+ Added and Modified files for OAuth changes

Author: snavinch

docs/AccessTokenResponse.md

@@ -0,0 +1,14 @@
+# CyberSource.AccessTokenResponse
+
+## Properties
+Name | Type | Description | Notes
+------------ | ------------- | ------------- | -------------
+**accessToken** | **String** | Created JWT token. | [optional] 
+**tokenType** | **String** | Bearer. | [optional] 
+**refreshToken** | **String** | Newly created JWT token for initial request or if refresh token expired, else the same refresh token as in the request. | [optional] 
+**expiresIn** | **Number** | Number of seconds left till the access token gets expired. | [optional] 
+**scope** | **String** | List of permissions for APIs. | [optional] 
+**refreshTokenExpiresIn** | **Number** | Number of seconds left till the refresh token gets expired. | [optional] 
+**clientStatus** | **String** | Successful response can be returned only if client status is active. | [optional] 
+
+

docs/BadRequestError.md

@@ -0,0 +1,9 @@
+# CyberSource.BadRequestError
+
+## Properties
+Name | Type | Description | Notes
+------------ | ------------- | ------------- | -------------
+**error** | **String** |  | [optional] 
+**errorDescription** | **String** |  | [optional] 
+
+

docs/CreateAccessTokenRequest.md

@@ -0,0 +1,12 @@
+# CyberSource.CreateAccessTokenRequest
+
+## Properties
+Name | Type | Description | Notes
+------------ | ------------- | ------------- | -------------
+**clientId** | **String** | The client ID that you received when you registered your application in the CyberSource Business Center. This identifies your client application. | 
+**clientSecret** | **String** | The client secret that you received when you registered your application in the CyberSource Business Center. | 
+**grantType** | **String** | The grant type value determines which type of flow is used to obtain the access token. The first time your application requests a token, use the value `authorization_code`. When you use this value, you must also include the `code` field in the request. For subsequent request, use `refresh_token`. When you use this value, you must also include the `refresh_token` field in the request. Valid values: - authorization_code - refresh_token  | [optional] 
+**code** | **String** | This value is sent by CyberSource in the redirect URL. For security reasons, the code expires in 10 minutes. If it expires, you must repeat the redirect to request another. Conditional. This value is equired if grant_type is `authorization_code`. | [optional] 
+**refreshToken** | **String** | Conditional. Required if grant_type is `refresh_token`. | [optional] 
+
+

docs/OAuthApi.md

@@ -0,0 +1,59 @@
+# CyberSource.OAuthApi
+
+All URIs are relative to *https://api-ma.Cybersource.com*
+
+Method | HTTP request | Description
+------------- | ------------- | -------------
+[**createAccessToken**](OAuthApi.md#createAccessToken) | **POST** /oauth2/v3/token | Create access token and refresh token
+
+
+<a name="createAccessToken"></a>
+# **createAccessToken**
+> AccessTokenResponse createAccessToken(createAccessTokenRequest, opts)
+
+Create access token and refresh token
+
+This request is used by technology partners to obtain an access token and a refresh token, which are contained in the response.  The partner can then use the access token for authentication when submitting API requests to CyberSource on behalf of the merchant.   The request must include the authorization code that was included in the URL redirect response from CyberSource (see [full documentation](https://developer.cybersource.com/api/developer-guides/OAuth/cybs_extend_intro.html)). Access tokens expire after 15 minutes. The refresh token is used to create a new access token, it expires after one year. 
+
+### Example
+```javascript
+var CyberSource = require('CyberSource');
+
+var apiInstance = new CyberSource.OAuthApi();
+
+var createAccessTokenRequest = new CyberSource.CreateAccessTokenRequest(); // CreateAccessTokenRequest | Request payload
+
+var opts = { 
+  'vCClientCorrelationId': "vCClientCorrelationId_example" // String | We recommended that you submit this header with a unique value in every client request to this endpoint.  It is sent back in the response header and logged both in the request log and response log. 
+};
+
+var callback = function(error, data, response) {
+  if (error) {
+    console.error(error);
+  } else {
+    console.log('API called successfully. Returned data: ' + data);
+  }
+};
+apiInstance.createAccessToken(createAccessTokenRequest, opts, callback);
+```
+
+### Parameters
+
+Name | Type | Description  | Notes
+------------- | ------------- | ------------- | -------------
+ **createAccessTokenRequest** | [**CreateAccessTokenRequest**](CreateAccessTokenRequest.md)| Request payload | 
+ **vCClientCorrelationId** | **String**| We recommended that you submit this header with a unique value in every client request to this endpoint.  It is sent back in the response header and logged both in the request log and response log.  | [optional] 
+
+### Return type
+
+[**AccessTokenResponse**](AccessTokenResponse.md)
+
+### Authorization
+
+No authorization required
+
+### HTTP request headers
+
+ - **Content-Type**: application/x-www-form-urlencoded
+ - **Accept**: application/json;charset=utf-8
+

