SWF Verification with chat login?

HI All,
I am having a problem/confusion, please clear out the issue.
When i apply SWF Verification on a chat application (which has video and audio streaming as well) everything is fine, video and audio streaming works when same file exists in SWF folder and all that, shared objects only works when swf files match etc. But user cannot connect to a chat session.
We can see the list of rooms available to join(because they come through shared object) but when we try to join a room FMS rejects user.
In FMS Admin console it throws exception when FMS rejects login. When we provide that exception(FlashCom/3.0.4 or FlashCom/3.0.1 depending upon which version we'r using) in the <UserAgentExceptions> tag the login works fine and chat session is created, but then FMS is not secure anymore, we can connect from any other swf file also which donot exist in SWFs folder.
On the Adobe SWF Verrification help page it says
Note: SWF files connecting to Flash Media Administration Server cannot be verified.
Is this note related to my problem? I think it is, if it is then what is the solution?
Anyone know what exception should be provided to only allow chat session verification to pass or something like that.

No, this is specific that you're having FMS connect back to FMS itself, and it's not capable of being s SWF Verification client.  So, you'll need to open that hole in SWF Verification like you wanted.  However, you should patch that hole in another way.  For instance, when a client connects to chat you should make sure that its IP is from the local IP - that way you can be sure it's the local FMS connecting.  You can do this via script or you can configure a special connection path for it if needed.
Asa

Similar Messages

  • SWF Verification and HTTP Streaming from FMS 4.0.1

    Is it possible to do SWF Verification with HTTP Streaming? (If calling the box directly)
    My gut says No, and I haven't seen any examples or mentions of this in the forums, and I was hoping I could get a clear cut answer from someone that has either tried it or from Adobe.
    Thanks.
    -Will

    Hi,
    As of now, you cannot use SWFVerification to protect HTTP Streaming, as HTTP Streaming does not require connection with core process of FMS, but request is handled by f4f module in apache. The current way to ensure protection of HTTP streams is to use Flash Access for encryption of fragments. You can find more about Flash Access here at http://www.adobe.com/products/flashaccess/
    Thanks,
    Abhishek

  • SWF Verification works differently with FAXS vs FMS

    Here's the setup: loader.swf loads up player.swf and player.swf then connects to the server to play the stream. In FMS-based SWF Verification, it'
    s the player.swf that gets verified.  However, if we change the above scenario where the player.swf obtains the license from FAXS and the license server sends a list of valid SWF hashes, it appears that verification is done on the loader.swf. That looks like a bug. Any suggestions ?
    Eli

    In FMS-based SWF verification, player.swf would be present on the FMS server, in order to perform the SWF verification.
    In Flash Access-based SWF verification, the Flash Access license specifies the SWF hash of the authorized SWF (loader.swf in this example). In order to play the content, the client will verify that the hash of the current SWF matches the SWF hash specified in the license. There are two ways to set the SWF whitelist in the license: 1) Specify the whitelist at the time you create the policy, or 2) The license server fills in the SWF whitelist at the time it issues the license. With Flash Access, there is an additional packaging step (to apply the policy and encrypt the content), and a license server must be deployed in order for the client to obtain a license. However, aside from disabling FMS SWF verification, no other changes on the CDN should be required to deliver the encrypted content through the CDN.

  • Does swf verification work with swz flex libraries ?

    i  posted earlier  :
    Hello
    In my application i have video player  that uses VideoDisplay class of flex sdk 4.5. we implenent swf  verifaction. i tried to play videos on  rtmpe several times , and it  did'nt play , seemed like   my swf did'tn pass swf verification, during  all day i tried to figure out what's wrong, then i tried to compile all  flex sdk libraries ( framework_4.5.0.17689.swz, osmf_1.0.0.16316.swz and  ex ) into my main file  , instead of  having them as rsl, finaly i  succeeded to connect to rtmpe and to play the video. Could you help me  please? what should i do? why does'nt it  pass swf vereficiation when  the linkage  of flex sdk libraries is default(rsl- swz files). i can't merged them into code, it Weights to much ,800 kb.
    after trying some things i came to conclusion that fms can't handle with swz, then it reaches swz refference it fails . so my question now is : is this something that can be configured on fms  to verify swz as well ?
    thank you/

    Before i dig more into, how do you plan to host your swf's, would your main file when hosted would play fine and at runtime get linked to your other libraries needed?
    Also you can try one more thing, create main file with all needed flex libraries, keep it in SWF's folder of application. Then try connecting using main file without having all the libraries (basically as rsl) and see if in this case it connects.

  • How to generate SWF file with dynamic data but no live connection

    Hello,
    We got a requirement where we have to email out SWF file either in PPT or outlook generated from BOBJ universe. When the file reaches the customer who would be outside our network with no access to our servers or data should be able to view the swf file with data. So the goal is to generate these files automatically and should not prompt for BOBJ login or wouldn't have ability to query the database but need to report data pertaining to the customer.
    Any help in this regards is greatly appreciated.
    Thanks
    Manohar

    Hi Manohar,
    You can use QAAWS(query as a web services) and build your queries on universe.
    You get an option of hardcoding the user id and password in the data connection for QAAWS which will not asks the users for login credentials.
    This will hepl the user to veiw the latest data from the database and the user wont be asked for login too.
    Thanks,
    Amit.

