How to resolve security sandbox violation (Error#2148) in Flex 3 on XP?

Similar Messages

• Security Sandbox Violation when calling a remote service from a worker

  From my application, I make calls to a BlazeDS server, that works fine.
  I added a worker that calls the same services on the same server. But then, only for the calls from the worker, I have a Security Sandbox Violation error. I launch the application from FB in debug mode.
  This is the message :
  Error: [strict] Ignoring policy file at http://xxxxxxxxxxxx/crossdomain.xml due to incorrect syntax.  See http://www.adobe.com/go/strict_policy_files to fix this problem.
  *** Security Sandbox Violation ***
  Connection to http://xxxxxxxxxxxxxx/appstore-admin/messagebroker/amfpolling halted - not permitted from file:///D:/Projects/appstoreClientsNext/MultiAppstoreAdmin/bin-debug/MultiAppstoreAdmin.swf
  Error: Request for resource at http://xxxxxxxxxxxxx/appstore-admin/messagebroker/amfpolling by requestor from file:///D:/Projects/appstoreClientsNext/MultiAppstoreAdmin/bin-debug/MultiAppstoreAdmin.swf is denied due to lack of policy file permissions.
  What should I do to allow the worker to make remote calls ?

  I made some progress on this. There are two different cases :
  1) The service you want to access has a crossdomain.xml file
  All the workers can access the service without a problem.
  2) The service you want to access doesn't have a crossdomain.xml file
  Whether you launch from FB in debug mode or you put your application on the same server you are trying to access, only the primordial worker will access the service, the other workers will encounter a security error.
  I believe this is a bug. Shouldn't a worker have the same access privileges as the primordial worker ?

• Error #2048: Security sandbox violation

  I've been developing Flex apps for a couple of years now and feel comfortable with my development environment.
  I'm testing out Gumbo in my same environment (new workspace): WAMP based
  My test app works fine on my localhost set up... but when I upload the files to my hosted domain server... I get Error #2048: Security sandbox violation.
  Specifically:
  - I'm invoking an HTTPService by setting the url to a relative path (folder/file in same dir as the swf)
  - I set method to POST and useProxy to false
  (<fx:Declarations>
          <s:HTTPService id="contentService" url="data/verd_content.xml" method="POST" useProxy="false" resultFormat="e4x" />
      </fx:Declarations>)
  - I wrapped the send call in a try / catch block and show an Alert with the error message in the catch... here's what it says
  body = (null)
    clientId = "DirectHTTPChannel0"
    correlationId = "F4B9A542-8B00-5CDB-3C36-1316919FC255"
    destination = ""
    extendedData = (null)
    faultCode = "Channel.Security.Error"
    faultDetail = "Destination: DefaultHTTP"
    faultString = "Security error accessing url"
    headers = (Object)#1
      DSStatusCode = 0
    messageId = "E629F555-EF8B-E535-7CE4-13169662A82A"
    rootCause = (flash.events::SecurityErrorEvent)#2
      bubbles = false
      cancelable = false
      currentTarget = (flash.net::URLLoader)#3
        bytesLoaded = 0
        bytesTotal = 0
        data = (null)
        dataFormat = "text"
      eventPhase = 2
      target = (flash.net::URLLoader)#3
      text = "Error #2048: Security sandbox violation: http://****.com/Main.swf cannot load data from http://localhost:***/data/verd_content.xml?hostport=***t.com&https=N&id=F4B9A542-8B00-5CDB -3C36-1316919FC255."
      type = "securityError"
    timestamp = 0
    timeToLive = 0
  *NOTE: I obfuscated parts of the url for security reasons
  I read the other similar posts here about problems like this when using the PHP / Zend set up... but I checked the .actionScriptProperties file and it does not have any URLs in there (like localhost:port#)
  I'm not using a service-config.xml file in this project... but I have set up WebORB for PHP servers and use that all the time... so I know how that works...
  Is this a bug or am I missing something new in the Gumbo ?
  Again: my swf file is in a folder in the webroot on my ISP
  also inside that folder is another folder with an XML file in it
  I'm setting an HTTPService call using the url parameter on a POST with a relative file path (folder/filename.xml)
  changing the url to an absolute makes no difference...
  thanks in advance for any help

