Cross Domain Placement

I seem to have a complete crossdomain.xml that should work
fine. However, I am in a situation that hopefully can be fixed.
Here at the U we share the www2.med.umich.edu with other
departments. Our IT department is throwing a fit about putting the
crossdomain into the web root.
However, there is supposedly a web root set for one of our
areas 'prmc'. I added the crossdomain to that directory since that
is where the rss files (xml) are located. It still seems to try to
pull the crossdomain from www2.med.umich.edu and not
www2.med.umich.edu/prmc.
Is there anywhere to specify the path to the cross
domain?

Figured it out.
In case anyone else has this problem:
Have to import flash.system.Security;
Then in you init add:
Security.loadPolicyFile("
http://www.yourwebsite.com/anotherfolder/crossdomain.xml");

Similar Messages

Cross Domain error for Silverlight + MVC application with self hosted WCF service on azure

Hi,
We are migrating existing Silverlight application to MVC; existing Silverlight application is hosted on
Azure which is consuming self-hosted WCF service. For authentication we have implemented
ADFS with WIF (passive). The cloud service (<myWebSite>.cloudapp.net) is C Name to (<myWebSite>.<myDomain>.com) and we
are consuming WCF service at <myWebSite>.cloudapp.net/<myService>.svc, as we were getting “Cross Domain” error so we have added “clientaccesspolicy.xml” at the root of “WEB ROLE”.
Existing Silverlight application works fine but the problem occurred when we deploy our migrated application to the same cloud service. We are getting a “Cross Domain” error.
The same migrated application works fine on UAT environment, the only difference is UAT environment is
without ADFS WIF implementation.
Migrated application is half Silverlight and half MVC with initial landing page is Silverlight. MVC web role is used to host the service i.e. .SVC . To go to SL landing page , redirected from home controller. Following is being observed in fiddler for this
application
Existing Silverlight application -
After authentication with ADFS it redirect to Silverlight landing page.
Before calling service method it looks for “clientaccesspolicy.xml”
In response header we are getting the content of “clientaccesspolicy.xml”
And after this everything works fine
Migrated Silverlight-MVC application –
After authentication with ADFS it redirects to “HomeController” and from there we are redirecting to Silverlight landing page.
Before calling service method it looks for “clientaccesspolicy.xml”
In response header we are getting following content - “https://federation-sts.<myDomain>.com/adfs/ls/?wa=wsignin1.0&
wtrealm=https%3a%2f%2f<myWebSite>.<myDomain>.com&
wctx=rm%3d0%26id%3dpassive%26ru%3d%252fclientaccesspolicy.xml&wct=2014-03-17T10%3a36%3a04Z”
4.Throw “Cross Domain” error.
Also we have added filter in
RouteConfig
for .xml file
routes.IgnoreRoute("{*allxml}",
new { allxml = @".*\.xml(/.*)?" });
NOTE: There is no configuration change apart from MVC configuration.
We have done RDP to web role and found that “clientaccesspiolicy.xml” is present at “E:\approot” location and it is also accessible at “https://<myWebSite>.<myDomain>.com/clientaccesspolicy.xml”.
Please help
Thanks,
Rahul P

Hi,
Please try to configure the cross domain policy file to allow public read access (that is, access it without federation requirement), make sure you can access the address
http://something/clientaccesspiolicy.xml directly in a browser
without redirecting to check whether the cross domain policy file could be anonymous accessed (Please start a new browser session and make sure you're
not logged in. Then test the cross domain policy file.).
Best Regards,
Ming Xu
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.

