Re: SV: SV: [Flashcoders] flash 8 security hint
Hi Cedric, I recently had the same problem and the reason was because I was using the IP (hidden in the html object tag) to launch the app from the server, but the domain name to load the other SWF - so the security sandbox considered this a different domain of course. This happened because the domain name DNS was not propagated when the client asked us to begin development, but some time after the domain was working...and the domain was being used in an absolute path in one SWF. Clark ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
Re: SV: SV: [Flashcoders] flash 8 security hint
I dont have solution for you, but if you will send me sample of problem, i will write new post on my blog together with these 2 my posts (which still have no good solution except workaround with HTTP server) http://www.franto.com/blog2/flash8-security-problems http://www.franto.com/blog2/flash8-security-problems-still-no-solution maybe someone will read it on blog and will help you Franto http://blog.franto.com ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
Re: SV: SV: [Flashcoders] flash 8 security hint
Yes I already corrected "" around always (allways) ;) I am loading using an absolute path (http://www.mydomain/anyDir/ myLoadedFile.swf) and of course, no https ... so this is something very percise, but I cannot seem to get the concept...sigh my resolution for today: as I lost 1/2 day yesterday, I will put that aside, revert the files to flash 6 format, and keep on developing though it would have been nice to add some v8 effects to my 'app' ... and to be 2005 :-) I will get back to the list once I can show a sample of my problems ... ;) thanks Cedric You did try without the "'" around always...should have been: You probably already noticed that :) That would be my guess but your right in your assumptions though. What about creating a basic sample does that work for you? How are you loading swfB into swf A? Is it a relative url on https or so? Cheers Martin -Oprindelig meddelelse- Fra: [EMAIL PROTECTED] [mailto:flashcoders- [EMAIL PROTECTED] På vegne af Cédric Muller Sendt: 12. januar 2006 09:19 Til: Flashcoders mailing list Emne: Re: SV: [Flashcoders] flash 8 security hint Hi Martin! I tried and nothing new ... (spent the whole evening trying to understand) actually, all of these are on the same domain, so NO security restriction should arise ... then this works when published to flash player 6 format, hence meaning this is some funky 7 and/or 8 constraints ... then I read both technical papers (40 pages!!) and nothing I have been doing crossdomain.xml + other security things (even https) for more than 4 years now ... and I am all lost ;) all I know is that A.swf loads in B.swf which in turn calls a method on A.swf .. Cedric What about your tag? Does it contain the following param element ? /Martin Fra: [EMAIL PROTECTED] på vegne af Cédric Muller Sendt: on 11-01-2006 15:51 Til: Flashcoders@chattyfig.figleaf.com Emne: [Flashcoders] flash 8 security hint Could anyone tell me why A.swf can load B.swf, but B.swf cannot call scripts (php) ? all of these (A.swf, B.swf and scripts.php) are sitting on http://www.mydomain.com/anyDir/ and are Flash 8 swfs (though it is also failing with Flash 7 swfs. Works with Flash 6) I know about local OR network access, but as these files are all residing on the same URL, I am wondering what is fail the B.swf scripts execution ? ? Cedric ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
SV: SV: [Flashcoders] flash 8 security hint
You did try without the "'" around always...should have been: You probably already noticed that :) That would be my guess but your right in your assumptions though. What about creating a basic sample does that work for you? How are you loading swfB into swf A? Is it a relative url on https or so? Cheers Martin -Oprindelig meddelelse- Fra: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] På vegne af Cédric Muller Sendt: 12. januar 2006 09:19 Til: Flashcoders mailing list Emne: Re: SV: [Flashcoders] flash 8 security hint Hi Martin! I tried and nothing new ... (spent the whole evening trying to understand) actually, all of these are on the same domain, so NO security restriction should arise ... then this works when published to flash player 6 format, hence meaning this is some funky 7 and/or 8 constraints ... then I read both technical papers (40 pages!!) and nothing I have been doing crossdomain.xml + other security things (even https) for more than 4 years now ... and I am all lost ;) all I know is that A.swf loads in B.swf which in turn calls a method on A.swf .. Cedric > What about your tag? Does it contain the following param > element ? > > > > /Martin > > > > Fra: [EMAIL PROTECTED] på vegne af Cédric > Muller > Sendt: on 11-01-2006 15:51 > Til: Flashcoders@chattyfig.figleaf.com > Emne: [Flashcoders] flash 8 security hint > > > > Could anyone tell me why A.swf can load B.swf, but B.swf cannot call > scripts (php) ? > all of these (A.swf, B.swf and scripts.php) are sitting on > http://www.mydomain.com/anyDir/ > and are Flash 8 swfs (though it is also failing with Flash 7 swfs. > Works with Flash 6) > > I know about local OR network access, but as these files are all > residing on the same URL, I am wondering what is fail the B.swf > scripts execution ? > > ? > > Cedric > ___ > Flashcoders mailing list > Flashcoders@chattyfig.figleaf.com > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders > > > ___ > Flashcoders mailing list > Flashcoders@chattyfig.figleaf.com > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
Re: SV: [Flashcoders] flash 8 security hint
Hi Martin! I tried and nothing new ... (spent the whole evening trying to understand) actually, all of these are on the same domain, so NO security restriction should arise ... then this works when published to flash player 6 format, hence meaning this is some funky 7 and/or 8 constraints ... then I read both technical papers (40 pages!!) and nothing I have been doing crossdomain.xml + other security things (even https) for more than 4 years now ... and I am all lost ;) all I know is that A.swf loads in B.swf which in turn calls a method on A.swf .. Cedric What about your tag? Does it contain the following param element ? /Martin Fra: [EMAIL PROTECTED] på vegne af Cédric Muller Sendt: on 11-01-2006 15:51 Til: Flashcoders@chattyfig.figleaf.com Emne: [Flashcoders] flash 8 security hint Could anyone tell me why A.swf can load B.swf, but B.swf cannot call scripts (php) ? all of these (A.swf, B.swf and scripts.php) are sitting on http://www.mydomain.com/anyDir/ and are Flash 8 swfs (though it is also failing with Flash 7 swfs. Works with Flash 6) I know about local OR network access, but as these files are all residing on the same URL, I am wondering what is fail the B.swf scripts execution ? ? Cedric ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
SV: [Flashcoders] flash 8 security hint
What about your tag? Does it contain the following param element ? /Martin Fra: [EMAIL PROTECTED] på vegne af Cédric Muller Sendt: on 11-01-2006 15:51 Til: Flashcoders@chattyfig.figleaf.com Emne: [Flashcoders] flash 8 security hint Could anyone tell me why A.swf can load B.swf, but B.swf cannot call scripts (php) ? all of these (A.swf, B.swf and scripts.php) are sitting on http://www.mydomain.com/anyDir/ and are Flash 8 swfs (though it is also failing with Flash 7 swfs. Works with Flash 6) I know about local OR network access, but as these files are all residing on the same URL, I am wondering what is fail the B.swf scripts execution ? ? Cedric ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders ___ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