  Sure...
  here's the code that contains both the HTTPService setup and the URLLoader setup... like i said in the original post.. the HTTPService call throws the error described, whereas the URLLoader call does not:
  private var loader : URLLoader = new URLLoader();
  private var req : URLRequest = new URLRequest("data/***dant_content.xml");//path obfuscated
  protected function Application_creationComplete():void
      // This works...
      loader.addEventListener( Event.COMPLETE, parseContent );
      loader.addEventListener( IOErrorEvent.IO_ERROR, contentFault );
      // This does not...
      /* contentService.addEventListener( ResultEvent.RESULT, parseContent );
          contentService.addEventListener(FaultEvent.FAULT, contentFault ); */
      try
          loader.load( req );
      catch (err:Error)
          Alert.show("In Try Catch Error Block: " + err.message);
          currentState='home';
  the HTTPService was set up like this: (again, i obfuscate the URLs for security)
      <fx:Declarations>
          <s:HTTPService id="contentService" url="data/***dant_content.xml" method="POST" useProxy="false" resultFormat="e4x" />
      </fx:Declarations>
  the parseContent function setup in the event listener justs reads the XML file and uses that data to build an image gallery.
  hope this helps (for what its worth: I'm not doing anything serious with Gumbo as of yet due to these kinds of bugs)

• SecurityError: Error #2123: Security sandbox violation: BitmapData.draw: cannot access

  When we try to print the Google Map API for Flash component, it is throwing the Security Sandbox Violation
        SecurityError: Error #2123: Security sandbox violation: BitmapData.draw: http://ps6143:8080/aa/XYZ/Main.swf/[[DYNAMIC]]/1 cannot access  http://mt1.google.com/vt/lyrs=m@171000000&hl=en&src=api&x=1&y=1&z=1&s=Gali&flc=x3t. No policy files granted access.
  at flash.display::BitmapData/draw()
  To avoid this error we tried to use the alternate API provided by library. But that also causing cross domain issue as it loading some 3d library internally which is not able to access our application.
  SecurityError: Error #2121: Security sandbox violation: BitmapData.draw: http://maps.googleapis.com/mapfiles/lib/map_1_20_10_3d.swf cannot access http://ps6143.persistent.co.in:8080/dv/SiteOptimizer/SiteOptimizer.swf/%5b%5bDYNAMIC%5d%5d /1http://ps6143:8080/aa/XYZ/Main.swf/[[DYNAMIC]]/1. This may be worked around by calling Security.allowDomain.
  at flash.display::BitmapData/draw()
  Please help us in resolving this issue.
  Thanks & Regrds,
  Ravi Darji

  There is no redirect... Charles is a web proxy so it will look completely legitimate to the browser.
  According to the help, it's getting the access request from the SWF itself and not the crossdomain.xml file:
  In the case of a source object other than a loaded bitmap, the source object and (in the case of a Sprite or MovieClip object) all of its child objects must come from the same domain as the object calling the draw() method, or they must be in a SWF file that is accessible to the caller by having called the Security.allowDomain()method.
  http://help.adobe.com/en_US/ActionScript/3.0_ProgrammingAS3/WS5b3ccc516d4fbf351e63e3d118a9 b90204-7d1b.html#WS5b3ccc516d4fbf351e63e3d118a9b90204-7c4a
  So the default state accessing a SWF on a different domain is protected, unless that SWF allows some or all domains to access it via the Security.allowDomain() method.

• This bug has been around for over a year: SecurityError: Error #2123: Security sandbox violation

  Hi,
  The bug of 'SecurityError: Error #2123: Security sandbox violation: BitmapData.draw: file:///xxx/xxx.swf cannot access rtmfp://fms4.acrobat.com/cocomo/na2-sdk-xxx/xxx. No policy files granted access.' was first reported in lccs forum over a year ago:
  http://forums.adobe.com/message/2803074
  But the bug is still around. The bug can be generated by calling BitmapData.draw() on a flash.media.Video object which is attached to a p2p stream. It looks like the solution is to have the publisher to call:
  send("|RtmpSampleAccess", true, true)
  on the NetStream object _before_ the subscriber calls NetStream.play(), in order to give the permission to subscribers for audio and video streams.
  In lccs library, the above permission authorisation happens in WebcamPublisher:
  protected function onNetStatus(p_evt:NetStatusEvent):void
  if (p_evt.info.code=="NetStream.Connect.Success") {
  setTimeout(sendSnapShotPermission, 500);
  _stream.send("|RtmpSampleAccess", true, true);
  protected function sendSnapShotPermission():void
  _stream.send("|RtmpSampleAccess", true, true);
  but it doesn't help the problem. In fact, it is not clear to me when this 'snap shot permission' is sent to the subscriber.
  One more note: This is not a critisism for the lccs development quality, but rather a question on how ready lccs is for production use. After encountering this bug, I had to go through the lccs code (the open source parts), and found out that the library is not really written, well, carefully, and it is full of temporary quick-n-dirty fixes.
  For instance in the above example, sendSnapShotPermission() is called after 500 milliseconds, probably to allow something to happen before calling the method, but how can you be sure that it will happen in 500 milliseconds? Probably,an event listener should have been used. Immediately in the next line, we see:
  _stream.send("|RtmpSampleAccess", true, true);
  which is a duplicate of sendSnapShotPermission(). many examples like this can be found throughout the library.
  Aureliano

