[csharp] fix authorization header casing issue (#16622)

* Capitalise auth scheme irrespective of token_type capitalisation

* Changes from generate-samples.sh

* Add comment to change

modules/openapi-generator/src/main/resources/csharp/auth/OAuthAuthenticator.mustache

@@ -81,7 +81,17 @@ namespace {{packageName}}.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClient-ConditionalSerialization/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClient-net47/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClient-net48/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClient-net5.0/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClient/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClientCore/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }

samples/client/petstore/csharp/OpenAPIClientCoreAndNet47/src/Org.OpenAPITools/Client/Auth/OAuthAuthenticator.cs

@@ -89,7 +89,17 @@ namespace Org.OpenAPITools.Client.Auth
                 .AddParameter("client_id", _clientId)
                 .AddParameter("client_secret", _clientSecret);
             var response = await client.PostAsync<TokenResponse>(request).ConfigureAwait(false);
-            return $"{response.TokenType} {response.AccessToken}";
+            
+            // RFC6749 - token_type is case insensitive.
+            // RFC6750 - In Authorization header Bearer should be capitalized.
+            // Fix the capitalization irrespective of token_type casing.
+            switch (response.TokenType?.ToLower())
+            {
+                case "bearer":
+                    return $"Bearer {response.AccessToken}";
+                default:
+                    return $"{response.TokenType} {response.AccessToken}";
+            }
         }
     }
 }