Django-oscar

- Add support for Django 1.11 and Oscar 1.5

- Improve testing with tox.

- Upgrade dependencies.

- Make ``DecisionManagerNotificationView`` directly set order status instead of relying on the ``set_status`` method. This avoids issues with order status pipelines.
- Add optional ``CYBERSOURCE_DECISION_MANAGER_KEYS`` keys setting to allow token-based authentication on the decision manager web hook endpoint.
- Default is disabled, which equates to disabled authentication.
- To enable authentication, set it to a list of valid authentication keys/tokens.
- When enabled, the ``DecisionManagerNotificationView`` view will inspect the ``key`` query parameter on incoming requests and compare it to the predefined keys in the setting. If it doesn't match one of the keys, the request is aborted.

- Make sure amounts sent to Cybersource are always properly quantized

- Support flagging authorizations for review with Decision Manager
- Transactions under review are marked with status `REVIEW`.
- Adds new boolean property to payment.Transaction model: `transaction.is_pending_review`.
- When handling an authorization that is pending review in Decision Manager, a note is added to the order.