ActionScript 3.0 :: Security Error While Flash File Accessing An Http Service
Jul 13, 2010
i'm trying to integrate with a plain http service which has both http/https flavors available for consumption. sadly they never thought of a flash client consuming these services and it will take another 6 months to roll a crossdomain xml policy file on their service (there security team has to approve the process, pm team has to include it in their roadmap and blah blah). i've already implemented the flash client which works fine from a flash ide security sandbox. is it possible to get around this crossdomain policy requirement.
my flash file will always be hosted as [URL] and i will be communicating with [URL]. i'm saying [URL] because they do some loadbalancing at the backend and allocate random servers on connection (which is fine from their server side design perspective). I tried putting following two lines in the constructor of my movie clip, but couldn't pass through the security sandbox error:
View 2 Replies
Similar Posts:
Mar 16, 2010
I am building a little Flash app that will consume some web services over HTTP. When I am in Flexbuilder and run my app there, it works fine. When I goto to my FlexBuilder project on my OS and double-click on it, it works fine. When I zip up my bin-debug file, I get this error:
Security error accessing url faultCode:Channel.Security.Error faultString: 'Security error accessing url' faultDetail:'Destination: DefaultHTTP'
So I googled that and got information on about the crossdomain.xml file. Well, I can't put a crossdomain file in the service I am calling, but I can put one somewhere else. So I put the following lines in Flex app:
Security.allowDomain("vx1391");
Security.loadPolicyFile("http://vx1391:8080/job/Remote%20FIT%20Runner/ws/trunk/flash-cross-domain.xml");
[Code]....
Which I know is bad in a prod enivironment, but right now I just need to get this working locally but outside of FlexBuilder.
View 1 Replies
Dec 17, 2010
I'm trying a simple tutorial of retrieving RSS feeds from yahoo and keep getting this error: RPC Fault faultString="Security error accessing url" faultCode="Channel.Security.Error" faultDetail="Destination: DefaultHTTP" I've seen some articles that say I need a crossdomain.xml file, but I don't really know how to set this file up and how to use it from the Flex SDK compiler (mxmlc).
View 1 Replies
Feb 22, 2011
I have built a FB4 application which accesses a .NET web service of a partner company. The app runs just fine in FB4 development environment, but won't work when published to my server. I can not figure out how to get past the following error: Security error accessing url Destination: DefaultHTTP It is unlikely that I will get a crossdomain.xml file on their server, so I'm trying to get it to work using a proxy. The proxy.php is located in the same directory as the swf, and it works just fine if I use it directly in the browser.
The following is what I currently have setup:
proxy.php:
<?php
$session = curl_init(trim(urldecode($_GET['url']))); // Open the Curl session
curl_setopt($session, CURLOPT_HEADER, false); // Don't return HTTP headers
curl_setopt($session, CURLOPT_RETURNTRANSFER, true); // Do return the contents of the call
[code]....
View 3 Replies
Mar 7, 2011
we have an internal webservice developed in our company and i have connected that web service using flex and am able to get all the methods/operations from that service. but wen i try to get data from methods i get the following error msg while running the applicationSecurity error accessing urlUnable to load WSDL. If currently online, verify the URI and/or format of the WSDL (http://ispl30:8080/MGEMWS/MGEMWS?wsdl)am not able to figure out what the problem is?
View 1 Replies
Feb 15, 2011
I am very new to flex, i have created a simple login page in flex and created a webproject in Eclipse having a jsp page. i have put that jsp page in tomcat webapps. Now when i run an application of login from FlashBuilder it runs fine as i have given the ip e.g [url]... and passing it as a url in HttpService and it worked fine. but when i put my login.swf file in webapps same in that folder where that jsp resides and un e.g [url]... it displays the page but when i click on the login button it gives me with this error "Security error accessing url"
View 2 Replies
Jul 28, 2011
[code]Now, the above code works fine for some people using our software while others are experiencing the following error ( in faultHandler() ):[code Again, the error happens to some people and not for others.Have I missed something? Would it be a machine / browser specific problem? As a sanity check the above code works with the same .swf file in chrome, ie, firefox and safari.I have read about the crossdomain.xml and don't think that is the issue as YouTube have that defined.Finally, all users (intranet app) are using IE and the same version of flash.I have been pulling my hair out the past 2 days and asking the question over and over again "Why is it only happening for some users and not for other users?"
View 2 Replies
Sep 11, 2011
I had this error in a Flex Application that I couldn't figure out. Every time the app attempted to access the Web Service it returned the error Security Error Accessing URL.
View 1 Replies
Mar 5, 2008
I get following error: Error #2044: Unhandled securityError:. text=Error #2048: Security sandbox violation: [URL] cannot load data from 192.168.3.5:4854. at TicTacToe_fla::MainTimeline/TicTacToe_fla::frame1() ". I tryed to solve this problem about 3 hours, but I failed I have the file crossdomain.xml in the same folder like my .swf file on the server with this content:
[Code]...