Cross Domain Connection Issues with Test Controller

I am having trouble resolving a problem I have connecting a build agent with the test controller in a cross domain environment. I have purged out the actual machine names, domain names, and IP addresses just in case that is a security concern.
Situation is this:
All machines are running Visual Studio 2013
Test controller/agents are on Windows Server 2012 R2
Test controller is installed as stand-alone in order to be able to do load testing, as well as API and CodedUI.
Build definition in TFS kicks off the automation using testsettings file to point to build controller
Application under test uses resources in the ABC.XYZ domain. Test agents need to be in ABC.XYZ in order to test application E2E.
TFS is in Main.corp.company.com domain.
Test controller is a dual-homed box in corp.company.com and ABC.XYZ domains. It are accessible from Main using the corp.company.com NIC.
All our dual homed boxes are set up this way. Dual homed with Main and ABC directly is considered a security violation.
From the dual homed box, logged in with my ABC credentials, I can access TFS in Main using my Main credentials.
Manually, I can successfully kick off a test run from a command line from a VM in ABC.
Build controller and build agents are in Main.corp.company.com.
Build controller can successfully connect to build agent, and build agent successfully builds the automation.
Build agent fails to connect to build controller:
Failed to queue test run 'buildagent@MachineOne 2014-08-12 12:35:34_Any CPU_Debug': No such host is known
I can ping the build controller from the test agent, and I can successfully query port 6901:
Querying target system called:
testcontroller.corp.company.com
Attempting to resolve name to IP address...
Name resolved to 10.10.10.111
TCP port 6901 (unknown service): LISTENING
Firewall is turned off on the test controller. Even if it wasn’t, the relevant rules allowing port 6901 and File and Printer Sharing are created.
Local Security Policy | Security Options | Network access: Sharing & security model = classic
NETBIOS names of the test agents and build agent are set in the test controller’s hosts file (they were pingable without this anyway)
NETBIOS name of the test controller is set in the test agent’s hosts file (it was pingable without this anyway)
Tried both simple NETBIOS name and FSDN for test controller in testsettings file
Considering installing a build agent on the same machine as the test controller, but suspect that would just move my communication problem to build controller : build agent
Considering moving test controller to Main and making the four test agents dual-homed, but there is a concern to limit the number of dual-homed boxes, and also suspect that would again just move the communication problem.
I can use netstat to verify that the service is listening to port 6901 on both NICs:
TCP 0.0.0.0:6901 0.0.0.0:0 LISTENING 6536
TCP [::]:6901 [::]:0 LISTENING
6536
(PID 6536 is the QTController.exe)
However the VSTTController.log only mentions listening to the ABC NIC. Since the connection to the ABC test agents works, that makes sense.
When I open the testsettings file on my laptop in the Main domain and examine the server name, there is a warning that the host cannot be found. When I open it on a VM in the ABC domain I am able to manage the test controller and view all the test
agents. However, if I try to restart the build controller I get an access denied error. Not sure if that is related in some way.
I am using a ABC domain service account to run the test agent sevice. There is a Main domain service account running the build. Both service accounts are administrators on the test controller and in the TeatTestControllerAdmins and TeatTestControllerUsers
groups. The test agent service account is also in the TeamTestAgentService group.
I tried to create a port proxy to forward requests from the Main facing NIC to the port on the ABC facing NIC:
netsh interface portproxy add v4tov4 listenport=6901 listenaddress=10.10.10.111 connectport=6901 connectaddress=10.20.20.222
This almost worked. I could see with netstat commands that the port was opened and a connection was established with the build agent, however after a long wait it hit an error that it couldn’t find the ABC NIC:
A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 10.20.20.222:6901
So apparently the ABC IP is getting forwarded back to the test agent, which then of course can’t use it.
I am running out of ideas to try. Not sure where the problem is:
Cross-domain issue between Main.corp.company.com and corp.company.com? Or,
Problem with the test controller not being able to listen on more than one NIC?
I know I am not the first person to try to set up something cross domain. Most of the troubleshooting suggestions I have been able to bing have been about fixing connections between test controller and test agents, which isn’t the problem here.
Is this set up just so far from standard that VS can’t handle it?
Thanks in advance,
Gary

Hi Gary,
Thank you for posting in the MSDN forum.
>> Build agent fails to connect to build controller: Failed to queue test run 'buildagent@MachineOne 2014-08-12 12:35:34_Any CPU_Debug': No such host is known
>> I know I am not the first person to try to set up something cross domain. Most of the troubleshooting suggestions I have been able to bing have been about fixing connections between test controller and test
agents, which isn’t the problem here.
Just to make this issue clearly, you mean that it is not the Test Controller and Test Agent issue, am I right?
As you said that it is related to the Build controller and build Agent, am I right?
If it is related to the Build Controller and Build Agent, I suggest you post this issue to the TFS forum, there you would get dedicated support.
http://social.msdn.microsoft.com/Forums/vstudio/en-US/home?category=vstfs&filter=alltypes&sort=lastpostdesc
If there's any concern, please feel free to let me know.
Sincerely,
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place. <br/> Click <a
href="http://support.microsoft.com/common/survey.aspx?showpage=1&scid=sw%3Ben%3B3559&theme=tech"> HERE</a> to participate the survey.

