Another Channel Security Error Issue

GeorgeHaskett · ‎05-21-2014

Okay,

For some reason I can access mapservices from both the local state and university rest sites, however when I try to pull services from the following two sites I get the well loved channel.security.error

http://igems.doi.gov/arcgis/rest/services/igems_haz/MapServer
http://rmgsc.cr.usgs.gov/ArcGIS/rest/services/geomac_dyn/MapServer

[INDENT]Active Fire Bndries layer failed to load: Fault code: Channel.Security.Error

Fault info: Security error accessing url

Fault details: Destination: DefaultHTTP[/INDENT]

To add to the confusion, some of these services I was able to freely pull from last year now result in said error.

I am using Viewer for Flex 3.6 and ArcGIS for Server 10.2.

My crossdomain file reads as shown below when I type in the url: http://fbms2091/crossdomain.xml

[INDENT] <?xml version="1.0" encoding="utf-8" ?>
- <cross-domain-policy>
<allow-access-from secure="false" domain="*" />
<site-control permitted-cross-domain-policies="all" />
<allow-http-request-headers-from secure="false" domain="*" headers="*" />
</cross-domain-policy>[/INDENT]

Any suggestions?

Thanks, George

GISDev1 · ‎05-21-2014

Seems that both of those servers do have their crossdomain's set strict. You can probably find a contact and they can get your domain added to their list though.

http://igems.doi.gov/crossdomain.xml:

<cross-domain-policy><allow-access-from domain="*.gov"/><allow-access-from domain="*.doi.net"/><allow-access-from domain="*.mil"/><allow-access-from domain="*.us"/><allow-access-from domain="*.assurant.com"/><site-control permitted-cross-domain-policies="all"/><allow-http-request-headers-from domain="*" headers="*"/></cross-domain-policy>

http://rmgsc.cr.usgs.gov/crossdomain.xml:

<cross-domain-policy><allow-access-from domain="*.gov"/><allow-access-from domain="*.doi.net"/><allow-access-from domain="*.mil"/><allow-access-from domain="*.us"/><allow-access-from domain="*.assurant.com"/><site-control permitted-cross-domain-policies="all"/><allow-http-request-headers-from domain="*" headers="*"/></cross-domain-policy>

Regarding your own crossdomain.xml, that would only apply to others that are consuming your services in their flex applications.

View solution in original post

GISDev1 · ‎05-21-2014

Seems that both of those servers do have their crossdomain's set strict. You can probably find a contact and they can get your domain added to their list though.

http://igems.doi.gov/crossdomain.xml:

<cross-domain-policy><allow-access-from domain="*.gov"/><allow-access-from domain="*.doi.net"/><allow-access-from domain="*.mil"/><allow-access-from domain="*.us"/><allow-access-from domain="*.assurant.com"/><site-control permitted-cross-domain-policies="all"/><allow-http-request-headers-from domain="*" headers="*"/></cross-domain-policy>

http://rmgsc.cr.usgs.gov/crossdomain.xml:

<cross-domain-policy><allow-access-from domain="*.gov"/><allow-access-from domain="*.doi.net"/><allow-access-from domain="*.mil"/><allow-access-from domain="*.us"/><allow-access-from domain="*.assurant.com"/><site-control permitted-cross-domain-policies="all"/><allow-http-request-headers-from domain="*" headers="*"/></cross-domain-policy>

Regarding your own crossdomain.xml, that would only apply to others that are consuming your services in their flex applications.

GeorgeHaskett · ‎05-21-2014

GISDev01,

Thanks for the heads up on that one. I hadn't thought about their settings. I had assumed that if I could access their rest service site that I should be able to access their mapservices. That's what I get for assuming...

I'll follow up with them and see what response I can get back from them.

Thanks again,

George