The player loads a flv video file seeon.flv from another domain.Currently, even without a crossdomain.xml in the server where seeon.flv is located, the video is loaded fine.This is not the behavior I want or expect it to be.I also tried putting a crossdomain.xml with the following content:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="none"/>
</cross-domain-policy>
From firebug, I could see that there's a request to the crossdomain.xml before accessing the video file (seeon.flv).It returns the content fine , with the Content-type of application/xml, but it still allow the cross domain behavior.
I want to create flash banner with XML content, and host it on my site with crossdomain.xml, and then share banner code with other sites for banner exchange.So, everything is on my server.Will loading banner, on other sites, load XML from my server, if both banner and XML resides on the same server, but banner is loaded on the other site?
I have a flash file which is 690 x 420 pixels. When I export it and set it up to play on jwplayer it shows with all of the pieces that are off the art board also. This is a test [URL].
The client complains that sometimes on initial load, the jwplayer will autostart playback as intended but with a black screen. Sound is alright, and the progress indicator in the transport is moving.No matter what I do, I can't recreate the error on my machine.I'm using version 5 of JWPlayer.
Here is the code i use to embed: <script type="text/javascript" src="/Frontend/Javascript/swfobject.js"></script> <div id="mediaspace"><embed type="application/x-shockwave-flash"
I'm using jwplayer in html tabs in IE with jqery showing and hiding them (via style:hidden;) When I hide a tab in IE and then show it again the plays video area goes blank (you can still hear sound and play/pause the video). Does anyone know why this is happening or have a way to fix it.
I've got a Flash video that takes a very long time (30 seconds+) to load, which is obviously frustrating for users. I'm using the JWPlayer to embed the video.Flash experts (which is not me), what am I doing wrong? Or is the video file too big/server too slow? I've tried embedding in various ways (direct embed, swfobject) without change.I notice it does sometimes play right away on load, but I'm not sure if this is because at that time, the Flash video is cached in my browser.
I'm using JWPlayer to serve an html5 video with a flash fallback.I'd also like to have an image fallback if there is neither html5 nor flash support but I can't see how to do this.
I have a (self-created) swf demo with button triggering getUrl('SampleTargetPage.html')Now I want to place the swf at our cdn at [URL] while my html page resided on [URL]More structured:
[URL]
I thought it would be sufficient to provide a crossdomain.xml at cdn.example.com to allow the links work. But: it seems like the Flash plugin never queries the crossdomain.xml at all!Now, is there something which I must add in the SWF itself to make this work?
edit: do I need to use Security.loadPolicyFile?
edit: Maybe I don't need the crossdomain.xml at all because everything's under [URL]?
Url...For some bizarre reason, the videos will play at 3x speed on the first run through, but then will play at normal speed each subsequent play. This doesn't happen all the time, and it's not always the same video(s) that do it. I'm utterly baffled. I've reconverted the videos from m4p to flv (using BitComet's converter) several times, double checking the settings each time through with no change to the behavior.
I need to change the text that is output when the JWPlayer encounters an error and states "Video not found or access denied:filename.flv". I'm wondering if this is at all possible by passing through parameters to the embed object?
I'm having an issue extending a class in the JWPlayer API, but I think it's probably more of an issue of the way I'm extending the class in AS3 rather than the class itself. Here is the code:
All three of the final functions do not return values even though I have event listeners only calling those values one Event.COMPLETE (of the loaded SWF that contains this script).
I have a web service running in http://server/abc/service which is being accessed by Flash from a different domain. I deployed a cross domain policy file to http://server/abc/crossdomain.xml and made the Flash load it using: flash.system.Security.loadPolicyFile("http://server/abc/crossdomain.xml");
in the constructor of the main movie clip. However, when the Flash starts, it requests and loads this file (observed in Firebug), but then it also requests it from the root of the server (i.e. from http://server/crossdomain.xml) which does not exist. Subsequent HTTP requests don't work reporting security cross domain errors. When I put the policy file to the root of the server, it all works. Why does it request the policy file from the root as well even thought it loads it from the subdirectory? Why the subdirectory policy file is not enough?
