https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21775#M11837 <P>I did not see the functionality implemented into the hosted CIM as you inquired.</P><P>&nbsp;</P><P>Yes, ideally a method should exist to better restrict the CIM profile management when using the hosted CIM.</P><P>&nbsp;</P><P>For instance, as a quick "feature request", you should be able to specify a set of allowed activities in the initial token generation request. Currently, anyone with any background knowledge of the hosted CIM, would have free reign over their CIM profile. Once their token is generated, and live for the next ~15 minutes, the individual can add/modify/delete their CIM payment and shipping profiles without restriction.&nbsp; Specific permissions should be defined with each token request, maybe only allowing the creation of a new payment profile, etc..</P><P>&nbsp;</P><P>In the mean time, I would recommend the use of CIM API calls as opposed to the hosted CIM. Just my two cents.</P><P>&nbsp;</P> Wed, 18 Jan 2012 05:15:50 GMT benjam1nrk 2012-01-18T05:15:50Z https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21723#M11811 <P>Is there any way to disable delete option for <STRONG>payment profile</STRONG></P> Tue, 17 Jan 2012 09:54:12 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21723#M11811 ankitchauhan 2012-01-17T09:54:12Z https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21729#M11814 <P>I would guess not. Why are you trying to do this?</P> Tue, 17 Jan 2012 14:43:02 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21729#M11814 TJPride 2012-01-17T14:43:02Z https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21775#M11837 <P>I did not see the functionality implemented into the hosted CIM as you inquired.</P><P>&nbsp;</P><P>Yes, ideally a method should exist to better restrict the CIM profile management when using the hosted CIM.</P><P>&nbsp;</P><P>For instance, as a quick "feature request", you should be able to specify a set of allowed activities in the initial token generation request. Currently, anyone with any background knowledge of the hosted CIM, would have free reign over their CIM profile. Once their token is generated, and live for the next ~15 minutes, the individual can add/modify/delete their CIM payment and shipping profiles without restriction.&nbsp; Specific permissions should be defined with each token request, maybe only allowing the creation of a new payment profile, etc..</P><P>&nbsp;</P><P>In the mean time, I would recommend the use of CIM API calls as opposed to the hosted CIM. Just my two cents.</P><P>&nbsp;</P> Wed, 18 Jan 2012 05:15:50 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/CIM-Hosted-popup-for-managing-payment-shipping/m-p/21775#M11837 benjam1nrk 2012-01-18T05:15:50Z