Re: [flexcoders] Re: One last try: Javascript security

[Abdul Qabiz]

Let your installer create trust files. Which IMO should be very carefully done :)-abdulOn 6/15/06, FineLine <
[EMAIL PROTECTED]> wrote:








  


    
            







Hi Matt, drome.dario and Abdul

 

Thanks, you have pointed me in the right
direction. 

 

In case anyone else needs to know, there
seem to be 3 ways of enabling script access from local directories:

 


 Use
     the "Global Security Settings Panel" on the Macromedia website,
     and change from the default "Always Ask" to "Always
     Allow".


 

(Note: I have no idea where this setting
is stored locally. From the Flex documentation, I expect to see a file "mms.cfg"
in the Win32\Macromed\Flash directory, but it's not there. Also, "Always
Ask" doesn't seem to ask, but acts the same in this case as "Always
Deny". Also, this would open up security for all Flash applications. For
these reasons, I won't be using this approach.)

 


 Put
     a ".cfg" file (actually, the suffix doesn't seem to make
     a difference) containing the path of the local Flash application into the
     user directory Application Data\Macromedia\Flash
     Player\#Security\FlashPlayerTrust.


 


 As
     above, but for all users, put the file in System32\Macromed\Flash\FlashPlayerTrust.


 

These last two solutions allow for either an
installation for a single user, or for all users as an administrator.

 

Presumably, the directory locations named
above may at some stage change from Macromedia to Adobe – something to
watch for…

 

Phew! Got there in the end. Once again,
thanks to all who replied.

 

Cheers, Tim

 









From: 
flexcoders@yahoogroups.com [mailto:flexcoders@yahoogroups.com] 
On Behalf Of Matt Chotin
Sent: Thursday, 15 June 2006 9:33
AM
To: flexcoders@yahoogroups.com
Subject: RE: [flexcoders] Re: One
last try: _javascript_ security



 









You're right that the settings manager (or a trust file) will
be required for this if you want them to run off the local disk. I
double-checked with the Player security guy.

 

The docs should explain more about where trust files need to live
for the Player, if you have a real installer you should be able to drop a file
in there easily that would work for your users.

 

Matt

 









From: 
flexcoders@yahoogroups.com
[mailto:flexcoders@yahoogroups.com]
On Behalf Of drome.dario
Sent: Wednesday, June 14, 2006
6:26 AM
To: flexcoders@yahoogroups.com
Subject: [flexcoders] Re: One last
try: _javascript_ security



 







Now...
I'm wondering on how an installer program could config flash 
player in order to trust on a given set of files.

Any ideas?

Regards


















      

    
    












__._,_.___





--
Flexcoders Mailing List
FAQ: http://groups.yahoo.com/group/flexcoders/files/flexcodersFAQ.txt
Search Archives: http://www.mail-archive.com/flexcoders%40yahoogroups.com








   



    


  
  
    SPONSORED LINKS
  
          
                  
            
        Web site design development
      
                      
        Computer software development
      
                      
        Software design and development
      
              
                        
            
        Macromedia flex
      
                      
        Software development best practice
      
                    
           
  







  
  
  YAHOO! GROUPS LINKS



   Visit your group "flexcoders" on the web. 
   To unsubscribe from this group, send an email to: [EMAIL PROTECTED] 
   Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.



  






__,_._,___