i have a flash application connected with a script on a remote server(X)different from the server hosting the website(Y)the application on server X needs to get some user information so i need to identify the user by what i have in the cookie
remote server X will get those informations from server Y is there any way i can get the user name or user id from the CAKEPHP cookie var?the authentication is the one found on cakephp website
I have a web application developed using flex and cakephp. My client need to make a desktop application of that web application using Adobe Air. The conversion of the flex to Air is done successfully. I the flex application the communication of flex and cakephp is handled using a remotes controller. In air application I have a problem of authenticating the user with cakephp default user authentication
I have a set of RESTful web services. These services are protected on a Glassfish server by OpenSSO. When I attempt to call the RESTful services directly from a browser, OpenSSO intercepts the request, then forwards the request to the REST service once the user's credentials are authenticated. OpenSSO utilizes a session cookie on subsequent requests (until the session is invalidated) . I'm sure this piece is working correctly.We'd like to call these services from a Flex client. In order to enable PUT and DELETE operations, we set up BlazeDS to proxy the RESTful requests from the flex client to the REST service. When security to the RESTful services is disabled, this piece works great.
Now we're trying to secure the entire application. We've placed the Flex SWF into a war and deploy to Glassfish. We've placed security around this resource and when a user attempts to download the SWF (through an HTML link in the war), OpenSSO intercepts the request, then forwards to the application on successful authorization (just like it does for the RESTful web services).The problem is - the RESTful calls made by the Flex application (via BlazeDS) are failing. OpenSSO seems to be intercepting these requests as well and again asking for the users credentials. It doesn't seem the authentication cookies are being passed to (or maybe by) the BlazeDS proxy.
The website need to login to perform certain task. We use stock Auth component to do the job.
Everything is fine until it hits an interface which build in Flash. Talking to Amf seems fine. But when the Flash player try to talk to other controller - got redirect because the session in not presented.
So basically when a user login - I need to somehow find a way to login the Flash player in as well.
ADDITION: This only solve half of the problem.
Backtrack a little bit. How the Auth components evaluate the requester?
If the Session.checkAgent is true. They check if its the last one. So Flash has no chance they have a different Agent string.
OK now - Auth check them out - what? The Session cookie they store earlier ... so fail again.
I am using Amf (as Cakephp Plugins) when I tried to test if the $this->params['actions'] is start with amf - it works sometime doesn't work sometime. Looking at "Charles" I can see they all call to the amf controller.
I need to save email-id in my login form through the cookies. if I use shared object I am able to save but my requirement is need to save in cookies. How can I save? I got sample code from net. Attaching that code `package com {
import flash.external.ExternalInterface;
/** * The Cookie class provides a simple way to create or access * cookies in the embedding HTML document of the application.
I'm wondering how to send data from AS3 to CakePHP. I know I can use URLVariables to send data to the URLRequest and ge that data in PHP using the superglobal $_POST. However, for some reason I can't access the variables in a CakePHP action.In my action I get the data using the following:[code]but this is what I get in return:[code]I have set responeType to "Error" and response to "Data was not.." manually.[code]
I'm working on a new project in Flex with a CakePHP backend and since I'm using Mate, I wanted to use the RemoteObject stuff it does to call CakePHP.First I tried just doing one call at a time in CakePHP but I saw that that would mean a lot of endpoints, so I looked into some like amfphp for cakephp. I saw that Zend AMF is now the successor to AMFPHP so I wanted to try to integrate it.
I probably spent 8 hours on the final solution that is probably 10 lines of code.So without further ado I give you FlexibleCake: a CakePHP controller that acts as an AMF Endpoint and is able to instantiate and call any controller / method. I also built a "tester" or "explorer" app that allows you to send requests to the end point and visualize the result.
[URL]
PS there where some changes I had to make to the core CakePHP classes to make it work. It only involved modifying the comments in the model.php class I believe (since Zend AMF reads the comments to gather metadata for the functions called).
Long time leecher, decided to join in and ask a question. I have a video auto play on a site i am working on [URL].. Issue is, it auto plays every time the page loads...
Is there a way for me to set a cookie that flash could look for and either choose a welcome back video or not auto play video?
EDIT: SharedObject is awesome. Ignore this i did it.
We have a flash video that was created for our project, we dont the source so we have to work around the compiled flash file. We are going to host the video on our domain and the video creates a sol cookie (flash cookie) file to store how far the user has proceeded though the video. So my plan is to access this cookie to see how far the user has progressed and then fire an event when they have finished the movie.
I have been googling for some help but haven't found to much. I have found out that its possible to do in javascript and I have found some .net sol file viewers but haven't seen any examples I can get my mind around.
I have watched the traffic that gets created with fiddler and every time the next button is clicked a new request is fired with the swt file that is being accessed. I would also be happy with tracking every time one of these swt files has been accessed as well.
I'm hoping to get pointed in the right direction here. The problem I'm having is trying to figure out how to read an HTML created cookie in Flash. I have a video player that should autoplay once in a 24hour period, the next day it should autoplay again for the end-user.This is what the script on the HTML page looks like that displays the Flash player and the cookie:[code]I did some searching and found this Have a HTML page play Flash movie only once (not when revisited...) but again this is just a Flash function which never allows for a restart in a certain time period.how do I read that var x(cookie) in Flash?
I use an application which uses flash cookie to store some important information. This information is critical and should not be deleted. But I have observed that the flash cookie or the shared local object is getting deleted under the following situations. When the local history(including cookies) are deleted by the browser. When flash is upgraded in the system.
