have you tried adding the transport header activity in the routing and switch on the "pass all headers" option ?
I've tried that without any success...
I've been looking after the policy... As far as I have understood my problem is that the policy removes the header block after processing...
Now I'm trying to create a new policy that authenticates exactly the same as "oracle/wss_username_token_service_policy" but keeping the header in place...
Do anyone have already tried to do this?
I managed to do this by using the "inbound" variable from OSB.
The user after being validated in inserted into this variable and I created a autentication header that I inserted in the routing process.
transporting header setting is described here
but something is missing, I have to set proxy service Authentication to Basic. But then OSB authenticate inbound request at local scope and I want to authenticate at called web service level. How to do that?