  Hi Nigel,
  Two questions:
  1. When the publisher sends the access permission to the subcriber by:
  netStream.send("|RtmpSampleAccess", true, true)
  , on the subscriber side, what event or function can handle the guaranteed receipt of the access permission? Currently it is possible to draw the incoming stream video upon receiving NetStream.Play.Star and waiting for 5 seconds or so:
  public class MyWebcamSubscriber extends WebcamSubscriber {
  override protected function layoutCameraStreams():void
  // trying the event listener seems to work here.
  _streamManager.addEventListener(NetStatusEvent.NET_STATUS, onNetStatus);
  override protected function onNetStatus(e:NetStatusEvent):void
  super.onNetStatus(e);
  case "NetStream.Play.Start":
  setTimeout(function():void {
  // draw the video from the incoming stream here.
  }, 5000);
  The questions is, which event can let the subscriber know that it has the access permission to the video stream?
  2. In WebcamPublisher, why is that the access permission is sent 3 times?
  a. Once on receiving NetStream.Connect.Success with 0.5 second delay, as in below.
  b. Once immediately upon receiving NetStream.Connect.Success, as in below.
  protected function onNetStatus(p_evt:NetStatusEvent):void
  if (p_evt.info.code=="NetStream.Connect.Success") {
  setTimeout(sendSnapShotPermission, 500);
  _stream.send("|RtmpSampleAccess", true, true);
  protected function sendSnapShotPermission():void
  _stream.send("|RtmpSampleAccess", true, true);
  c. Once in onConnectionTypeChange() with 2 seconds delay:
  protected function onConnectionTypeChange(p_evt:StreamEvent):void
  if ( _streamManager.isP2P) {
  _stream= new NetStream(_connectSession.sessionInternals.session_internal::connection as NetConnection,NetStream.DIRECT_CONNECTIONS);
  setTimeout(sendSnapShotPermission, 2000);

• Error 2142 - security sandbox violation

  Hi,
  I have a problem when I try to compile my player, I get the following error:
  SecurityError: Error #2142: Security sandbox violation: local SWF files cannot use the LoaderContext.securityDomain property. file:///C|/development/Flash/Pathe%20ads/New%20cmpt%20sample%20code/AS3ComponentDemoCode% 5Fv2.1/DemoPlayer3Component.swf was attempting to load http://objects.tremormedia.com/embed/swf/acudeo.swf?rand=949275459.
  What's odd is that:
  1. I have used Security.allowDomain("http://objects.tremormedia.com/"); in the source code
  2. This was working fine the day before last!
  I have tried adding a crossdomain.xml file in the folder where I build the player, still no joy.
  Can anyone help me with this? I tried throughout yesterday to fix it to no avail. I've even tried installing and building the player on a different machine to double check there wasn't something wrong on my PC.
  Any help would be great - I'm tearing my hair out!

  Hi,
  If you're still having issues, feel free to reach out to us directly. [email protected] or me personally at [email protected]
  Thanks,
  Andrew Baisley
  Sr Solutions Engineer
  Tremor Media

• Error #2048: Security sandbox violation: Urgent Checked the forum none of the solutions worked