This is adversely affecting my application. Please let me know, if there is a way to forcefully retain the 'shared local object' by placing some kind of lock on it. It will be better if this can done programmatically.
I am trying to pass a cookie with multiple name/value pairs into flash and I would like to know if someone know how I can do this. I know that I need to pass the vars from the cookie to my Flash Params but I am not sure how I would do that, given that this is a multiple array cookie.
I'm working on a website based on flash. The first time you visit the site there will be asked to fill in your name (for example: George) and then you continue to the next 'page' in the flash. The next time you visit the site, i want that the site automaticly forwards to the last page, and there is a text 'hi, *name*' (hi, George)
I want to write a Flash application which need to access my browser(Internet Explorer)cookie. My program work well in all browser except Internet Explorer. This is part of my code:
Quote:
function test() { ExternalInterface.call("eval","alert(document.cook ie)"); }
I've got a page that has a flash banner on it with a small animation. In fact, I've got four versions of this banner, and I'd like to be able to load a different version each time someone visits the site. Can someone please help this rank amateur devise a script that will allow me to do this? It has four different .swf files, and I need to load them such that the same person doesn't see the same .swf file on consecutive visits. Normally, I'd do this with cookies, but I just don't see how to get it done with Flash CS5 and/or Actionscript 3.
I have a very simple php script that I'm using to check and set a cookie. I'm running this script from a Flash file, but it's not working properly. If I enter the direct URL to the php file in my browser, it works perfectly. However, if I access it through Flash it doesn't seem to recognise that the cookie has been set.
Here is my php code: <? $expiry = date("U", mktime(0, 0, 0, date("m"), date("d") + 1, date("y")));
Is it possible to read first party cookies from flash?It should be noted that we have complete access to javascript via the ExternalInterface class.So, now the question is - can we access first party cookie from javascript? Our javascript code will be loaded by a website which is not hosted by us. This makes the cookies created by that website - first party cookies. How can we access these "first" party cookies?
I want to create a flash swf file that will store a token in Local Shared Object. What do I need to do to read that token and look it up in the database on the back end? Is this possible at all?
here is a possible scenario:
User visits my web page A token is generated on the server and stored in the database Token is then saved in LSO User leaves the site (maybe shuts down his computer) and comes back later Token is read, located in the database and the user is recognized (lets say that token is a foreign key that links to other user data stored in the db)
I researched this for quite a while and all I find is that flash can use LSO to store read data for flash movie... Does this mean that the data can not be accessed by the server?
A couple questions about Macromedia Projector for flash 8 (this is going to be a windows .exe file or contained in a shell). I am creating a Flash intro outlining new features for software solution. The intro will launch and then will launch the full software. Client wants two buttons in the .exe. 1 to enable the user to "skip" the movie which will then launch the client's software. The other button will say "do not show this intro again". Kind of like when you open Flash for the first time and it shows the "tutorial and what's new" window. The in-house developer was saying something about the Windows registry, and outputting a "cookie-like" file when the user clicks "do not show this again" so that the file will not run when the software is executed again.
I need to read the contents from the browser's cookie.I tried to use FlashVars to pass the contents from html to flash.However, the contents of the cookie may change after the swf is loaded.So I need to setup a listener to read the cookie directly.
I am having a scenario where I need to access a service but when accessing it, I get an HTTP authentication popup of browser. I don't the users to see this. I talked to a guy working on same thing in some other technology and he mentioned that they are using Digest Authentication. I need to know how this can be achieved in Flash.
I need to authorise my Flash game (which runs on Facebook) users against my game server. I'm able to get their data like id, access token, etc, from Facebook on the client (I'm using the Flash Facebook API) but I'm not sure how to authorize them on my game server (e.g. do a login with a database query). One scenario that I have on my mind:
If I could get the same access token from Facebook on both the client (which I already do) and the server (with, for example, a redirect URL, which I tried but does not seems to work), then I could easily compare the two tokens (together with the user IDs) and thus authorize the user. UPDATE To put it simpler, I want to catch the token that is returned from Facebook on the server-side before it gets to the client (it can be a simple PHP script that parses the URL token parameter). Next, store it in the DB on the server, and when the client queries the server, I can do the comparison.
I am creating a website which will contain both ASP.NET pages and a Flash applet.I want to encapsulate my business logic in a WCF service which will be exposed through two endpoints: One accesssible over the Internet through HTTP(S), for use by the Flash client, and one accessible within the data center for use by the application servers.If this does not seem like a good approach, then stop me here; otherwise, I'll move on...
The question is how to authenticate requests coming from the Flash client. Since I don't want to store the user's password in a browser cookie, don't want to send the password with every request, and don't want to have to use HTTPS after the initial login, I plan on using a token-based authentication system. I also don't want the user to have to log into the Flash client after already logging into the site itself, so I plan on using Javascript to pass the token to the Flash client when it starts.
I know WCF supports using the .NET Framework's built-in security framework (System.Security) to enforce access control, and I would like to take advantage of this.The question, then, is: How do I pass the token to the WCF service when it is called by Flash, and how do I process the token on the server? WCF has an "issued token" authentication mode, but it appears this is intended to be used in a full-blown federation scenario with a Secure Token Service and SAML tokens--a bit more complexity that I really want. It is possible to use this mode with my own "simple random-string" tokens? If so, how? Keep in mind this needs to be compatible with Flash.I could potentially pass the token in a header (either a SOAP header or an HTTP header). In this case, once I've determined which user is making the request, how do I inform the framework so that the System.Security checks will work?Is there a different approach altogether that I should consider?Anything that avoids sending passwords in every request, lets me use System.Security, and works with Flash is a possibility.