docs/ResourceNotFoundError.md

@@ -0,0 +1,9 @@
+# CyberSource.ResourceNotFoundError
+
+## Properties
+Name | Type | Description | Notes
+------------ | ------------- | ------------- | -------------
+**error** | **String** |  | [optional] 
+**errorDescription** | **String** |  | [optional] 
+
+

docs/UnauthorizedClientError.md

@@ -0,0 +1,9 @@
+# CyberSource.UnauthorizedClientError
+
+## Properties
+Name | Type | Description | Notes
+------------ | ------------- | ------------- | -------------
+**error** | **String** |  | [optional] 
+**errorDescription** | **String** |  | [optional] 
+
+

generator/cybersource-javascript-template/ApiClient.mustache

@@ -385,9 +385,9 @@
 
     var token = Authorization.getToken(this.merchantConfig, this.logger);
 
-    var clientId = getClientId();
+    // var clientId = getClientId();
 
-    headerParams['v-c-client-id'] = clientId;
+    // headerParams['v-c-client-id'] = clientId;
     
     // if (this.merchantConfig.getSolutionId() != null && this.merchantConfig.getSolutionId() != '') {  
       // headerParams['v-c-solution-id'] = this.merchantConfig.getSolutionId();
@@ -423,6 +423,11 @@
       this.logger.info('User-Agent : ' + headerParams['User-Agent']);
       this.logger.info(this.constants.END_TRANSACTION);
     }
+    else if (this.merchantConfig.getAuthenticationType().toLowerCase() === this.constants.OAUTH) {
+      token = 'Bearer ' + token;
+      headerParams['Authorization'] = token;
+      this.logger.info(this.constants.AUTHORIZATION + ' : ' + token);
+    }
 
     return headerParams;
   }
@@ -468,6 +473,7 @@
     var proxyPort = this.merchantConfig.getProxyPort();
     var proxyUser = this.merchantConfig.getProxyUser();
     var proxyPassword = this.merchantConfig.getProxyPassword();
+    var enableClientCert = this.merchantConfig.getEnableClientCert();
 
     var request = superagent(httpMethod, url);
 
@@ -483,6 +489,17 @@
       request.proxy(proxy); 
     }
 
+    var fslib = require('fs');
+    var pathlib = require('path');
+
+    if(enableClientCert)
+    {      
+      var certFile = pathlib.resolve(pathlib.join(this.merchantConfig.getClientCertDir(), this.merchantConfig.getSSLClientCert()));
+      var keyFile = pathlib.resolve(pathlib.join(this.merchantConfig.getClientCertDir(), this.merchantConfig.getPrivateKey()));
+      request.cert(fslib.readFileSync(certFile));
+      request.key(fslib.readFileSync(keyFile));
+    }
+
     // apply authentications
     this.applyAuthToRequest(request, authNames);
 
@@ -502,7 +519,11 @@
       || httpMethod.toLowerCase() === this.constants.PUT) {
       bodyParam = JSON.stringify(bodyParam, null, 0);
     }
-    headerParams = this.callAuthenticationHeader(httpMethod, requestTarget, bodyParam, headerParams);
+
+    if (this.merchantConfig.getAuthenticationType().toLowerCase() !== this.constants.MUTUAL_AUTH)
+    {
+      headerParams = this.callAuthenticationHeader(httpMethod, requestTarget, bodyParam, headerParams);
+    }
 
     // set header parameters
     request.set(this.defaultHeaders).set(this.normalizeParams(headerParams));
@@ -521,7 +542,9 @@
     }
 
     if (contentType === 'application/x-www-form-urlencoded') {
-      request.send(querystring.stringify(this.normalizeParams(formParams)));
+      request.type('form');      
+      formParams = bodyParam
+      request.send(JSON.parse(formParams));
     } else if (contentType == 'multipart/form-data') {
       var _formParams = this.normalizeParams(formParams);
       for (var key in _formParams) {

src/ApiClient.js

@@ -387,9 +387,9 @@
 
     var token = Authorization.getToken(this.merchantConfig, this.logger);
 
-    var clientId = getClientId();
+    // var clientId = getClientId();
 