Cross domain policy issues

I am attempting to communicate with a web service via flash
across sub domains. All works fine and dandy on my local machine,
but when i upload to my web server there is no communication across
the domains. The way the servers are configured, i don't have
access to the root of the domain to place the crossdomain.xml in
the default location, so i have it in the folder next to the web
service and link to it directly shown below. I have this line on
the first frame of the first layer of my file
quote:
System.security.loadPolicyFile("MYDOMAIN/StudentConnect2Apply/crossdomain.xml");
The server containing the flash file is insecure and the web
service is secure (https). this is what my crossdomain.xml file
looks like:
quote:
<cross-domain-policy>
<allow-access-from domain="*.MYDOMAIN.net"
secure="false"/>
</cross-domain-policy>
I have also enabled logging within my flash player to track
down problems, when i initially load the page in the browser, it
approves the policy file:
quote:
OK: Policy file accepted:
https://MYDOMAIN/StudentConnect2Apply/crossdomain.xml
But after submitting the form and attempting to interact with
the web service, i get an error saying permission is denied due to
lack of policy file permissions and
quote:
Warning: Failed to load policy file from
MYDOMAIN/crossdomain.xml
It is looking in the root of the domain after i defined and
it accepted the overridden location. Is there another way to define
where the crossdomain.xml file is located that i am missing,
possibly in the web service settings somewhere?

I have found my answer, thanks to another forum.
Meta-Cross Domain Policies.
http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_03.html
Basically I can now say "f*ck you adobe. I as a college
student who likes to host things on my 150 MB of server space can
no longer host XML formatted levels for games I write. Because I am
not the administrator of the server and will never be able to
convince the administrator to let me have the MCDP file allow my
flash file to load it's levels."
F*ck you Adobe, F*ck You.

Cross-Domain Scripting in OC4J

Hi,
I was wondering if anyone could help us find a way to enable cross-domain requests on our OC4J container.
We're working on version 10.13.40!
We would like to expose our web services to other applications inside our organisation (which operate from another url). We would also like to expose them to localhost since we are using them to test our application on our local machines.
If anyone has any more information on this topic, please let us know!
Thanks in advance!
Maarten

I didn't exactly get you
Let me explain my problem. I am trying to access a BI Publisher's web service from outside the domain. My BI Publisher is hosted on OC4J. When I call this web service from inside the domain I get the expected response.
The header of the response does not have Access-Control-Allow-Origin parameter in it. When I run the same code from outside, the status of my XMLHttpRequest object (my browser is mozilla) is set to 0 which means that the server is rejecting my call and I assume this is because this call is made from a place outside the domain.
I have learned that Access-Control-Allow-Origin parameter controls the script requests which come from a place outside the domain
I want to know a mechanism to set Access-Control-Allow-Origin parameter in OC4J. I searched the documentation and this parameter is not mentioned. Is the name of this parameter different in OC4J. If so what is it and where is it.
Thanking you in anticipation of your help
Regards,
Vishal

Cross Domain Security Express - RAC configuration

Hi All,
Not sure if the general DB forum is the place for this but here goes.
I am involved in designing a solution that wants to provide access to data from networks each trusted to a different level of security. The CDSE CDSS white paper look something like the design that we drew up.
http://www.oracle.com/industries/government/pdfs/oracle-cross-domain-security-express-ds.pdf
Question 1
In the diagram on p3 does this reflect a single rac cluster spanning two separate networks, what would connectivity requirements be between the nodes?
Question 2
Is physical storage shared across networks and then logically divided using labels?
Question 3
COuld you define separate tablespaces and use partitioning to force higher and lower secured content into respective tablespaces in separate storage.
Thanks in advance for any guidance
Tim

Hi All,
Not sure if the general DB forum is the place for this but here goes.
I am involved in designing a solution that wants to provide access to data from networks each trusted to a different level of security. The CDSE CDSS white paper look something like the design that we drew up.
http://www.oracle.com/industries/government/pdfs/oracle-cross-domain-security-express-ds.pdf
Question 1
In the diagram on p3 does this reflect a single rac cluster spanning two separate networks, what would connectivity requirements be between the nodes?
Question 2
Is physical storage shared across networks and then logically divided using labels?
Question 3
COuld you define separate tablespaces and use partitioning to force higher and lower secured content into respective tablespaces in separate storage.
Thanks in advance for any guidance
Tim

