems harder than I though to support this.
Arnaud
