I maintain a Cordova native app (an ios/android app built with HTML/JS/CSS) and I'd like to use Payeezy to display a hosted payment page in an iframe, have the user enter their CC info, submit the form, and then pass a token back to our server via the redirect. The reason this approach is desirable is that it keeps our PCI scope to the minimum (for reference, this is essentially the minimum PCI API that is offered by Stripe and Braintree and others).
Is this even possible? I feel like I'm so close to the solution: I have a hosted payment page in an iframe that's doing an AUTH_ONLY payment, and I could theoretically capture that on the server later, but the problem is we want to be able to _save_ the payment information for later random use (i.e. the next time the customer uses our app) as opposed to a recurring payment that has to exist ahead of time.
Am I missing anything? What are my options?
Thanks in advance,