As far as I know, there's not a secure way to pass the token through the entire process. I would just pass a collection of the claims through each step since authentication is done in the first step of the process, and authorization is the only thing that matters after that. For Service Bus, the claims can be passed somewhere in the content data or in the custom properties.