Where to put crossdomain.xml on my laptop?
Hi everyone,
My flex 3 site works on my desktop. But it does not work on
my laptop. I learn that I need to put the crossdomain.xml file on
my laptop. But where ? I put it in C:\ It still does not work. Can
someone please
tell me where should I put the crossdomain.xml file on my
laptop ?
Thanks,
May
Hmm, that does not sound right.
the crossdomain file needs to go wherever the root domain of
the url to the webservice resolves.
For example, if the webservice url is:
http://www.myServer.com/MyWebService?wsdl
and MyWebservice is in:
c:\intepub\wwwroot\MyWebService
then the crossdomain file should go in wwwroot.
Tracy
Similar Messages
-
Security Error in accessing Web service from Flex.Where to put crossdomain.xml in axis container?
Hi guys.
Typically webservices are invoked across domains. Flash has defined certain policies which prevent crossdomain access. The only way to bypass this security feature is to put a crossdomain.xml file within the server root of the webservice provider i.e. in our case at http://abc.com. A sample example of crossdomain.xml is as below:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="*" secure="false"/>
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>
If the crossdomain.xml is not added the developer will get “Security Error accessing URL” type of messages.
The above mentioned information should be enough for you to get your flex based WebService client up and running.
We are using axis2 to build webservices. We deployed the webservices under axis2 container under repository/srvices folder . But in Flex when we try to call the webservices we were getting the exception saying security error in accessing url. The solution is we need to put the crossdomain.xml o that it is loaded at runtime and allow us to access. In tomcat if we put the file under ROOT directory we could accss the file and we were able to access the webservices deployed under Tomcat. But I googled for Axis2 container and couldnt find any solution.
Please post the reply if anyone knows the solution to it.
Thanks
RajaHi. So, I did take a quick look at the Axis2 standalone server and didn't see any way to server up a file such as crossdomain.xml. It seems like it might be a useful enhancement to have the ability to serve up files even if this functionality was very simple/limited and nothing like a full blown http server.
I'd log an enhancement request against axis2 if this is something you'd like to have.
http://issues.apache.org/jira/browse/AXIS2
-Alex -
Where to place crossdomain.xml in SAP ECC IDES?
Hi,
I have a flex application which uses webservices generated in SAP IDES system. This flex app is stored in portal server. Since the physical servers are involved, I get a security error message, which says, "Security error accessing url". I browsed through the net and found that, we have to place a crossdomain.xml file in the web root folder of the server from where we are fetching the data. In my case, it would be SAP IDES system.
I wanted to know where do I place this xml file in IDES? What would be it's location and how can I generate a URL to access this xml file?
Please let me know about this, if anyone has done this before.
Appreciate your help.
Thank you,
Warm regards,
DeepakHi Durairaj,
As mentioned in that thread, I created a BSP application in the server and loaded crossdomain.xml. It was accessible from the browser too.
This is the xml code which is there in crossdomain:
<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*" />
<site-control permitted-cross-domain-policies="all" />
<allow-http-request-headers-from domain="*" headers="*" />
</cross-domain-policy>
But this did not solve my purpose
I have my flex application in a server, servera.abc.com and I am using the webservices of another server, serverb.abc.com
I uploaded the crossdomain.xml in serverb.abc.com, in the following path through a BSP application:
http://serverb.abc.com:8000/sap/bc/bsp/sap/zroot/crossdomain.xml
But I still get the 'security accessing url' message in flex. It doesn't load the wsdl.
I'm also using this piece of code in initialize event of the application in flex:
private function initSecurity():void{
Security.allowDomain("*");
Security.loadPolicyFile("http://serverb.abc.com:8000/sap/bc/bsp/sap/zroot/crossdomain.xml");
Alert.show("crossdomain xml loaded....");
Where am I going wrong here? -
Where to place crossdomain.xml
Hi experts,
I am trying to connect from a flex application to a webservice on the Web AS. If I deploy local or run the application on the same domain as the webservice everything works fine, but not on another domain, so I think it could be fixed with the crossdomain.xml file on the Web AS. But where should I place this file if my wsdl for the webservice is located at http://<server>:<port>/sap/bc/soap/wsdl11?services=<servicename>??
