What is corssdomain.xml file and what it does for FlashPlayer?
published at:9/15/2009, Flash & AS,
published by: she7ata
salam alikum and hello there ...
Did you tried to read or send/receive data from and to your Flash application and you receive the FlashPlayer security warning message ?, yes, it is all about security, Flash player doesn’t allow loading data from public servers unless a permission given.
To give the permission you need to use or create a simple xml file called crossdomain.xml and that's what flash will read to know what servers to connect to and what servers to allow.
If you do not want flash to display this warning message, you need to create this xml and add the trusted domains that allowed to access data, this file in general called a policy file, you will need to place this file on your remote server on your root directory so all flash application can access this policy file i.e
youserver/wwwroot/corssdomain.xml.
youserver/wwwroot/corssdomain.xml.
You will need to use corssdomain.xml file in those type of application that sends and receive data through an XMLsocket or even LoadVariables.
The routine is like the following.
When flash document request a data from another domain, flash player will look for the policy file and will read it, if the domain is included the flash player will continue loading or sending the data, if not, an error occur or nothing will return back in your player (normally undefined strings )
A policy file (corssdomain.xml) has two main nested tags <cross-domain-policy> and <allow-access-from>
In the allow-access-form node you can either type a domain name, or an ip address or even a wildcard
Example, to allow domain name like she7ata.com
<cross-domain-policy>
<allow-access-from>she7ata.com</allow-access-from>
</cross-domain-policy>
you can multiply tags or domains like
<cross-domain-policy>
<allow-access-from>she7ata.com</allow-access-from>
<allow-access-from>www.she7ata.com</allow-access-from>
<allow-access-from>www.aljazeera.net</allow-access-from>
</cross-domain-policy>
you can allow all domains by using the asterisk *
<cross-domain-policy>
<allow-access-from>*</allow-access-from>
</cross-domain-policy>
Good luck ISA.
categories
» recent posts
- Send And Upload Binary Bytes or Image from Flash with ActionScript 2.0
- Designers salaries in Egypt 2011
- Download logos directly, vector-logos.com site hack
- Etisalat Smart Net Router Type
- Unlock your Windows Mobile Without Touch Screen
- How to Bypass and Skip Calibrate or Align Screen on WM 6.5
- China phone folder structure
- Panasonic KM-MB1900CX Driver Download For Windows
- ماذا تعرف عن حياة الديزاينر!؟، بعض الخواطر
- Microsoft Open Door Event 2010, Egypt
� recent replies
- "Ahmed Khattab :
Kalamk MSA to7fa w kolooo sa7 :) MSA bgd and yoour work MSA is Great keep it up :)" - "ahmed :
When mymobiler connected to my phone, it tries to run an app that is unsigned and I've to press "YES ..." - "Tarek :
brilliant!! enta 2olt 7agat kteer awi kont 3ayz 2a2olha .. ana 7ases en ana elly kateb :D keep it ..." - "محمد مصطفى :
جزاك الله خيرا اللهم يسر لى الزواج ولجميع شباب المسلمين اللهم أميـــن ." - "Devilocke :
When I try to connect to the windows mobile device center, I get the message "Your device is current ..."
COMMENT(S)
ADD COMMENT