  • Support for SWF Verification in the reference implementation server

    The Server for Protected Streaming provides a way to configure a whitelist of allowed SWF hashes.  However, from what I can tell, the reference implementation server does not have this capability.  Any suggestions on how to implement SWF Verification in the reference implementation server ?

    To use SWF whitelists with the Reference Implementation, set the SWF  whitelist in a policy, and use that policy when packaging the content.  When issuing a license, the Reference Implementation will use whatever  restrictions were specified in the policy at packaging time.  Alternatively, since the Reference Implementation ships with source  code, you can modify the server so you can specify the SWF whitelist  information at the time the license is generated.

  • User with an active Adobe ID on a paid subscription, tries to open InDesign CC and is prompted with a Login screen for the "trial version".

    The user had the program open earlier today. But now, she can't open the program and gets prompted with the login screen. I don't want her to login as it mentions the "trial version" of the software. We have a paid subscription.
    The application opens successfully on other work stations.
    I am running the Adobe CC Installer update on her machine now.
    Why did her login suddenly become deactivated?

    Chat Now button near the bottom for Activation and Deactivation problems may help
    http://helpx.adobe.com/x-productkb/policy-pricing/activation-deactivation-products.html
    OR
    Asked to sign in after paying may help
    -http://helpx.adobe.com/x-productkb/policy-pricing/activation-network-issues.html
    or
    http://helpx.adobe.com/creative-cloud/kb/license-this-software.html
    Membership and Payments http://helpx.adobe.com/x-productkb/policy-pricing/membership-subscription-troubleshooting- creative-cloud.html

  • SWF Verification and Dynamic Plugins

    If your Strobe Player is using SWF Verification, does anyone know if adding additional dynamic plugins will cause your SWF to fail SWF verification?

    Hi,
    As of now, you cannot use SWFVerification to protect HTTP Streaming, as HTTP Streaming does not require connection with core process of FMS, but request is handled by f4f module in apache. The current way to ensure protection of HTTP streams is to use Flash Access for encryption of fragments. You can find more about Flash Access here at http://www.adobe.com/products/flashaccess/
    Thanks,
    Abhishek

  • IPad 2 - Connecting to WiFi with a login service

    Let me start by saying that I did search the forums, but did not find anything. So, if you know of a discussion that covers this topic, please link.  Much obliged for your support.
    The internet connection in my apartment is setup in such a way that the ISP requires a login each time you want to connect.  This is akin to connecting to a public access connection that requires a login.  I do have WEP enabled on my router, but I do not believe that to be the problem here. 
    This is what I must do if I want to connect:
    Turn of WiFi in the Settings menu.
    Wait about 5 - 10 seconds.
    A new page/screen will load and I am directed to the log in page for my access point.
    I type in my login credentials and press enter/login.
    The page verifies that I have connected.
    However, from here, I have only a few options as this not appear to be a regular Safari Browser page. I can hit 'cancel', forward/backward, or the home button on my device.
    No matter which option I choose, when I got to Safari, or any other application for that matter, and try to access the Internet, I receive a notification that I am not connected. 
    Then I must turn of WiFi under Settings.
    Turn WFi back on.
    Now I am able to connect.
    However, when I do this on my iPhone, or any other device really, when I connect to my WiFi, the ISP automatically routes me to their login page through Safari, it type in my credentials, login, and then I'm good to go. I do not have to disable/enable my connection.
    All of the above happens exactly the same if I go to any other open access point with a login page, i.e. Starbucks.
    Is anyone else experiencing this? Does anyone know what is causing this or how to fix it?
    Any thoughts, tips, or pointers here would be much appreciated.
    Thanks for your time!!
    Matt

    Matt-
    I don't think there is a simple solution to the problem.  Considering the number of places that require a log-in, a lot of iPad users may be having the same problem.  Perhaps Apple can devise a solution.  The more people that report it as a problem, the greater the chances they will do something - if anything can be done on the iPad.
    My first thought was to get a new ISP!  Of course that is not practical in some cases you mentioned.  However, enough people complaining may cause the places that require log-in to reconsider.  If places like Starbucks depend on WiFi access to bring in customers, they could be forced to change the system as the number of iPads increases.
    Fred

  • SWF verification behind a reverse proxy cache

    Hi!
    If I place an set of FMS servers behind some reverse proxy caches, will I get problem with SWF verification if the cache layer caches the .f4m meta data file with the SWF verification data? Is there any documented best practice on the requirements to build large scale deployment with security enabled?
    best regards
    Johan Acevbedo