Thanks a lot,
ManfredFor issues regarding crossdomain.xml be sure to understand the concepts behind it.
http://www.adobe.com/devnet/articles/crossdomain_policy_file_spec.html
Also check http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html for changes in latest Flash Player versions.
You can check if your problems really are caused by crossdomain.xml by using the debug version of the latest Flash Player. This is also described in the above document on [page 5|http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_05.html].
Kind regards,
Roland -
Where to put unattend.xml when using create task sequence media
SCCM 2012 R2.
I created a capture task sequence media to a flash drive. I noticed the capture media does run sysprep even though it is not located on the flash drive. Where do I put my customized unattend.xml for sysprep? Does it go in c:\sysprep
There is no documentation on this that I can find.sysprep doesn't use an unattend.xml file so you don't put it anywhere. You supply a custom unattend.xml during the deployment task sequence which in turn is delivered as part of the TS for use by WIndows Setup (which is what actually uses an unattend.xml
file). Task Sequence media has nothing to do with sysprep either. I think you may be confusing sysprep with Windows mini-setup. sysprep is the process of generalizing a system generally preparing it to be captured. Windows mini-setup is what runs the first
time a syspreped system is booted. They are two different things.
You *can* place an unattend.xml file the image for use by Windows mini-setup -- the locations mini-setup will look for this file are detailed at
http://technet.microsoft.com/en-us/library/cc749415(v=WS.10).aspx . But that is rarely done anymore with task sequences because you generally want to dynamically inject an unattend.xml
file into the process instead of statically placing one in the image -- that defeats the purpose of having a generic reference image. This is done by configuring the Apply Windows step in a deployment task sequence.
Still, that begs the question posed by narcoticoo. Your reference image(s) should be hardware agnostic, built on a VM, and automated. What you are doing will cause you pain in the long run.
Jason | http://blog.configmgrftw.com | @jasonsandys -
Anyconnect 4 as 802.1x supplicant replacement for Windows - where to put config xml file?
I want to try out Anyconnect NAM as a 802.1x supplicant replacement in Windows 8.1
And I have made myself a fine little config xml file that I want to test.
But where do I put that config file?
Should I rename it to something special, or should Anyconnect NAM have some extra startup parameters?
Thank you.The file must be called "configuration.xml" and if you already installed NAM, then put the file in \Users\All Users\Cisco\Cisco AnyConnect Secure Mobility Client\Network Access Manager\newConfigfiles\ and restart the anyconnect service
If instead you are creating an install package for deploying, you can put the configuration in a directory named Profiles/NAM/ together with the msi package, the installation will import the config itself.when you run the msi file. -
hi!
i am trying to deploy a servlet on tomcat.i have put files as per following tree structure
TOMCAT_HOME
webapps
myApp
web-inf(web.xml)
classes(TestingServlet.class)
contents of web.xml are
<web-app>
<servlet>
<servlet-name>Testing</servlet-name>
<servlet-class>TestingServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>TestingServlet</servlet-name>
<url-pattern>/Servlet/*</url-pattern>
</servlet-mapping>
</web-app>
i am accessing this with URL
http://localhost:8080/myApp/servlet/Testing
but i am getting this error
HTTP Status 404 - /myApp/servlet
The requested resource (/myApp/servlet) is not available.
i have not made context entry in conf/server.xml ,is this error due to it.
further when i added following lines to /conf/server.xml
my tomcat server failed to start.
