0

I am trying to add a crossdomain file for my flash project...haven't done it before..and there are not too much information online....Anyone can help me about it??Thanks

FlyingCat
  • 14,036
  • 36
  • 119
  • 198
  • This should be closed, you've essentially duplicated this question here: http://stackoverflow.com/questions/3454372/how-to-use-crossdomain-xml-for-my-flash-project and of all things to say there is little online information, crossdomain files are extremely well documented. You're currently just expecting a crossdomain file to do something it is not designed to do and thus can't find any documentation on -that- nonexistent functionality. – Aaron Aug 11 '10 at 03:53

2 Answers2

3

Here is a copy of one that works for me
crossdomain.xml:

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
    <cross-domain-policy>
        <allow-access-from domain="*" />
    </cross-domain-policy>

this is in my document root folder http://mysite.com/
security sucks but it will get you up and running. If you want to only connections from one domain, change "*" to "http://my-allowed-domain.com"
my permissions on the file are also really strict 644. Just make it readable. good luck!

mraaroncruz
  • 3,780
  • 2
  • 32
  • 31
  • Do I have to do anything in my flash project or I just need to place it in my server?? It's not working when I only put it in the server...+1 though – FlyingCat Aug 10 '10 at 22:03
  • you can add System.security.loadPolicyFile("http://yourdomain.com/crossdomain.xml"); to your flash file. I have had problems with the Flash IDE caching stuff so I recommend, if you have problems, to sometimes restart Flash (if you are using the Flash IDE). This whole thing has seemed pretty buggy to me sometimes. But, it's probably just me ;) – mraaroncruz Aug 10 '10 at 22:41
  • -What- is not working? What are you trying to gain by having a crossdomain file on your server? – Aaron Aug 11 '10 at 03:45
  • I am trying to gain access from youtube video. well...let me show you my project. http://www.popslinger.org/vevoRevised/index.html you will see the runtime error.. – FlyingCat Aug 11 '10 at 16:43
  • seems to be working now! PS. I thought it said pooslinger.org :) – mraaroncruz Aug 11 '10 at 22:31
  • This answer's upvotes make me sad. Crossdomain policies exist for a reason: to prevent security breaches. Telling someone to use an open policy without even knowing what the problem is is like telling them to fix a connectivity problem by removing their firewall. – fenomas Aug 12 '10 at 07:25
  • I guess I should have been more specific with "security sucks but it will get you up and running. If you want to only connections from one domain, change "*" to "http://my-allowed-domain.com""? cheer up dude. – mraaroncruz Aug 14 '10 at 08:04
1

There's no substitute for reading and understanding the recommendations and articles, and determining how much access you want to allow (or posting a lot more information so we can give accurate advice). If you just put up an "allow everything" policy in order to get your application working, you potentially compromise several kinds of security your site might implement.

fenomas
  • 11,131
  • 2
  • 33
  • 57