From 9bb628b2a781c2a5a6df20b86a961005532b0bf1 Mon Sep 17 00:00:00 2001
From: AJ ONeal <aj@daplie.com>
Date: Wed, 18 Jan 2017 04:31:00 -0500
Subject: [PATCH] use otp as oauth2.password

---
 oauth3.core.js | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/oauth3.core.js b/oauth3.core.js
index 1328160..2af6f37 100644
--- a/oauth3.core.js
+++ b/oauth3.core.js
@@ -224,6 +224,13 @@
     var type = 'access_token';
     var grantType = 'password';
 
+    if (!passphrase) {
+      if (opts.otp) {
+        // for backwards compat
+        passphrase = opts.otp; // 'otp:' + opts.otpUuid + ':' + opts.otp;
+      }
+    }
+
     var scope = opts.scope || directive.authn_scope;
     var clientId = opts.appId;
     var clientAgreeTos = opts.clientAgreeTos;
@@ -232,8 +239,6 @@
     var params = {
       "grant_type": grantType
     , "username": username
-      // ('otp:' + opts.otpUuid + ':' + opts.otp)) // for backwards compat?
-      // ('totp:' + opts.totp) // for backwards compat?
     , "password": passphrase || undefined
     , "totp": opts.totp || opts.totpToken || undefined
     , "otp": opts.otp || opts.otpCode || undefined