We currently have a one-page web sales page that sells one product at one price. The product is a downloadable product. Immediately after a successful transaction has been made, the buyer is directed to a 'thank you' page from where they can download the product.
We want to use our own Merchant account to process the transactions, rather than use PayPal encrypyed payment buttons or the Clickbank service.
Unfortunately, the only way that we can use our own Merchant account for this purpose is to have some HTML in the sales page with a POST to the payment processor. We have to pass various parameters to the payment processor via hidden fields within this FORM, such as our Merchant ID, value of the transaction, and also the location (URL) of the 'thank you' page i.e. the very page that we are trying to sell! This is all therefore visible to any visitor who uses 'View source'.
We think there should be a way to make this FORM information 'invisible' to a visitor by replacing the FORM HTML within the web page with a call to some sort of script.
Our sales page would then call that script, that in turn would actually do the job of sending the necessary parameters to our payment processor. So now the payment parameters would be stored in the script rather than directly in the webpage the visitor is viewing. Thus making the payment parameters that are currently visible to a curious visitor via ‘View source’ invisible.
The call of the script from our sales page would need to be somehow ‘locked’ to the sales page, so that the script can only be called by a click on this page, otherwise of course somebody could simply get the script url from ‘View source’ and run it or download it and get the payment parameters that way.
We are looking for somebody who can solve this problem for us, and write the script for us, which we will then use as a template for further sales pages.