View 7 Replies
Jan 22, 2012
I have some audio streaming resources on my HTTP server, let's sayI did design a flash player for playing it.Their player will try to reload that resource until it's available.This makes a lots of stress to my HTTP server. To stop them from hamming my server, I want to allow access only from my flash player. Strangely, I think in this case, flash player should check the crossdomain.xml first before load my audio resource, but they didn't. They just load the sound and play. The corssdomain.xml is not even there. I try to add one, it doesn't work as well
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
[code].....
View 2 Replies
Dec 8, 2011
I wrote an app using adobe flash builder that makes an http data service call to a website.
When I build and launch the app it loads in my browser (the address in the broswer is C:Userspath omyapp.html) and works perfectly. However, when I upload the app to my website or even launch it from outside the project build directory, the HTTP service call fails with the popup
Security error accessing url
Destination: DefaultHTTP
Of course I googled this error and realized it may have something to do with a 'crossdomain.xml' in my web root directory. I tried this and it continued to fail.
Below was my crossite domain file
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.my_domain_for_http_service.com" />
</cross-domain-policy>
I'm using the free trial version of Adobe flash builder, but I do not see anything indicating that this has to do with the error.
Data from http service call is in xml format.
View 1 Replies
Feb 26, 2012
I have two Flash files: pre-loader and application.
Pre-loader: (D:ProjectsFlashAppsddedd.fla) is doing basically this:
var mRequest:URLRequest = new URLRequest("http://localhost/flash/dd.swf");
mLoader.load(mRequest);
}
Application file: (D:ProjectsFlashAppsdddd.fla) is the real application and among other things is doing this:
_loader.load(_request); //where _request = "assets/html/style.css".
When debugging the pre-loader, at this point I am getting an error which says:
SecurityError: Error #2148 File SWF http://localhost/flash/dd.swf cannot access local resource file:///D|/Projects/FlashApps/dd/assets/html/style.css.
The application must be loaded by the pre-loader, it won't start when called directly. But apparently, the security settings are preventing such duo from being possible to debug. Normally when it is on a remote server, it is working ok.
What I have done so far to resolve it:
Added crossdomain.xml to my local i:xampphtdocs folder:
> <?xml version="1.0"?>
> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
[Code]....
Set File > Publish Settings -> Local Playback Security -> "Use local files only" in both files. It didn't work, so I set it to "Use network only" Also didn't work.
What else can be done to be able to debug these Flash files locally?
View 1 Replies
Dec 20, 2009
I'm having trouble with an AS3 AMF RemoteObject request that is hosted on App Engine. I have a crossdomain.xml file in the root of the domain, and also one at the remoting endpoint.Here are the contents of the root crossdomain.xml:
<?xml version="1.0"?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies ="all"/>[code].....
Loading the swf file and testing it on my machine works just fine... I think that may have something to do with me having the debugger version of Flash Player. When I push it up to App Engine to make it public, other clients access it and get a Client.Error.MessageSend Channel.Security.Error error Error #2048 url: http:[url].......I am using Flex 4 beta, and the App Engine Python runtime. I have tried full wildcard in the crossdomain, and even accessing the data endpoint at a relative URL so as to avoid this error.
View 1 Replies
Apr 8, 2011
I want to distribute an SWF file to be run on computers, not the internet.However, I want to be able to access the internet through a link controlled by a button.This used to work, now I get a security warning telling me I need to change the settings on my computer.For obvious reasons I don't want to make every person who runs the swf file to have to do that!Under Windows I can create an EXE file that does not create the security warning, but on the Mac that won't help.
View 2 Replies
Jan 25, 2012
I am trying to load a swf file which contains xml based image gallery on 25th frame of the timeline inside flash professional cs5.5 using actionscript 3. while doing so i'm getting this error "SecurityError: Error #2000: No active security context". Below is the as3 code:
stop();
import flash.net.URLRequest;
import flash.display.Loader;[code]........
View 1 Replies
Jul 21, 2009
I am trying my first flex application. And have a problems adding data from xml http service to datagid.
My xml file looks like this:
<players>
<player>
<name>test</name>
[Code]....
The problem is that nothing is shown in the datagrid
View 1 Replies
Aug 6, 2009
I need to call an HTTP service using Flex that has variable arguments. I'm using Flash Builder 4 (Gumbo) to create the service definition, but there's no UI for variable arguments, and the subclass of HTTPServiceWrapper that it creates doesn't seem to support it.
View 1 Replies
Apr 20, 2009
I am using the XML/MX/Syndication libraires and getting a Security Error #2048 error. The error seems unreasonable to me in that there is no forward solution to it on the Internet. I have tried hardcoding security methods in AS 3 and also using a crossdmain.xml file in my root directory to no success. I am about to give up and use pure PHP. There should be a more simple solution to this.