Error 2170 in Cross Domain Policy deployed in Enterprise Portal

Hi All,
We are facing an Error # 2170 for the Cross Domain Policy in Enterprise Portal.
We developed the dashboard using 2 web service connections (using ECC Remote Enabled Functon Module). The Web services were made Public so that they can be accessed from any network. We developed the dashboard using the public enabled webservices and exported to the SWF file which is working fine.
But when we place the dashboard SWF file in the Enterprise portal it gives the error " Cross Domain Policy Error #2170" .
We Placed the Cross domain Policy file in ECC Server in the root directory and placed the same in Enterprise portal C drive.
But still it shows the same error when we preview the dashboard in Enterprise Portal.
The Cross Domain Policy File that we are using is as follows:
-<cross-domain-policy> <site-control permitted-cross-domain-policies="all"/>
            <allow-access-from secure="false" to-ports="" domain=""/>
           <allow-http-request-headers-from secure="false" domain="" headers=""/>
           <allow-https-request-headers-from secure="false" domain="" headers=""/>
</cross-domain-policy>
Please let us know if the cross doamin file is correctly coded and suggest us with suitable solutions for this problem. Also let us know if there is some alternative solution to this issue.
Thanks,
Malla Reddy D

Hello Malla,
Maybe SAP Note 1240810 helps... Anyway, I would say that if your issue is with the direct SAP NW BI connection, through BICS, the only file which is relevant is bicsremotecrossdomain.xml, which should be located on your server HTTP root.
Another check you can perform is if you have both portal certificate entries as per SAP Note 1508663.
Kind Regards,
Marcio

Safari cross domain error

I tired to access a web site via Safari that I previously was able to access; however, now I get the following message: "Cross Domain Error: Cross domain is not supported by this browser." Is there a plug-in or something else that would allow me access the site?

Hi,
Please try to configure the cross domain policy file to allow public read access (that is, access it without federation requirement), make sure you can access the address
http://something/clientaccesspiolicy.xml directly in a browser
without redirecting to check whether the cross domain policy file could be anonymous accessed (Please start a new browser session and make sure you're
not logged in. Then test the cross domain policy file.).
Best Regards,
Ming Xu
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.

Cross Domain Call in SharePoint Hosted app.

Hi, I am very new in SharePoint 2013 App dev and want to understand when actually Cross domain calls are required and how we can achieve it.
Getting host web site title from a sharepoint hosted app needs a cross domain call?
My point of confusion is some places I have seen we have to load SPRequestExecutor for getting data from host web but I am able to get it using changing the context to host web and then getting the title without using SPRequestExecutor:
appContextSite = new SP.AppContextSite(ctx, spHostUrl);
Nweb = appContextSite.get_web();
//Nweb = ctx.get_web();
ctx.load(Nweb);
What is the difference between the two( using SPRequestExecutor and not using) and what places we need to use it and where we can get data without it ?
please help me to resolve this confusion.
Thanks

Hi vmishr11,
When you use SP.RequestExecutor, it will execute asynchronously to get data from host web. It will use like below:
var executor = new SP.RequestExecutor(appweburl);
executor.executeAsync(
url:
appweburl +
"/_api/web/lists/getbytitle('Announcements')/items",
method: "GET",
headers: { "Accept": "application/json; odata=verbose" },
success: successHandler,
error: errorHandler
For SP.AppContextSite, it will execute in order to get data.
Here is a detailed article for your reference:
How to: Access SharePoint 2013 data from apps using the cross-domain library
Best Regards
Zhengyu Guo
TechNet Community Support

Cross-domain Navigation Error

Hi folks,
I was just beginning to test out a site on my domain when I received the following error:
Cross-domain Navigation Error
Adobe InContext Editing does not support cross-domain navigation.
For more details, please visit the Adobe InContext Editing Help and Support page.
While I could not find any help easily, I thought I would post here with what I have discovered. I am not entirely sure what "cross-domain navigation" is in the first place, but I had a few hunches.
Initially, I was using a site set up with templates and library items. Then, for the purposes of troubleshooting, I deleted all files and placed one HTML file in the folder with nothing but some text in it. I still received the error message.
On a whim, I decided to try InContext Editing in Internet Explorer instead of Firefox, and it worked. I then downloaded and installed the latest version of Firefox (3.5.1), and the error message still appeared.
Any ideas?
Thanks in advance!

Having the same troubles. Worse it goes into an endless loop where you can't get out of the error message cycle.
http://sonomamountainbusinesscluster.com/

CQ5.5 EXTJS Support for cross domain ajax call

I do not see any api in cq5.5 that supports cross domain ajax call using JSONP or callback.

You may get an answer here but probably better to ask in a Mozillazine forum such as
*http://www.mozilla.org/en-US/firefox/22.0/system-requirements/
If this really is a failing of Firefox then maybe one of the Development mailing lists or fora would be the place to discus this
* http://www.mozilla.org/about/forums/#general-development
Ultimately a bug could be filed for an enhancement request, but it is possibly better to discuss the subject first rather than file a bug that may not stand any chance of being actioned.

