I'm trying to implement AcceptHosted using an iFrame, but I'm stuck on
how to securely confirm the success of the payment. If I use the
redirect method, I can include a secret key in the continue/return URL
that proves that the call could only have c...