On 1/12/07, Steve Polk <[EMAIL PROTECTED]> wrote:
I mean, you can upload your very own SWF into our engine to be displayed in a controlled popup. This will allow people with animations, games, etc to join in the fun. The server scans the SWF for the size and builds the HTML wrapper to open the Flash content appropriately. I felt allowing the SWF to be inside the engine, like wallop does, would be too risky exposing some of the internal architecture to 3rd party developers. This could be nice for some, being able to reuse some of the existing data/framework. However, the risk of getting someone on with some knowledge and a little reverse engineering could wreak some major havoc on the DB!
Something like this should in theory be solvable by taking advantage of Flash's native cross-domain protection. Put all the user-uploaded SWFs on a separate domain, and then they will not be able to access/communicate with the parent SWF at all. The only issue is when you DO want some limited form of communication, I'm not sure how you'd do that. It's either all on, or all off. -David R
_______________________________________________ osflash mailing list [email protected] http://osflash.org/mailman/listinfo/osflash_osflash.org