-    headerParams['v-c-client-id'] = clientId;
+    // headerParams['v-c-client-id'] = clientId;
 
     // if (this.merchantConfig.getSolutionId() != null && this.merchantConfig.getSolutionId() != '') {  
       // headerParams['v-c-solution-id'] = this.merchantConfig.getSolutionId();
@@ -425,6 +425,11 @@
       this.logger.info('User-Agent : ' + headerParams['User-Agent']);
       this.logger.info(this.constants.END_TRANSACTION);
     }
+    else if (this.merchantConfig.getAuthenticationType().toLowerCase() === this.constants.OAUTH) {
+      token = 'Bearer ' + token;
+      headerParams['Authorization'] = token;
+      this.logger.info(this.constants.AUTHORIZATION + ' : ' + token);
+    }
 
     return headerParams;
   }
@@ -470,6 +475,7 @@
     var proxyPort = this.merchantConfig.getProxyPort();
     var proxyUser = this.merchantConfig.getProxyUser();
     var proxyPassword = this.merchantConfig.getProxyPassword();
+    var enableClientCert = this.merchantConfig.getEnableClientCert();
 
     var request = superagent(httpMethod, url);
 
@@ -484,6 +490,17 @@
       }
       request.proxy(proxy); 
     }
+    
+    var fslib = require('fs');
+    var pathlib = require('path');
+
+    if(enableClientCert)
+    {      
+      var certFile = pathlib.resolve(pathlib.join(this.merchantConfig.getClientCertDir(), this.merchantConfig.getSSLClientCert()));
+      var keyFile = pathlib.resolve(pathlib.join(this.merchantConfig.getClientCertDir(), this.merchantConfig.getPrivateKey()));
+      request.cert(fslib.readFileSync(certFile));
+      request.key(fslib.readFileSync(keyFile));
+    }
 
     // apply authentications
     this.applyAuthToRequest(request, authNames);
@@ -504,7 +521,10 @@
       || httpMethod.toLowerCase() === this.constants.PUT) {
       bodyParam = JSON.stringify(bodyParam, null, 0);
     }
-    headerParams = this.callAuthenticationHeader(httpMethod, requestTarget, bodyParam, headerParams);
+
+    if (this.merchantConfig.getAuthenticationType().toLowerCase() !== this.constants.MUTUAL_AUTH) {
+      headerParams = this.callAuthenticationHeader(httpMethod, requestTarget, bodyParam, headerParams);
+    }    
 
     // set header parameters
     request.set(this.defaultHeaders).set(this.normalizeParams(headerParams));
@@ -523,7 +543,9 @@
     }
 
     if (contentType === 'application/x-www-form-urlencoded') {
-      request.send(querystring.stringify(this.normalizeParams(formParams)));
+      request.type('form');      
+      formParams = bodyParam
+      request.send(JSON.parse(formParams));
     } else if (contentType == 'multipart/form-data') {
       var _formParams = this.normalizeParams(formParams);
       for (var key in _formParams) {