AICC sendAndLoad for cross-domain (getParam)

Hello all.
First off thank you to Andrew Chemey for his seemingly
under-valued expertise in providing the AICC compliant code that
has worked perfectly for communication between now 2 LMS' and all
our Flash content.
However, a problem has surfaced in that we are switching to a
new SaaS LMS. Because of this, communication now goes between our
internal server to the externally hosted LMS (a cross-domain
issue). Our content still does magnificently when it comes to
completing users in content but the problem is that we can no
longer get the data into our content that comes from the LMS.
We currently do a sendAndLoad to the AICC_URL while passing
the AICC_SID and getParam. But this does not work across domains. I
know about the crossdomain.xml file and the LMS vendor claims that
it is in place, but that does not seem to do the trick. We really
like to get the STUDENT_NAME and especially the Location data for
our bookmarking into our content, but we can't figure out how to do
this now.
I've searched all over the web and the aicc.org website many
a time but have yet to find a solution and my company does not have
the money to send me to DevLearn 2007. Can someone please help?
Again the task is how do you get information to pass from the LMS
to Flash content across domains.
Thanks in advance!
Most appreciatively,
André

Is it possible to use the server side proxy option found
through the following link to import data from an LMS to Flash
content across domains? If so then can someone share what their
proxy.asp code and sendAndLoad code looks like?
http://kb.adobe.com/selfservice/viewContent.do?externalId=tn_16520&sliceId=2#proxy
Most appreciatively,
André

Cross Domain Authenication

Hello Everyone,
I am need a possible resoluiton for the limitaion for 'MYSAPSSO2' cross-domain authenications. At present our Portal and R/3 systems are in one domain (example.com) and authenication works fine for trusted R3 and portal systems.
Now we are wanting to place our R/3 system in differnt domain (example.com) and our portals in (trusted.com), because of this, whenyou access backend applications from portal the 'MYSAPSSO2' ticket is not used and you are prompt to login in 'manually'
Is there a work around for this that anyone know of?
Thanks,
John

Hi,
You need to have one Web server on the second domain. Portal will send the details to Web server and web sevrer will pass it to your R/3 system and this will work in this way.
For more details please refer to link.
/people/vishal.dhawan2/blog/2006/09/20/issuing-the-logon-tickets-for-multiple-domains-in-ep6
With Regards,
Saurabh

Problem with socket cross domain

Hi guys,
This is my cross domain file:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="*"/>
<allow-access-from domain="localhost" to-ports="80" />
</cross-domain-policy>
I am placing it in my server.
From flex i am running this:
Security.loadPolicyFile("my server address");
And yet I am getting this event:
SecurityErrorEvent type="securityError" bubbles=false cancelable=false eventPhase=2 text="Error #2048"
What can I do?

Hello ILikeMyScreenNameNdCoffee,
I had the same problem with XMLSocket and I used a policy server that runs
on the remote server on port 843 and from Flex I load file before connecting
the xmlsocket Security.loadPolicyFile("my server address:843"). If you want
I can upload a version of my policy server or you can use the server policy
from here
http://www.broculos.net/tutorials/how_to_make_a_multi_client_flash_java_server/20080320/en
Also you can read here more about file policy:
http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_04.html.
On Thu, Aug 19, 2010 at 5:40 PM, ILikeMyScreenNameNdCoffee <[email protected]

How to use a cross-domain comp. library?

Hi, all.
I have a problem in using a cross-domain library on pages of
a different domain.
To elaborate the circumstance:
I have 2 different domains on my project, say
www.my-dom-0.com and ww.my-dom-1.com.
I wrote an ActionScript component library and placed it at
my-dom-0.
And it works by calling a pre-determined set of Javascript
functions and objects under the hood.
Since the library is supposed to be cross-domain,
it may be used by flex applications either of my-dom-0 or of
my-dom-1.
They seemed to work fine until I hit upon the problem when
applications of my-dom-1 attempted to use the library's features in
IE7.
I verified that the required Javascript codes were placed in
the pages that had the applications.
With Firefox, they worked okay.
After some digging, I found that they didn't work due to
something related with
#error
2060.
Does anyone know how to make this work?
I'd like someone familiar with the issue to help me out of
the problem.
Thanks in advance.

Hi,
I think this
http://livedocs.adobe.com/flex/201/langref/flash/system/Security.html#allowDomain()
can solve your problem.
Hope this helps.

Cross Domain Placement

Similar Messages

Maybe you are looking for