<Context path="/myApp"
docBase="webapps/myApp"
crossContext="false"
debug="0"
reloadable="true" >
</Context>
can anyone help me to understand this and suggest a solution.change web.xml
<servlet-mapping>
<servlet-name>TestingServlet</servlet-name>
<url-pattern>/test</url-pattern>
</servlet-mapping>and use
http://localhost:8080/myApp/test
" i have not made context entry in conf/server.xml ,is this error due to it."
no need to add anything to server.xml to get simple apps runnning -
Question: crossdomain.xml without web server
Hi, Flex Gurus,
In case where I want to use Flex to communicate with a
non-web server machine, e.g. mysql, where should the
crossdomain.xml reside on the non-web server machine?
thanks,
swWell at that point you would put it where ever Flex can load
the file locally and do Security.loadPolicyFile("url"). However if
you are going to be using a socket for the connection I'm pretty
sure crossdomain.xml isn't what you're looking for, with the recent
security changes to the Flash Player I think you are looking more
for a Socket Policy File. You can read up on what I'm talking about
here at the following link.
Policy
File -
sorry i don't get it:
why should having a crossdomain.xml policy file on the server
that i load data from add any security?
if i'd operate a malicous site i'd just put the
crossdomain.xml on my site.
it does not seem logic to me that any server can decide if it
is secure that a flash app can load data from it.
it would seem more reasonable that the flex/flash app itself
decides where it is safe to load data from.
i don't understand the security underlying this concept.
what am i missing here?
thanks,
maxflexThanks for sharing that URL. I think this is the section that applies to my XSS issue:
If you imagine that the "public server" is instead a "hacker's server," and that instead of pushing out nice public content he's sharing harmful links to malware, etc., then I think you see the problem
"A public server that allows data access from any domain
Some sites are intended to be accessed by anyone. They contain publicly available data, such as news feeds and web services.
The Flash Player, and web browsers, generally disallow access to data outside the current domain. Because of this, a common practice is to deploy a proxy script on the server that hosts the Flash movie, which then requests data server-side before returning it to the movie.
This is a standard practice, but it requires the creator of the Flash movie create server-side logic just to access public data. If the public server has a policy file, all Flash movies can access its data without any additional server scripts.
A policy file that permits all domains to access it uses a wild card instead of specifying individual domains.
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy> " -
Hi,
I already posted in PcP1's board but as the subject i think it's a "cross question" between web and PcP...
I'd like to use the ability of jw player to put in playlist the content of a rss feed (from a podcasts' blog), i thought it could be an easy way to spead podcasts contents on other sites...but it apparently needs an xml file named crossdomain.xml to authorize Flash to read datas from a different domain.
I tried in /Library/WebServer/Documents and restarted web, and tried also in /PodcastProducerContents/Podcasts (but didn't know what to reboot)..But it doesn't work..Does anyone knows where and how put this file ?
Thanks in advance, JulienAccording to the Specification, the crossdomain.xml file should be placed in the root level of your web server. That would typically be /Library/WebServer/Documents/ unless you've changed it.
If that's correct and where you've saved the file then the next thing to look at is the actual content of the file to ensure it grants the rights that you expect. -
Data grid, remote xml, crossdomain.xml
Hi...
I have a problem with the security sandbox of the flash player.
I need a data grid to get its data from a xml located in other domain. I have prepared a crossdomain.xml file with this structure:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>
</cross-domain-policy>
I have put this file in the public_html folder of my host, and also in the folder where the app is located but still not working....
I guess I need to do something else....
Thank you very much.Hi there,
I am looking for a solution like yours, but it seems that
flex does not like much the XML attributes nor xpath syntax.