src/api/OAuthApi.js

@@ -0,0 +1,103 @@
+/**
+ * OAuth2 API
+ * OAuth2 Token Service (OAuth2)
+ *
+ * OpenAPI spec version: v3
+ *
+ * NOTE: This class is auto generated by the swagger code generator program.
+ * https://github.com/swagger-api/swagger-codegen.git
+ *
+ * Swagger Codegen version: 2.3.0
+ *
+ * Do not edit the class manually.
+ *
+ */
+
+(function(root, factory) {
+  if (typeof define === 'function' && define.amd) {
+    // AMD. Register as an anonymous module.
+    define(['ApiClient', 'model/AccessTokenResponse', 'model/BadRequestError', 'model/CreateAccessTokenRequest', 'model/ResourceNotFoundError', 'model/UnauthorizedClientError'], factory);
+  } else if (typeof module === 'object' && module.exports) {
+    // CommonJS-like environments that support module.exports, like Node.
+    module.exports = factory(require('../ApiClient'), require('../model/AccessTokenResponse'), require('../model/BadRequestError'), require('../model/CreateAccessTokenRequest'), require('../model/ResourceNotFoundError'), require('../model/UnauthorizedClientError'));
+  } else {
+    // Browser globals (root is window)
+    if (!root.CyberSource) {
+      root.CyberSource = {};
+    }
+    root.CyberSource.OAuthApi = factory(root.CyberSource.ApiClient, root.CyberSource.AccessTokenResponse, root.CyberSource.BadRequestError, root.CyberSource.CreateAccessTokenRequest, root.CyberSource.ResourceNotFoundError, root.CyberSource.UnauthorizedClientError);
+  }
+}(this, function(ApiClient, AccessTokenResponse, BadRequestError, CreateAccessTokenRequest, ResourceNotFoundError, UnauthorizedClientError) {
+  'use strict';
+
+  /**
+   * OAuth service.
+   * @module api/OAuthApi
+   * @version v3
+   */
+
+  /**
+   * Constructs a new OAuthApi. 
+   * @alias module:api/OAuthApi
+   * @class
+   * @param {module:ApiClient} apiClient Optional API client implementation to use,
+   * default to {@link module:ApiClient#instance} if unspecified.
+   */
+  var exports = function(configObject, apiClient) {
+    this.apiClient = apiClient || ApiClient.instance;
+
+	this.apiClient.setConfiguration(configObject);
+	
+
+    /**
+     * Callback function to receive the result of the createAccessToken operation.
+     * @callback module:api/OAuthApi~createAccessTokenCallback
+     * @param {String} error Error message, if any.
+     * @param {module:model/AccessTokenResponse} data The data returned by the service call.
+     * @param {String} response The complete HTTP response.
+     */
+
+    /**
+     * Create access token and refresh token
+     * This request is used by technology partners to obtain an access token and a refresh token, which are contained in the response.  The partner can then use the access token for authentication when submitting API requests to CyberSource on behalf of the merchant.   The request must include the authorization code that was included in the URL redirect response from CyberSource (see [full documentation](https://developer.cybersource.com/api/developer-guides/OAuth/cybs_extend_intro.html)). Access tokens expire after 15 minutes. The refresh token is used to create a new access token, it expires after one year. 
+     * @param {module:model/CreateAccessTokenRequest} createAccessTokenRequest Request payload
+     * @param {Object} opts Optional parameters
+     * @param {String} opts.vCClientCorrelationId We recommended that you submit this header with a unique value in every client request to this endpoint.  It is sent back in the response header and logged both in the request log and response log. 
+     * @param {module:api/OAuthApi~createAccessTokenCallback} callback The callback function, accepting three arguments: error, data, response
+     * data is of type: {@link module:model/AccessTokenResponse}
+     */
+    this.createAccessToken = function(createAccessTokenRequest, opts, callback) {
+      opts = opts || {};
+      var postBody = createAccessTokenRequest;
+
+      // verify the required parameter 'createAccessTokenRequest' is set
+      if (createAccessTokenRequest === undefined || createAccessTokenRequest === null) {
+        throw new Error("Missing the required parameter 'createAccessTokenRequest' when calling createAccessToken");
+      }
+
+
+      var pathParams = {
+      };
+      var queryParams = {
+      };
+      var headerParams = {
+        'v-c-client-correlation-id': opts['vCClientCorrelationId']
+      };
+      var formParams = {
+      };
+
+      var authNames = [];
+      var contentTypes = ['application/x-www-form-urlencoded'];
+      var accepts = ['application/json;charset=utf-8'];
+      var returnType = AccessTokenResponse;
+
+      return this.apiClient.callApi(
+        '/oauth2/v3/token', 'POST',
+        pathParams, queryParams, headerParams, formParams, postBody,
+        authNames, contentTypes, accepts, returnType, callback
+      );
+    }
+  };
+
+  return exports;
+}));

src/authentication/core/Authorization.js

@@ -3,6 +3,7 @@
 var Constants = require('../util/Constants');
 var HttpSingToken = require('../http/HTTPSigToken');
 var JWTSigToken = require('../jwt/JWTSigToken');
+var OAuthToken = require('../oauth/OAuthToken');
 var ApiException = require('../util/ApiException');
 
 /**
@@ -14,6 +15,7 @@ exports.getToken = function(merchantConfig, logger){
     var authenticationType = merchantConfig.getAuthenticationType().toLowerCase();
     var httpSigToken;
     var jwtSingToken;
+    var oauthToken;
 
     if(authenticationType === Constants.HTTP) {
         httpSigToken = HttpSingToken.getToken(merchantConfig, logger);
@@ -23,6 +25,10 @@ exports.getToken = function(merchantConfig, logger){
         jwtSingToken = JWTSigToken.getToken(merchantConfig, logger);
         return jwtSingToken;
     }
+    else if(authenticationType === Constants.OAUTH) {
+        oauthToken = OAuthToken.getToken(merchantConfig, logger);
+        return oauthToken;
+    }
     else{
         ApiException.ApiException(Constants.AUTH_ERROR, logger);
     }