  Hi all,
      I am new to flex . I am trying to connect to my localhost using the XMLSocket like below
      var xmlsock:XMLSocket = new XMLSocket(); // Line #187
      xmlsock.connect(127.0.0.1, 8080);
      xmlsock.send(xml);
    But after a Minute I get this below error
    Error #2044: Unhandled securityError:. text=Error #2048: Security sandbox violation: app:/main.swf cannot load data from 127.0.0.1:8080.
      at main/handleLogin()[C:\Documents and Settings\Vulcantech\My Documents\Flex Builder 3\src\main.mxml:187]
      at flash.events::EventDispatcher/dispatchEventFunction()
      at flash.events::EventDispatcher/dispatchEvent()
      at mx.rpc.http.mxml::HTTPService/http://www.adobe.com/2006/flex/mx/internal::dispatchRpcEvent()[C:\autobuild\3.2.0\framewor ks\projects\rpc\src\mx\rpc\http\mxml\HTTPService.as:290]
      at mx.rpc::AbstractInvoker/http://www.adobe.com/2006/flex/mx/internal::resultHandler()[C:\autobuild\3.2.0\frameworks\ projects\rpc\src\mx\rpc\AbstractInvoker.as:193]
      at mx.rpc::Responder/result()[C:\autobuild\3.2.0\frameworks\projects\rpc\src\mx\rpc\Responde r.as:43]
      at mx.rpc::AsyncRequest/acknowledge()[C:\autobuild\3.2.0\frameworks\projects\rpc\src\mx\rpc\ AsyncRequest.as:74]
      at DirectHTTPMessageResponder/completeHandler()[C:\autobuild\3.2.0\frameworks\projects\rpc\s rc\mx\messaging\channels\DirectHTTPChannel.as:403]
      at flash.events::EventDispatcher/dispatchEventFunction()
      at flash.events::EventDispatcher/dispatchEvent()
      at flash.net::URLLoader/onComplete()
  Thanks in advance
  Balaji

  Hi Alex,
     Thanks for the Link . I saw the link and have done the same steps as said in that . I have created a crossdomain.xml file in my 127.0.0.1 and i can also see that the policy being accepted in the  "C:\Documents and Settings\username\Application Data\Macromedia\Flash Player\Logs" . I have pasted the lines in policyfiles.txt below.
      OK: Root-level SWF loaded: app:/main.swf
      OK: Policy file accepted: http://127.0.0.1/crossdomain.xml
     But I still get that sandbox violation error. I have tried the below solutions and none of them worked
         1) security.allowDomain("*");
         2) crossdomain xml in the webroot of the accessing server like below
                      <?xml version="1.0"?>
                       <!DOCTYPE cross-domain-policy SYSTEM “http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd”> 
                       <cross-domain-policy>
                          <site-control permitted-cross-domain-
  policies="all" />
                           <allow-access-from domain="*" to-ports="*" />
                     </cross-domain-policy>
         3) I saw that adding the Application path in the  "C:\Documents and Settings\username\Application Data\Flash Player\#Security\FlashPlayerTrust\flexbuilder.cfg" will remove the sandbox violation but this also didnt work        
         4)  "Project - Properties - Flex Compiler - Additional compiler arguments:" add   -use-network=true  and then recompile and post to server
         5) I have also checked the policy file logs
  Thanks in advance
  Balaji

• Day 1 Ex. 3 Help! Error: Security Sandbox Violation

  When I run the solution code in Flex Builder, I get a ***
  Security Sandbox Violation *** message when debugging. Although,
  when I changed my default browser to Safari, everything seemed to
  work fine. Also, when I go directly to the bin-debug folder and
  opened the "AdobeODT.html" file, the data from the xml file loads
  properly. I played around with the "crossdomain.xml" solutions I've
  been finding on the net, but couldn't get it to work. Anyone else
  running into this problem? Any help would be greatly appreciated.
  Thanks.
  Running:
  Mac OS X 10.5.6
  Flex Builder 3
  FireFox (current)
  Safari (current)
  Opera (current)

  Hi everybody who is experiencing this same problem. A little
  research online directed me to the following page
  http://www.jetbrains.net/jira/browse/IDEA-21996.
  Which contains a good explanation why this is happening:
  quote:
  A SWF file can access one type of external resource only,
  either local or over a network; it cannot access both types. You
  determine the type of access allowed by the SWF file by using the
  use-network flag when you compile your application. When
  use-network flag is set to false, you can access resources in the
  local filesystem, but not over the network. The default value is
  true, which allows you to access resources over the network, but
  not in the local filesystem.
  So a sollution for this problem is:
  quote:
  you may specify the following string in "Additional compiler
  options" at "Flex Compiler Settings" tab: -use-network=false
  Hope this helps all of you experiencing this problem.

• Security Sandbox violation, opening links in Flash player

  Hi,
  I have a swf content and its content served from a content management server say for eg, http://www9.abc.com into the html file which is served from http://qwww9.abc.com The links embedded in the flash were not working, when these links are clicked I get this error when tried with Flash debugger player.
  *** Security Sandbox Violation ***SecurityDomain 'http://qwww9.abc.com/' tried to access incompatible context 'https://www9.abc.com/sample.swf'
  I had set a crossdomain policy file in a custom location in the content management server for this issue, but with the Flash player 9,0,115,0 this stopped working due to default policy change to "master-only". I will not be able to have this policy file in the root folder of the content management server or have the policy set in the HTTP response header.
  Is there anyother solution for this issue, for having the links work without setting the crossdomain policy file?
  Thanks in advance...

