Community
Select to view content in your preferred language

Alternate location for Crossdomain file, Different directory instead of Root.

1277
3
07-11-2011 08:10 PM
SobodhDangwal
by
Occasional Contributor
‎07-11-2011 08:10 PM
Hi There

Due to some security concerns I have to move the location of crossdomain file from root to some other location. The flex app works fine if it find the crossdomain at root but doesn't work if I store the crossdomain file at another location. I have tried to use Security.loadPolicyFile(url), Flash finds the crossdomin file but then ignores it.


As per the this post
http://forums.arcgis.com/threads/4351-crossdomain.xml-in-a-different-directory
I have set up a master policy file at root and the cross domain file at another location.

Can some one help, how to set up cross domain file at a different directory instead of root?
Tags (2)
0 Kudos
3 Replies
ThaoLe
by
Regular Contributor
‎07-15-2011 03:15 PM
Here's a link that might help you.

http://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html#site-control

"If a client is instructed to use a policy file in a location other than that of the master policy file, the client must first check the meta-policy of the master policy file to determine if the original policy file is allowed"
0 Kudos
SobodhDangwal
by
Occasional Contributor
‎07-18-2011 06:43 PM
Here's a link that might help you.

http://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html#site-control

"If a client is instructed to use a policy file in a location other than that of the master policy file, the client must first check the meta-policy of the master policy file to determine if the original policy file is allowed"


Hi There

Well that's exactly I am doing but it still doesn't seems to be working. Here is what I have done

At root I have got a cross domain file with meta policy

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
</cross-domain-policy>




At another location at the same server another cross domain file

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>

<allow-access-from domain="*"/>
</cross-domain-policy>


Now in the Flex code I have got
flash.system.Security.loadPolicyFile('URL to the location of non master cross domain file');
 

Is there any mistake in the meta policy here?

Thanks in advance.
0 Kudos
SobodhDangwal
by
Occasional Contributor
‎08-16-2011 03:00 PM
Any ideas?
0 Kudos