Hi!I have build a map application with Arcgis flex 3.2 and right now im trying to add a wms layer as a basemap in my applicationIn Flexbuilder everything works fine when I run it. But when I build it and move the release folder into my application server i got error messenger as below:SecurityError: Error #2170: Security sandbox violation: http://apparcgis01/karta/e/index.swf cannot send HTTP headers to http://maps.lantmateriet.se/ortofoto-ar/wms/v1?VERSION=1%2E3%2E0&SERVICE=WMS&REQUEST=GetCapabilities.
at MethodInfo-3067()
at mx.rpc::AsyncResponder/fault()
at mx.rpc::AsyncToken/http://www.adobe.com/2006/flex/mx/internal::applyFault()
at mx.rpc.events::FaultEvent/http://www.adobe.com/2006/flex/mx/internal::callTokenResponders()
at mx.rpc::AbstractInvoker/http://www.adobe.com/2006/flex/mx/internal::dispatchRpcEvent()
at HTTPOperation/http://www.adobe.com/2006/flex/mx/internal::dispatchRpcEvent()
at mx.rpc::AbstractInvoker/http://www.adobe.com/2006/flex/mx/internal::faultHandler()
at mx.rpc::Responder/fault()
at mx.rpc::AsyncRequest/fault()
at DirectHTTPMessageResponder/securityErrorHandler()
at flash.events::EventDispatcher/dispatchEventFunction()
at flash.events::EventDispatcher/dispatchEvent()
at flash.net::URLLoader/redirectEvent()
in config.xml the code is as below: <!-- Backgrunskartan -->
<basemaps>
<layer label="Bakgrundkarta" type="tiled" visible="true" alpha="1"
url="http://apparcgis01.kumla.internal:6080/arcgis/rest/services/baskarta/Karta/MapServer"/>
<layer label="Flygfoto 2013 Kumla Tätort" type="tiled" visible="false" alpha="1"
url="http://apparcgis01.kumla.internal:6080/arcgis/rest/services/baskarta/Flygbilder/MapServer"/>
<layer label="Flygfoto 2010 kumla kommun" type="wms" username="xxx" password="xxx"
url="http://maps.lantmateriet.se/ortofoto-ar/wms/v1?" version="1.1.0" visible="false"
wkid="3006" visiblelayers="orto_2010"/>
</basemaps>
in my IIS, root, crosssdomain.xml the code is as below:<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*"/>
<site-control permitted-cross-domain-policies="all"/>
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>
Does anyone know what is wrong with my application?