I should also note that the two policy files are loaded before any application HTTP requests are issued.
I am trying to connect to a socket server from flex. I read, on adobe's documentation, the client automatically sends a "request-policy-file" xml element to the socket before allowing it to be opened, and should receive a policy file.
The client sends the xml element as expected, My server receives it (on the port I want to use, port 6104) and replies on the same port with:
I am trying to build a youtube player with flash and everytime I load a video, there is a runtime security sandbox error..I already put crossdomain.xml in my root serverbut I am still getting the errors...Do I miss something? Do I have to load it into my flex project?
<!-- <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"> <cross-domain-policy>
I have updated the crossdomain.xml security settings for my site - but it seems that the older version is being cached in both IE and Chrome.I've checked the headers sent by the server and it's not sending any cache control headers that would be forcing the browsers to be caching crossdomain.xml.
In an attempt to get around the issue I've also linked to my crossdomain.xml file in an iframe on the site. This hasn't worked though and flash still seems to be using the old security settings.
How can I disable crossdomain.xml check when the executing swf has been loaded on localhost?
Error #2044: Unhandled SecurityErrorEvent:. text=Error #2048: Security sandbox violation: http://localhost:2541/xxx.swf cannot load data from http://www.com/xxx.swf.
I want to assign full trust to the HTML5 web application running locally. I want to disable any crossdomain checks.
Some external servers do not provide crossdomain.xml for their hosted SWF files. I am running locally. I want to have full trust for debugging purposes.
How do I do that?
I will not consider AIR as it cannot be used from HTML5 application.
Adding the url "http://localhost:2541/xxx.swf" to "C:UsersArvoAppDataRoamingMacromediaFlash Player#SecurityFlashPlayerTrustu.cfg" did not help.
How do I set the flash crossdomain.xml file to only allow https ssl secured connections? I have this but I think this will allow non secure connections too.
I am developping this video player: In the exemple above, the player is loading this start image, to display it before the playing of the video:Here, I then tell the player to load the same image, but on another domain: As you can see, it doesn't work anymore. I searched on Google and discovered that I theorically had to add a crossdomain.xml, to make sure that there isn't security protection that avoid swf to load images from other domain. so put these two files on my different domains, to tell the swf to accept files from all * domains
I'm building a Flash based RSS reader, to be run on a kisok, but it's getting tripped up by crossdomain issues. In the abstract: SWF loads local TXT file containing paths of remote RSS feeds (XML files), then loads the feeds stored at those remote paths.
[Code]...
I was under the impression that an single asterisk/wildcard in quotes would mean any domain could access content on that server. But it's not working that way. I've tried changing the Publish Settings to "Access Local Files Only," and "Access Network Only," to no avail. I've also tried adding all of the relevant files to the trust list in Macromedia's Global Security Settings page.
If you want to use content on another server, that server needs to host a crossdomain.xml file allowing access. If this file isn't there, flash won't let you access it. Given that it's easy enough to just write a proxy (say a php script that curls the external URLs) what is the purpose of this restriction? It seems that the content is still 100% available to external people, but there is just one extra hoop to jump through.
I'm writing a web application using three tier architecture. I have three Amazon EC2 ubuntu servers. The first server handles the presentation of the application and includes my main flash file. The second EC2 instance represents my application server. It contains the AMFPHP files and corresponding web services. Finally, the third instance handles persistance and is running a MySQL database. Both the presentation and application servers are running an apache web server. I created security groups specific to each tier such that the presentation layer will accept all incoming traffic on port 80 while the application layer will only accept incoming traffic from the presentation server. This should allow anyone to request my web application from the presentation server but prevent anyone from accessing the web services on my application server.My flash application cannot make web service calls to my application server. When a request is sent, I never receive a response from the server and eventually receive a security sandbox error.[code]It seemed odd that I wasn't receiving a response, so I decided to try a couple of things:
1. I connected to my presentation tier via ssh and attempted to use lynx to connect to my application server's gateway.php. I was able to connect without any problems.