    Hello Johan,
    Is in your case drm is embedded inside the f4m??
    HLS-VOD
    Set the TTL for your f4m to max equal to an interval at which you are expecting the swf hashes to update.
    For example, if you expect, you may add/remove swf hashes at interval of say 1 hr, then set the TTL for the f4m as say 50 min (10 min taken as allowed error in your estimation of swf hash update).
    You may set HttpStreamingF4MMaxAge under hds-vod (if that is hds vod case) as per your required TTL. Most proxy cashes should ideally respect the TTL dictated by origin response an should re-request the f4m after that period.
    HDS-LIVE
    Otherwise if this is hds-live case, then I don't think drm is embedded into the f4m. Just verify. Drm is a serperate request. In that case, you can set TTL on drm (HttpStreamingDrmmetaMaxAge) request also under hls-live in httpd.conf.
    Read more about these configs http://help.adobe.com/en_US/flashmediaserver/devguide/WSd391de4d9c7bd609a95b3f112a373a7115 -7fff.html#WSae20eaa80bf612516499f756131e06fb583-7fff
    You can also set the drm update interval time in the recording section of the  application.xml as per your need. Read more about the config at http://help.adobe.com/en_US/flashmediaserver/devguide/WSd391de4d9c7bd609a95b3f112a373a7115 -7fff.html#WSc1a546382286f18f-4a910076130ddc59d17-7ffe . Config setting will only update drm on the disk. But you will still have to set the proper TTL in Apache httpd.conf for the request of the DRM to be sent by the proxy to the origin to fetch it.
    -Nitin

  • OSMF SWF verification issues...

    Hi,
    I am having some sporadic issues with OSMF implementation of DRM / SWF verification.
    Under some (as yet murky, but semi-replicable...) circumstances, it is possible to get the licence download to stall in a way that crashes the licence process and so blocks play of _all_ protected content. This block remains in place after browser restart etc. and can occasionally require manual "Deauthorize this computer" and browser cache clearance etc. to resume. The closest I have come to a reliable way to replicate the issue is to place a manual block on the licence request to delay it by a second or two which can reliably crash playback of protected content... but it only works on selected PCs.
    As we haven't yet managed to isolate the cause enough to get Adobe's assistance, I am asking for any potential avenues for detecting / debugging / diagnosing the issue?
    I have tried adding listeners to all available events on the OSMF DRMTrait but all this will tell me is either uninitialized, authenticationError or authenticationComplete. (Seemingly, the other DRMState values are either unused or unreported.) Equally, the changes for these seem to happen too quickly to display them on screen.
    G

    Hi,
    As of now, you cannot use SWFVerification to protect HTTP Streaming, as HTTP Streaming does not require connection with core process of FMS, but request is handled by f4f module in apache. The current way to ensure protection of HTTP streams is to use Flash Access for encryption of fragments. You can find more about Flash Access here at http://www.adobe.com/products/flashaccess/
    Thanks,
    Abhishek

  • Air on Android - swf verification

    We use swf verification for our rtmp streams, which is working.
    For our air and on android application to access these rtmp streams, do I upload the SWF used to create the apk?  Or, do I have to do something with the apk?

    I don't think there is any difference in swf verification process for air android (apk). Are you facing some problems in it?
    for reference this page gives information about swf verification: http://livedocs.adobe.com/flashmediaserver/3.0/docs/help.html?content=03_configtasks_22.ht ml

  • Share my Entourage calender on one computer with users/login accts ???

    Hi, I've been searching the forums, and only see answers on this topic for people on work networks/exchange. My issue is for a single home iMac with three users with separate login accts.
    My problem is that I have a new iMac and I got office2004 and I would like all the members of my family to use this computer and share the "ENTOURAGE CALENDER" so we can all see who is doing/going what and when.
    I can't seem to figure this out and I need some help!!!! Can anyone explain how I can achieve this simply to me?
    I would greatly appreciate it.
    Thanks,
    -Doug
    iMac20 intel duo Mac OS X (10.4.8) Office 04 for Mac, Entourage Calender
    iMac20 intel duo   Mac OS X (10.4.8)  

    There is no way to do that without a server being involved. I would recommend using Google Calendar to achieve something similar.

  • How to start a application with a login window?

    hi there
    does anyone have any idea on how to start an application with a login window? a login window is the first frame or window to be displayed when an application starts running. and only correct login id and password have been entered the real application will start. any sample out there? thank you.

    You can start a new thread by making a thread object and passing it an implementation of a runnable object. Runnable has just one method, public void run(), this is was gets executed in a second thread. perhaps the code you would use would look something like this.
    <code>
    // set up thread for login window
    new Thread(new Runnable() {
    public void run() {
    // construct your login window here
    // when you are done processing the
    // password....
    if(goodPassword) {
    authorized = true; // a global variable
    notifyAll(); // don't forget this
    else {
    System.exit(42);
    }).start();
    // control does not stop this code gets executed while
    // the above thread is running.
    // Set up main program here. This is done in the
    // backround.
    while(!authorized) {
    synchronized(this)
    { wait(50); }
    // now when the user logs in this frame pops
    // up real quick.
    myFrame.setVisible(true);
    </code>
    Hope you can figure it out.. good luck :)

  • While send/receive email, I have received an error message "Sending of password d"? However with same login details, I am able to login with other application.

    While send/receive email, I have received an error message "Sending of password d"?
    However with same login details, I am able to login with other application.
    I have changed password still the issue remains as it is.

    https://support.mozilla.org/en-US/kb/cannot-send-messages

Maybe you are looking for