  How do I set Security.sandboxType related to flash player? When I try to see it in my application through debugger it says "remote". I think I need to set it to one of the following from the adobe manual pages...
  Security.sandboxType has one of the following values:
  remote (Security.REMOTE)—This file is from an Internet URL and operates under domain-based sandbox rules.
  localWithFile (Security.LOCAL_WITH_FILE)—This file is a local file, has not been trusted by the user, and it is not a SWF file that was published with a networking designation. The file may read from local data sources but may not communicate with the Internet.
  localWithNetwork (Security.LOCAL_WITH_NETWORK)—This SWF file is a local file, has not been trusted by the user, and was published with a networking designation. The SWF file can communicate with the Internet but cannot read from local data sources.
  localTrusted (Security.LOCAL_TRUSTED)—This file is a local file and has been trusted by the user, using either the Flash Player Settings Manager or a FlashPlayerTrust configuration file. The file can read from local data sources and communicate with the Internet.
  application (Security.APPLICATION)—This file is running in an AIR application, and it was installed with the package (AIR file) for that application. By default, files in the AIR application sandbox can cross-script any file from any domain (although files outside the AIR application sandbox may not be permitted to cross-script the AIR file). By default, files in the AIR application sandbox can load content and data from any domain.
  Any input on how to set it would be greatly appreciated. Thanks!

• Security sandbox violation: BitmapData.draw

  Hello,
  I got this error:
  SecurityError: Error #2122: Security sandbox violation: BitmapData.draw: A policy file is required, but the checkPolicyFile flag was not set when this media was loaded. 
  when I try to draw a frame of a movie that is downloading from another server. Crossdomain.xml is set. Another Jpgs are correctly drawn but only a movie causes an error.
  I need to checkPolicyFile but where should I do this? I have no direct access  to Loader to set up LoaderContext(true) ...
  Thanks,
  Michal

  I too would love to know how we can pass in our own LoaderContext to set the security domain. I'm receiving the same error after snapshotting a loaded SWFElement bug/watermark.
  e.g.
  var bug:MediaElement = new SWFElement(new URLResource(url));
  var bugTrait:LoadTrait = bug.getTrait(MediaTraitType.LOAD) as LoadTrait;
  bugTrait.load();

• BitmapData.draw() SecurityError: Security sandbox violation

  i am loading and playing a local video file with appendBytes() and when i call a bitmapData.draw() function
  below exception comes up.
  SecurityError: Error #2123: Security sandbox violation: BitmapData.draw
  cannot access null. No policy files granted access.
  what should i do???....

  Sir i already mention in my last message i test it with both relative and absolute.
  Yes i khow relative paths works fine when i do some thing like this
  <mx:VideoDisplay x="0" y="0" width="516" height="379" source="../user_data/uploads/cd73502828457d15655bbd7a63fb0bc8/v/1345023450-Action_.flv"/>
  bitmap.draw works fine in above case but my scenario is different i am loading a complete video as bytearray before playing and play video from that bytes
  private function fileLoaderComplete(event:Event):void
       //Pass the loaded bytes to player
         player.AddVideo(urlLoader.data);
  //This is Add video Function in Player.mxml
  public function AddVideo(VideobyteArray:ByteArray):void
                  if(ns == null)
                      var nc:NetConnection = new NetConnection();
                      nc.connect(null);
                      ns = new NetStream(nc);
                     // ns.checkPolicyFile = true;
                      ns.soundTransform = new SoundTransform(0.0);
                      ns.client = this;
                      ns.addEventListener(NetStatusEvent.NET_STATUS, nsStatus);
                  videoData = VideobyteArray;
                  GetTags(videoData);
                  ns.play(null);
                  ns.appendBytesAction(NetStreamAppendBytesAction.RESET_BEGIN);
                  ns.appendBytes(VideobyteArray);
                  video.attachNetStream(ns);
                  playBar.TogglePlay(true);
  i think its a bug in flash sdk 4.6 (Flash Player 11)
  bitmap.draw function somehow conflicts with the appendBytesAction or appendBytes
  this question is posted  on ActionScript 3.0 forum before
  http://forums.adobe.com/message/4650890#4650890
  http://flash.bigresource.com/flash-use-BitmapData-draw-with-NetStream-appendBytes--iTNz6LV JM.html
  http://stackoverflow.com/questions/5607047/how-can-i-use-bitmapdata-draw-with-netstream-ap pendbytes