2. I used Chrome's developer tools window to observe network traffic when loading my site. I found that it is attempting to load the crossdomain.xml file (which resides in the root of my web server [/var/www] on the application tier) using a GET request; but strangely, it times out and fails. This is where I am confused. How come I can use lynx on the same machine to connect to the web server on the application tier but yet the flash app can't access the same file?
While running some tests, I decided to open up the application server instance's firewall such that it can receive http requests from my IP. As soon as I did this, the application being hosted on the presentation tier immediately began working (Received a response from the web service)! However, this means I would have to force my application tier to accept http requests from the internet in order to work, which is not something I want to do. I don't understand why making this change would allow the application to grab the crossdomain.xml file. If the application server's security group is set to accept incoming http requests from the presentation security group, it should have no problem acquiring the crossdomain. xml file residing in the web server root of the application server right? I've spent more time than I would like looking into this issue. I really would like to setup a three-tier environment for my application in which the flash application will be able to send web service requests to my application layer. The most confusing part about this is the fact that when I add my computer's IP address to the application server's firewall, everything seems to magically work as intended. Please correct me if I am setting my application up in the wrong way. I am basing my architecture off of the following:URL..
I have a Windows Server 2003, with a domain: "mydomain.com" and everything goes right until the Flash application tries to load de crossdomain.xml, because it tries to load it from "servername" and obviously the request fails. Currently I have read all about crossdomain.xml , what it is, where it goes although I can not find what I have to do so my flash application requests the crossdomain.xml from my domain "mydomain.com" and not from my server "servername".
- The domain is up and can be accessed from the internet
- The crossdomain is on the root folder and also can be accessed from the internet
With a looming deadline for a big project, I've just wasted an entire evening trying to find out why my application won't properly load image content when the .swf is deployed to a web server.
Here's what I'm trying to do:
- load a jpeg image from a different domain than where my .swf's are hosted
- turn it into a Bitmap object to apply smoothing
Loading the jpeg itself is no problem, as long as I do this:
[AS]addChild(loader);[/AS]
As soon as I try to access loader.content, or loader.contentInfo.content to create a Bitmap, Flash simply aborts the script.So there you have it: a typical security sandbox violation (although no error is ever thrown). Solution: crossdomain.xml! Or that's what I thought.Now the image host has a crossdomain.xml in it's root, with *.rocketclowns.com as an entry. I'm testing my app from www.rocketclowns.com.Even if I try to force load the policy file:
[AS]Security.loadPolicyFile()[/AS]
Or, with LoaderContext:
[AS]// create a loader context that // checks for policy files var context:LoaderContext = new LoaderContext(); context.checkPolicyFile = true; // use the context with your call to load myLoader.load(request, context);[/AS]
I have written a simple upload component in Flash, but I am now having issues in uploading due to a Security Sandbox error. I now know this is due to the fact I am uploading from one domain, to another, but 1, this used to work, 2, i have implemented a cross domain xml file by placing it in the root of the domain I'm serving from. There is also the following code at the top of my movie that used to work:
System.security.allowDomain("*"); Here is the plan, upload from admin.subdomain.serveraddress.net to serving.serveraddress.net, but it doesn't work
How can I consume a webservice that hasn't explicitely created a crossdomain.xml? I understand it's for security and to prevent cross-site scripting, but it does seem like a major limitation to the Flex framework. For example, if I want to consume a webservice, which is suppose to be language agnostic, then I can't with Flex. The webservice/server has to be specifically prepared for Flex/Flash. If it's not, then it cannot be consumed.