View 11 Replies
Oct 6, 2009
I have a flex application which collects data entered by the user and posts it off to a web service I have running on a back end server. The flex application does not authenticate users (it's available for anyone to use without setting up an account) and communicates to the web service using HTTPS. There is an XML firewall in place for preventing certain malformed requests, DoS attacks etc and the web service validates all data received from the client.
If I was to sign the content then I could use the XML firewall to verify the signature but I assume that any certificate type data I embed in the client could be extracted out of the flex app through some means of de-compilation. My question is, is there any way of limiting calls to the web service to only those from my flex client? I understand that a user could input bad information but I'm really trying to prevent another client or 'bot'.
View 2 Replies
Nov 13, 2010
there is an issue i am curious about very much. when i develop a flash application or web site, http posts and requests, links etc.. everything can be seen with add ons. what do you suggest for this issue? i cannot find any good solution, what solutions to be used generally?
View 13 Replies
Dec 8, 2010
Is there a way to set up Http headers to Security.loadPolicyFile() function ??
Other question: Is there any danger when loading an external swf?
View 1 Replies
Dec 5, 2010
I'm writing an application, Flex front-end & Grails back-end, in which I need to integrate security. All the information around Grails gives me the impression to be well suited for when your client is written in HTML but how can I use Flex's HTTPService to integrate into it?
View 2 Replies
Mar 8, 2012
i am trying to put data in to combo box from php page using http service .there are 2 data records in the php page but instead of displaying data it displays [object object] [object object] in the combo box list
here is the mxml code
@namespace s
"library://ns.adobe.com/flex/spark"; @namespace mx
"library://ns.adobe.com/flex/mx";
[Code]....
View 1 Replies
May 19, 2009
I am getting a strange problem while I am making my release build swf.The swf is supposed to make some internal server calls and then display the data and also play it.When I make a release build swf and excute it, while making server calls it throws exceptions likeSecurityErrorHandler: [SecurityErrorEvent type="securityError" bubbles=falsecancelable=false eventPhase=2 text="Error #2170: Security sandbox violation:file:///Path to the swf/WebPlayer.swf cannot send HTTP headers to **Method Name to bring data from the server***]And after this nothing can be done as everything depends on the data from the server..I have updated my cross-domain.xml on the server to support the master-only policy file but that also didnt ..My cross-domain.xml is
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"/>
<allow-access-from domain="*"/>
[code]......
View 5 Replies
Mar 13, 2012
I have a flash game. I've been trying to connect it to a php website that uses a mySql db. It works when I "test project" it from flash, however when I run it from a player/browser it raises errors about accessing a site. What setting need I ask from my users to set in their flash player - I have personally looked for the right settings and found nothing about approving sites. Is it possible that if both my game and my php site reside in the same base url - that is same server - that this error shall not appear? I really want to test this my self, but my server is a free server and doesn't allow me to upload certain files that are heavy.
View 1 Replies
Jul 1, 2010
I've been reading about WebORB, and am wondering: if I just need to call methods on a .NET web service from my Flex app, does it add any value?
View 3 Replies
Apr 5, 2010
I am using Coldfsuion 8.0.1 and Solaris 10 and when i try to run this URL,I am receiving an error message "Premature end of file".And when i hit the same URL from browser it shows:
<amfx ver="3">
−
<body targetURI="/onStatus" responseURI="">
[code].....
View 1 Replies
Feb 2, 2006
I have been working on this problem for a couple days now. I have a flash uploader that works on one server and not the other. I get the HTTP:403 error, which i have read means forbidden...BTW - I am using the fileReference classes and all that good stuff.
View 9 Replies
Sep 6, 2010
I am trying to access a .Net service which requires an authentication header. If WebService is used it works fine. But when it is accessed using HTTPService it throws error. The project is already done by somebody else using HTTPService. Now changing to webService requires some time since there needs to be modification in a lot of files.
Below is the SOAP envelop required by the service.
[Code]...
View 1 Replies
Aug 2, 2011
I am developing a flex application with flex 4.1 sdk and java backend (runs on Glassfish 3.1 via http). For security reasons I decided to move my authentication process to https until a session id is obtained. Therefore I changed the filter settings to use ssl for login and logout pages(just two pages due to performance reasons. The data-size sent to client is large and I do not want to slow down the system). Glassfish forwarded these pages to 8181 port (which is HTTPS port). Everything is ok for the java part. However flex defines the 8181 port as a different domain and then problems arise. Due to flash's same-origin policy it cannot load the secured content. Normally a crossdomain.xml is the solution but I am accessing content of the same domain through a different port. What will be the solution ?
View 1 Replies