• Security sandbox violation

  Can someone please help me see what's wrong with this picture?  Why is this security error happening?  Is there something I need to change with my crossdomain.xml file?
  LoadURL loadError [SecurityErrorEvent type="securityError" bubbles=false cancelable=false eventPhase=2 text="Error #2048: Security sandbox violation: http://www.mysite/mySWF.swf cannot load data from http://mysite.com/scripts/myScript.php."]
  <?xml version="1.0"?>
  <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
  <site-control permitted-cross-domain-policies="master-only" />
  <cross-domain-policy>
  <allow-access-from domain="mysite.com" />
  <allow-access-from domain="www.mysite.com" />
  <allow-access-from domain="*.mysite.com" />
  </cross-domain-policy>

  nevermind, idk why I put the site control node outside of the cross-domain-policy root.

• Flex 4 + AIR 2 + mx:Image = Security Sandbox Violation!

  Hi there!
  I've been using Flex 4 and AIR 2 for some time now and there's a bug (or is it really one) that I always get and can't understand...
  Whenever I use a <mx:Image> to load an image (JPG) on a remote server that has a valid crossdomain.xml I get some annoying warnings. Of course, these only are warnings and everything runs fine (except that) but it's a pain to debug an app that has lots of logs like that:
  *** Security Sandbox Violation ***
  SecurityDomain 'http://static-p3.fotolia.com/jpg/00/07/56/92/110_F_7569245_9hdeWKxUxFRNYuowdSDBNv0YFN9xTJ9 S.jpg' tried to access incompatible context 'app:/Main.swf'
  I've googled it and found lots of others folks/threads about this, but none of them provide a valid solution... Seems like it's specific to AIR because some answers/solutions I found work in a basic SWF, but fail in an AIR app.
  Is that a bug in Flex?
  Am I wrong about the crossdomain.xml?
  How could a JPG raise a Security Sandbox Violation?
  Tips or tricks, anyone?

  AIR has different security rules because it doesn't really have a "domain"
  to compare against crossdomain.xml.  The warnings are annoying and
  misleading and usually indicate that some code is trying to access the
  bitmap inside a try/catch block.  Usually you can ignore any warning that
  doesn't stop execution.

• *** Security Sandbox Violation *** problem

  Dear All,
  I having the Security problem
  My Scinarion
  I have an Exe (With SWISH Studio) / Swf file which is on Local Machine calles a swf file which on Server and that Swf file call a XML file which is on a Same Server
  While Compiling the SWF file gives the following error message of
  *** Security Sandbox Violation ***
  SecurityDomain 'http://www.mydomain.com/folder/swfname.swf?mathrand=Wed Apr 8 19:39:27 GMT+0530 2009' tried to access incompatible context 'file:///D|/folder/swfname.swf'
  I have already tried for
  System.security.allowDomain("*");   and   crossdomain.xml
  But it dosen't worked for me
  I will appriciate if any one can give me a ray of hope to solve this problem
  Please give me some solution
  Regards
  Raj

  Dear Kglad,
  Thanks for your instant reply as I have already mention I have tried with crossdomain.xml
  If you want to check the crossdomain and the fla files then I will mail u the details please provide me the email address
  Once again thanks
  Regards
  Raj

• Youtube: security sandbox violation

  Does anybody have a recipe for loading the AS3 chromeless player into a Flex application such that you don't get the 'incompatible context' errors constantly?
  *** Security Sandbox Violation ***
  SecurityDomain 'http://core-dev.thismoment.com/client/Demo.html' tried to access incompatible context 'http://www.youtube.com/apiplayer?version=3'
  I've been experimenting all day with  Security.allowDomain, Security.allowInsecureDomain, and  LoaderContext, but I haven't found the magic combination yet. The  main thing I want to do is be able to track the mouse wherever it goes on the screen.  Right now, if I mouse over the YouTube player, mouse events stop getting sent to the application, and I get that sandbox violation error in the debug log.  It works fine if I run the swf from a file: URL - it just doesn't work when it's coming over http, so obviously there is some sort of Flash security model thing kicking in.

  Doors only get opened from the inside otherwise all the bad guys would come
  in.
  Only the loaded SWF can allow access from the loading SWF.