Not sure what is in your SWF. Is it pulling a FLV from somewhere? Is it being sized correctly? I'd make a simple animation SWF in Flash and try to see what is going on.
From: [email protected] [mailto:[EMAIL PROTECTED] On Behalf Of Terry Schussler Sent: Sunday, November 23, 2008 11:22 AM To: [email protected] Subject: [flexcoders] Security sandbox and two domains (note: First post here - waving hello to the collective consciousness!) OK, I'm stumped on something and after reading as much as I can find on the subject I'm looking here for a possible answer. Scenario: Site A and Site B are fully under my control. Flex application is running on Site A. Flash .swf files are on Site B. All files created in Flash 9 and with AS3 export settings. No scripting in these files whatsoever. .mp3 and .xml files are on Site B. Flex application wants to load .xml and .mp3s from Site B. Flex application wants to load .swfs from Site B and attach an internal movie clip to the display list. Site B has a cross-domain master policy file which provides permission to Site A. Flex application has the following code: Security.allowDomain("*.siteb.com"); Security.allowInsecureDomain("*.siteb.com"); Problem: Flex application can successfully load .xml from Site B Flex application can successfully load .mp3 from Site B --> Flex application appears to be streaming .swfs from Site B but they are rendered blank. Questions: Even though I'm essentially using the .swfs as data, I'm guessing that because I'm attempting to attach an internal movie clip to the Flex application's display list, the .swf is being treated as content instead? Is there any way to address this problem without having to add code to each .swf on Site B (there are hundreds)? Let's examine that Site B is an Amazon S3 store in the future. How might the solution change? It just seems to me that if someone wanted to put a bunch of non-interactive Flash content on S3, having to add a script to each one would be an unnecessary security chore. Thanks in advance for anyone's help on this. Terry
