I am configuring a proxy service secured with the policy wss10_x509_token_with_message_protection_service_policy. I have been able to configure it correctly and to test it with SoapUI.
I am facing difficulties with a security requirement, I need to be able to access attributes of the user's certificate, the one used to perform authentication in Weblogic, because I need to check the DN and the Serial Number of the certificate against a database, in an OSB's stage. Is it possible to map these X.509 attributes with the user that is managed from the OSB? Exploring the variable inbound I only see the name of the Weblogic's user: