CyberSource
diff --git a/‎.env
+17-17 b/‎.env
+17-17
diff --git a/‎docs/Microform-Setup.md
+8-19 b/‎docs/Microform-Setup.md
+8-19
diff --git a/‎docs/Tokenization.md
+2-3 b/‎docs/Tokenization.md
+2-3
diff --git a/‎docs/unified-checkout/Tokenization.md
-48 b/‎docs/unified-checkout/Tokenization.md
-48
diff --git a/‎docs/unified-checkout/UnifiedCheckout-setup.md
+22-15 b/‎docs/unified-checkout/UnifiedCheckout-setup.md
+22-15
diff --git a/‎package.json
+2-2 b/‎package.json
+2-2
@@ -1,18 +1,18 @@
-CONFIG_PORT = 
+CONFIG_PORT =
 
 PAYMENT_GATEWAY_EXTENSION_DESTINATION_URL =
 PAYMENT_GATEWAY_EXTENSION_HEADER_VALUE =
 PAYMENT_GATEWAY_RUN_ENVIRONMENT =
 PAYMENT_GATEWAY_ENABLE_DEBUG =
 
-PAYMENT_GATEWAY_MERCHANT_ID = 
-PAYMENT_GATEWAY_MERCHANT_KEY_ID = 
-PAYMENT_GATEWAY_MERCHANT_SECRET_KEY = 
+PAYMENT_GATEWAY_MERCHANT_ID =
+PAYMENT_GATEWAY_MERCHANT_KEY_ID =
+PAYMENT_GATEWAY_MERCHANT_SECRET_KEY =
 
 PAYMENT_GATEWAY_TARGET_ORIGINS =
 PAYMENT_GATEWAY_VERIFICATION_KEY =
 PAYMENT_GATEWAY_CC_ALLOWED_CARD_NETWORKS =
-PAYMENT_GATEWAY_3DS_RETURN_URL =  
+PAYMENT_GATEWAY_3DS_RETURN_URL =
 PAYMENT_GATEWAY_SCA_CHALLENGE =
 PAYMENT_GATEWAY_ORDER_RECONCILIATION =
 PAYMENT_GATEWAY_WHITELIST_URLS =
@@ -22,25 +22,25 @@ PAYMENT_GATEWAY_APPLE_PAY_MERCHANT_ID =
 PAYMENT_GATEWAY_APPLE_PAY_CERTIFICATE_PATH =
 PAYMENT_GATEWAY_APPLE_PAY_KEY_PATH =
 
-PAYMENT_GATEWAY_ENABLE_RATE_LIMITER = 
-PAYMENT_GATEWAY_LIMIT_SAVED_CARD_RATE = 
+PAYMENT_GATEWAY_ENABLE_RATE_LIMITER =
+PAYMENT_GATEWAY_LIMIT_SAVED_CARD_RATE =
 PAYMENT_GATEWAY_SAVED_CARD_LIMIT_FRAME =
 
 PAYMENT_GATEWAY_DECISION_SYNC =
-PAYMENT_GATEWAY_DECISION_MANAGER =  
-PAYMENT_GATEWAY_RUN_SYNC = 
-PAYMENT_GATEWAY_DECISION_SYNC_MULTI_MID = 
-PAYMENT_GATEWAY_NETWORK_TOKEN_MULTI_MID = 
+PAYMENT_GATEWAY_DECISION_MANAGER =
+PAYMENT_GATEWAY_RUN_SYNC =
+PAYMENT_GATEWAY_DECISION_SYNC_MULTI_MID =
+PAYMENT_GATEWAY_NETWORK_TOKEN_MULTI_MID =
 
-PAYMENT_GATEWAY_UC_ALLOWED_PAYMENTS = 
-PAYMENT_GATEWAY_UC_BILLING_TYPE = 
+PAYMENT_GATEWAY_UC_ALLOWED_PAYMENTS =
+PAYMENT_GATEWAY_UC_BILLING_TYPE =
 PAYMENT_GATEWAY_UC_ENABLE_PHONE = 
 PAYMENT_GATEWAY_UC_ENABLE_EMAIL = 
-PAYMENT_GATEWAY_UC_ENABLE_NETWORK_ICONS = 
-PAYMENT_GATEWAY_UC_ENABLE_SHIPPING = 
-PAYMENT_GATEWAY_UC_ALLOWED_SHIP_TO_COUNTRIES = 
+PAYMENT_GATEWAY_UC_ENABLE_NETWORK_ICONS =
+PAYMENT_GATEWAY_UC_ENABLE_SHIPPING =
+PAYMENT_GATEWAY_UC_ALLOWED_SHIP_TO_COUNTRIES =
 
-PAYMENT_GATEWAY_SERVERLESS_DEPLOYMENT = 
+PAYMENT_GATEWAY_SERVERLESS_DEPLOYMENT =
 FUNCTIONS_HTTPWORKER_PORT =
 
 CT_PROJECT_KEY =
 
@@ -4,33 +4,22 @@ Microform Integration replaces the primary account number (PAN) or card verifica
 
 ## Setting Up the Client Side
 
-- Add the Microform Integration JavaScript library to your page by loading it directly from Cybersource and this can be achieved dynamically per environment by using the asset path returned in the JWT (JSON Web Token).
+- Add the Microform Integration JavaScript library to your page by loading it directly using the clientLibrary and clientLibraryIntegrity values provided in the `isv_clientLibrary` and `isv_clientLibraryIntegrity` custom fields from the Payment Create call.
 
-        ctx": [
-            {
-            "data": {
-            "clientLibrary": https://testflex.cybersource.com/microform/bundle/v2/flex-microform.min.js
-            ...
-
-  a. For Test Environment:
-
-        <script src="https://testflex.cybersource.com/microform/bundle/v2/flex-microform.min.js"></script>
-
-  b. For Production Environment:
-
-        <script src="https://flex.cybersource.com/microform/bundle/v2/flex-microform.min.js"></script>
+        <script src="[INSERT isv_clientLibrary VALUE HERE]" integrity="[INSERT isv_clientLibraryIntegrity VALUE HERE]" crossorigin="anonymous"></script>
 
 - Create the HTML placeholder objects to attach to the microforms.
 
-        <div id="numbercontainer" class="form-control"></div>
+        <div id="number-container" class="form-control"></div>
+        <div id="securityCode-container" class="form-control"></div>
 
-- Invoke the Flex SDK by passing the Capture Context that was generated in the Payment create call.
+- Invoke the Flex SDK by passing the Capture Context from `isv_tokenCaptureContextSignature` custom field from the Payment create call.
 
-        var flex = new Flex(captureContext);
+        var flex = new Flex(isv_tokenCaptureContextSignature);
 
 - Initiate the microform object with styling to match your web page.
 
-        var microform = flex.microform({ styles: myStyles });
+        var microform = flex.microform("card",{ styles: myStyles });
 
 - Create and attach the microform fields to the HTML objects through the Microform Integration JavaScript library.
 
@@ -46,4 +35,4 @@ Microform Integration replaces the primary account number (PAN) or card verifica
 
 Once the microform integration v2 is setup, you can continue to the [Process a Card Payment Without Payer Authentication](Process-a-Card-Payment-Without-Payer-Authentication.md) or [Process a Payment a Card Payment With Payer Authentication](Process-a-Card-Payment-With-Payer-Authentication.md) process.
 
-**_NOTE:_** For more details, refer [Microform Integration v2 Cybersource Documentation](https://developer.cybersource.com/docs/cybs/en-us/digital-accept-flex/developer/all/rest/digital-accept-flex/microform-integ-v2.html).
+**_NOTE:_** For more details, refer [Microform Integration v2 Cybersource Documentation](https://developer.cybersource.com/docs/cybs/en-us/digital-accept-flex/developer/all/rest/digital-accept-flex/microform-integ-v2.html).
@@ -37,10 +37,9 @@ Merchant Centre → Customers → Customer list → Select a Customer → Custom
     | ---------------------------------------------- | ------------ | -------- |
     | custom.fields.isv_tokenCaptureContextSignature | empty string | Yes      |
 
-2.  The response should have the `isv_tokenCaptureContextSignature` and `isv_tokenVerificationContext` custom fields.
-    Set the `isv_tokenCaptureContextSignature` custom field value to the captureContext of flex object which will load Cybersource Microform
+2.  The response should include `isv_tokenCaptureContextSignature`, `isv_tokenVerificationContext`, `isv_clientLibrary`, and `clientLibraryIntegrity`. The `isv_clientLibrary` and `isv_clientLibraryIntegrity` are obtained by decoding the capture context received from Cybersource. Additionally, set the `isv_tokenCaptureContextSignature` custom field value to the captureContext of the Flex object, which will load the Cybersource Microform.
 
-            flexInstance = new Flex(captureContext);
+            flexInstance = new Flex(isv_tokenCaptureContextSignature);
 
 3.  Use the Microform Integration v2 to tokenize card details. See <https://github.com/CyberSource/cybersource-flex-samples-node> for an example of how to use the captureContext obtained above and the Microform JS to tokenize a Card
 
 
@@ -1,7 +1,5 @@
 # Tokenization
 
-- [Tokenization with Microform](#Tokenization-with-Microform)
-
 - [Tokenization with Unified Checkout](#Tokenization-with-UnifiedCheckout)
 
 - [Customization-in-Tokenization](#customization-in-tokenization)
@@ -21,52 +19,6 @@ The customer saved tokens can be viewed in:
 
 Merchant Centre → Customers → Customer list → Select a Customer → Custom Fields
 
-# Tokenization with Microform
-
-## Tokenize a card
-
-1.  Tokenize Card details using Cybersource Microform v2
-
-    a. If there are no cards available, update the customer by creating a custom type with the following
-
-    | Property                                       | Value                        | Required |
-    | ---------------------------------------------- | ---------------------------- | -------- |
-    | custom.type.key                                | isv_payments_customer_tokens | Yes      |
-    | custom.fields.isv_tokenCaptureContextSignature | empty string                 | Yes      |
-
-    b. If there are tokens available already, update the customer by setting the following custom field
-
-    | Property                                       | Value        | Required |
-    | ---------------------------------------------- | ------------ | -------- |
-    | custom.fields.isv_tokenCaptureContextSignature | empty string | Yes      |
-
-2.  The response should have the `isv_tokenCaptureContextSignature` and `isv_tokenVerificationContext` custom fields.
-    Set the `isv_tokenCaptureContextSignature` custom field value to the captureContext of flex object which will load Cybersource Microform
-
-            flexInstance = new Flex(captureContext);
-
-3.  Use the Microform Integration v2 to tokenize card details. See <https://github.com/CyberSource/cybersource-flex-samples-node> for an example of how to use the captureContext obtained above and the Microform JS to tokenize a Card
-
-4.  After the card details are entered by the customer, ask the customer to add billing address for the card and update the customer by populating the following
-
-    | Property                              | Value                                            | Required | Notes                                                                                                                                                                                                                                                                                                                                                                        |
-    | ------------------------------------- | ------------------------------------------------ | -------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
-    | custom.fields.isv_token               | Cybersource flex token                           | Yes      | This is the token parameter passed into the callback for the microform.createToken call                                                                                                                                                                                                                                                                                      |
-    | custom.fields.isv_tokenAlias          | Alias for saved token                            | Yes      | When this is specified the token will be saved as a subscription for later use. Merchant can either provide a input text field asking for the customer to provide value for this field or a checkbox to select if the token needs be saved as a subscription for later use. In the latter case, Merchant should provide a unique value upon selecting the checkbox           |
-    | custom.fields.isv_maskedPan           | Masked Card number                        | No       | Can be obtained from the token parameter passed into the callback for the microform.createToken call. The token is a JWT which when decoded has a `flexData.content.paymentInformation.card.number.bin + flexData.content.paymentInformation.card.number.maskedValue` field containing the masked card number <br><br> Not required by extension but can be used for display |
-    | custom.fields.isv_cardType            | Card type                                 | No       | Can be obtained from the token parameter passed into the callback for the microform.createToken call. The token is a JWT which when decoded has a `flexData.content.paymentInformation.card.number.detectedCardTypes[0]` field containing the card type <br><br> Not required by extension but can be used for display                                                                        |
-    | custom.fields.isv_cardExpiryMonth     | Card expiry month                                | No       | Can be obtained from the token parameter passed into the callback for the microform.createToken call. The token is a JWT which when decoded has a `flexData.content.paymentInformation.card.expirationMonth.value` field containing the card expiration month <br><br> Not required by extension but can be used for display                                                 |
-    | custom.fields.isv_cardExpiryYear      | Card expiry year                                 | No       | Can be obtained from the token parameter passed into the callback for the microform.createToken call. The token is a JWT which when decoded has a `flexData.content.paymentInformation.card.expirationYear.value` field containing the card expiration year <br><br> Not required by extension but can be used for display                                                   |
-    | custom.fields.isv_addressId           | Id of the address added by customer for the card | Yes      |                                                                                                                                                                                                                                                                                                                                                                              |
-    | custom.fields.isv_currencyCode        | Currency code of the store                       | Yes      |                                                                                                                                                                                                                                                                                                                                                                              |
-    | custom.fields.isv_deviceFingerprintId | Customer device fingerprint Id                   | Yes      | Refer [Device Fingerprinting](Decision-Manager.md#device-fingerprinting) to generate this value                                                                                                                                                                                                                                                                              |
-
-5.  Wait for the updated response and verify the `custom.fields.isv_tokens` field
-
-6.  If token is created successfully, `custom.fields.isv_tokens` field will have updated tokens along with `custom.fields.is_customerId` with the customer id returned in response.
-
-7.  If there was an error, `custom.fields.isv_token`s field either be empty if there were no tokens available or will have the old tokens which were available before adding the new token. Also `custom.fields.isv_failedTokens` field will have all the failed card records if there was an error while adding the token
-
 # Tokenization with UnifiedCheckout
 
 1.  Use the client library asset path returned by the capture context response to invoke Unified Checkout on your page. To invoke the Unified Checkout JavaScript library using the JWT response from the capture context request, follow the instructions in the  document [Unified Checkout Setup](UnifiedCheckout-setup.md)
 
@@ -4,30 +4,41 @@ Unified Checkout provides a single interface with which you can accept numerous
 
 ## Unified Checkout Processing Sequence Diagram
 
-![Unified Checkout Processing flow](../images/Flow-Diagram-UnifiedCheckout.svg)
+![Unified Checkout Processing flow](./Flow-Diagram-UnifiedCheckout.svg)
 
 
 ## Setting Up the Client Side
 
-- To obtain the capture context, send a `GET` request to `{baseUrl}/captureContext`. This request requires authentication and must include an authentication header, which can be generated by making a `GET` request to `{baseUrl}/generateHeader`.
+- To obtain the `captureContextData`, `clientLibrary`, and `clientLibraryIntegrity`, you must first generate an authentication header. This is accomplished by sending a `GET` request to `{baseUrl}/generateHeader` and using the response to include the required authentication header for subsequent requests.
 
-- Use the client library asset path returned by the capture context response to invoke Unified Checkout on your page.
+- Once the header is generated, send a `GET` request to `{baseUrl}/captureContext`, ensuring that the request includes the previously generated authentication header. The response will contain the `captureContextData` provided by CyberSource.
 
-    Get the JavaScript library URL dynamically from the capture context response. When decoded, it appears in the JSON parameter clientLibrary as:
-    https://apitest.cybersource.com/up/v1/assets/x.y.z/SecureAcceptance.js
+- The `captureContextData` is decoded to extract the `clientLibrary` and `clientLibraryIntegrity` fields.
 
-    When you load the library, the capture context that you received from your initial server‑side request is used to invoke the accept function.
+- A sample response typically contains the `captureContextData`, `clientLibrary`, and `clientLibraryIntegrity` fields in JSON format, as shown below.
+
+    Example Response:
+
+        {
+          "captureContextData": "xxxx",
+          "clientLibrary": "xxxx",
+          "clientLibraryIntegrity": "xxxx"
+        }
+
+- Use the `clientLibrary` and `clientLibraryIntegrity` values from the capture context response to invoke Unified Checkout on your page.
+
+    When you load the library, use the capture context obtained from the GET request to `{baseUrl}/captureContext` as a parameter for invoking the accept function.
 
     Example: Initializing the SDK
 
-        <script src="https://apitest.cybersource.com/up/v1/assets/0.19.0/SecureAcceptance.js"></script>
+        <script src="[INSERT clientLibrary VALUE HERE]" integrity="[INSERT clientLibraryIntegrity VALUE HERE]" crossorigin="anonymous"></script>
         <script>
         Accept('header.payload.signature').then(function(accept) {
         // use accept object
         });
         </script>
 
-    header.payload.signature refers to the capture context JWT
+    header.payload.signature refers to the `captureContextData`.
 
 
 - Adding the Payment Application and Payment Acceptance
@@ -38,14 +49,12 @@ Unified Checkout provides a single interface with which you can accept numerous
 
         var authForm = document.getElementById("authForm");
         var transientToken = document.getElementById("transientToken");
-
-        var cc = document.getElementById("captureContext").value;
         var showArgs = {
          containers: {
           paymentSelection: "#buttonPaymentListContainer"
         }
         };
-        Accept(cc)
+        Accept(captureContextData)
          .then(function(accept) {
          return accept.unifiedPayments();
          })
@@ -63,15 +72,13 @@ Unified Checkout provides a single interface with which you can accept numerous
 
         var authForm = document.getElementById("authForm");
         var transientToken = document.getElementById("transientToken");
-
-        var cc = document.getElementById("captureContext").value;
         var showArgs = {
          containers: {
           paymentSelection: "#buttonPaymentListContainer",
           paymentScreen: "#embeddedPaymentContainer"
          }
         };
-        Accept(cc)
+        Accept(captureContextData)
          .then(function(accept) {
          // Gets the UC instance (e.g. what card brands I requested, any address information I pre-filled etc.)
          return accept.unifiedPayments(false);
@@ -100,4 +107,4 @@ The response to a successful customer interaction with Unified Checkout is a tra
 | Default   | creditCard or creditCardWithPayerAuthentication (depending on the payerAuth flag) | 
 
 
-**_NOTE:_** For more details, refer [Unified Checkout Cybersource Documentation](https://developer.cybersource.com/docs/cybs/en-us/digital-accept-flex/developer/all/rest/digital-accept-flex/uc-intro.html).
+**_NOTE:_** For more details, refer [Unified Checkout Cybersource Documentation](https://developer.cybersource.com/docs/cybs/en-us/digital-accept-flex/developer/all/rest/digital-accept-flex/uc-intro.html).
@@ -1,6 +1,6 @@
 {
   "name": "commercetools-extension",
-  "version": "24.3.1",
+  "version": "25.1.0",
   "description": "Payment Services Commercetools Extension",
   "main": "build/main/index.js",
   "typings": "build/main/index.d.ts",
@@ -103,7 +103,7 @@
     "@typescript-eslint/eslint-plugin": "^4.0.1",
     "@typescript-eslint/parser": "^4.0.1",
     "ava": "^6.1.3",
-    "eslint": "^7.8.0",
+    "eslint": "^7.32.0",
     "eslint-config-prettier": "^6.11.0",
     "eslint-plugin-eslint-comments": "^3.2.0",
     "eslint-plugin-functional": "^3.0.2",