https://community.developer.cybersource.com/t5/Integration-and-Testing/Hosted-CIM-token-as-get-parameter/m-p/52259#M27539 <P>Hi,</P><P>&nbsp;</P><P>We are building an integration where we use the CIM system so that we never have to handle the credit card details.</P><P>We would like to use the Hosted CIM so that the customer can enter the details directly into Authorize.NET.</P><P>However we do not have any website&nbsp;(We have a backend ERP system instead) so we are not able to do a POST request to the addPayments site.</P><P>Right now all the documentation that I can find states that you need to do a post redirect to the addPayment page but I would like to do a GET request instead where the token is a parameter. This way I could send a link by email to the customer asking them to add the credit card.</P><P>Do anyone know if this is possible?</P><P>&nbsp;</P><P>Basically I&nbsp;wanna do:&nbsp;<A href="https://secure.authorize.net/profile/addPayment?token=fds8uancf7sdfsnnfsdbfhsd" target="_blank">https://secure.authorize.net/profile/addPayment?token=fds8uancf7sdfsnnfsdbfhsd</A> but it does not seems possible.</P><P>&nbsp;</P><P>From a security standpoint this should be excatly as secure as the POST as the customer would be able to see the token in the HTML source anyway.</P> Tue, 22 Sep 2015 12:48:55 GMT mlpboyum 2015-09-22T12:48:55Z https://community.developer.cybersource.com/t5/Integration-and-Testing/Hosted-CIM-token-as-get-parameter/m-p/52259#M27539 <P>Hi,</P><P>&nbsp;</P><P>We are building an integration where we use the CIM system so that we never have to handle the credit card details.</P><P>We would like to use the Hosted CIM so that the customer can enter the details directly into Authorize.NET.</P><P>However we do not have any website&nbsp;(We have a backend ERP system instead) so we are not able to do a POST request to the addPayments site.</P><P>Right now all the documentation that I can find states that you need to do a post redirect to the addPayment page but I would like to do a GET request instead where the token is a parameter. This way I could send a link by email to the customer asking them to add the credit card.</P><P>Do anyone know if this is possible?</P><P>&nbsp;</P><P>Basically I&nbsp;wanna do:&nbsp;<A href="https://secure.authorize.net/profile/addPayment?token=fds8uancf7sdfsnnfsdbfhsd" target="_blank">https://secure.authorize.net/profile/addPayment?token=fds8uancf7sdfsnnfsdbfhsd</A> but it does not seems possible.</P><P>&nbsp;</P><P>From a security standpoint this should be excatly as secure as the POST as the customer would be able to see the token in the HTML source anyway.</P> Tue, 22 Sep 2015 12:48:55 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/Hosted-CIM-token-as-get-parameter/m-p/52259#M27539 mlpboyum 2015-09-22T12:48:55Z https://community.developer.cybersource.com/t5/Integration-and-Testing/Hosted-CIM-token-as-get-parameter/m-p/52304#M27580 <P>&nbsp;</P> <P>Hi <SPAN class="UserName lia-user-name lia-user-rank-Member"><A id="link_29" class="lia-link-navigation lia-page-link lia-user-name-link" href="https://community.developer.cybersource.com/t5/user/viewprofilepage/user-id/18962" target="_self"><SPAN class="">mlpboyum</SPAN></A></SPAN>,</P> <P>&nbsp;</P> <P>The hosted CIM can only be used and implemented if you have a website through a POST request, GET is not supported. The token expires after 15 minutes this is why this cannot be distributed in an email as a link.</P> <P>&nbsp;</P> <P>Thanks,</P> <P>Joy</P> Fri, 25 Sep 2015 20:00:27 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/Hosted-CIM-token-as-get-parameter/m-p/52304#M27580 Joy 2015-09-25T20:00:27Z