As a workaround, I would modify your source XML to be
<row>
<column>
<dataGridHeader1>Test Data 1.1</dataGridHeader1>
</column>
<column>
<dataGridHeader2>Test Data 1.2</dataGridHeader2>
</column>
</row>
This way, you can take the appropriate value by describing
<mx:DataGridColumn
headerText="{dataXML.column.dataGridHeader1}"
dataField="{column[0]}"/>
<mx:DataGridColumn
headerText="{dataXML.column.dataGridHeader2}"
dataField="{column[1]}"/>
Hope it helps. Let me know if you find the REAL solution to
read attributes and Xpath,
Best regards,
Miguel -
Crossdomain.xml file not being called by the SWF
Hi,
I'm serving an swf file compiled using flex builder 3.2 through plain HTTP, the SWF file calls a service in the same domain through HTTPS, as such, I put the following file in the root directory of my web server:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>
and name it crossdomain.xml
When the service is invoked, I get the following error: [RPC Fault faultString="Security error accessing url" faultCode="Channel.Security.Error" faultDetail="Destination: DefaultHTTP"]
When I check the access log files of my web server (Apache), there's no entry for crossdomain.xml (it is not being requested), why?
When I serve the SWF through HTTPs it works OK ... any ideas?
I have tried in several machines (different browsers, different versions of Flash player) and no success.I am also experiencing the exact same problem. I'm not able to change the crossdomain.xml file located in the root directory and am going to try creating a new policy file in a sub directory. The problem I'm having is that my web service is called from a virtual path and I do not know where to save this new policy file.
Have you tried to load in a specific policy file?
Security.loadPolicyFile( "http://yourdomain.com/policyFile.xml" );
Also, you may want to check which sandbox your swf file is in. flash.system.Security.sandboxType. This could be another cause to the error. My swf file is in the "remote" sandbox. -
Web services and crossdomain.xml HELP
Hello
I am using the web services connector to consume a service it
all works
fine in flash however in the browser it fails
I can see it trying to load crossdomain.xml at the domain of
the WS
provider this is despite my putting:
System.security.loadPolicyFile("
http://dev.chatham.site/crossdomain.xml");
frankly I am at a loss as to how to make this work I have
tried.
var allowpath = "
http://www.postcoderwebsoap.co.uk";
System.security.allowDomain(allowpath);
how the hell do you let the connector connect?
any insight would be greatly apreciated
Richtjacobs01 wrote:
Hi all,
This is a follow-up to the question I posted and answered myself yesterday.
I have created a web service that returns Hebrew words in a string format of an XML document. This all appears to be working fine at this point. The only problem is that when I'm debugging in NetBeans, certain hebrew characters/words (note: some characters / words work!) xerces gives me an invalid utf-8 string (byte 1 of 2) exception in the display of the SOAP response - not the response itself, but I think in whatever netbeans is doing to display it. Not sure i follow. Are you referring to the debugger screens where the IDE shows variables/stacks etc? If so, i would say not to worry too much. IDE's are not perfect.
I have tried testing the strings I am returning by themselves - xerces can parse when I save them into a file and load. So it seems like the problem is just with the >SOAP response / with netBeans.
I understand that returning XML within a SOAP container could then be screwing up the parsing. Any thoughts as to why certain words and not others? Is there any way to fix this, and perhaps more importantly - is it important to fix this?Did you test this in a production like environment? If so, i would say its just a minor annoyance. -
I have a rss reader builded and its working perfectly offline, it gets all the rss xml i want.
now i put the site online to test out , now it seems that nothing much happening, except the rss feed from cnn itself is working, rest just dont....
I dont get any errors or whatsoever, just nothing is loaded when i clicking on it.
now have been reseacrching and come across on the crossdomain policies >< which is kinda new to me..
I loaded it up, but still nothing happening...
i have this crossdomain.xml made.
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="http://www.norea.nl/Norea/Metanavigatie/RSS" />
</cross-domain-policy>
my questions are follows:
1. Is this the solution for me? or is it something else that bugs me?
2. do I put this on my root folder on the server or can I place it under the FOlder where the actual SWF file is located?
3. do i put on in the allow-access-from domain http://www.norea.nl/Norea/Metanavigatie/RSS/36846 or
feed://www.norea.nl/Norea/Metanavigatie/RSS/36846 or
http://www.norea.nl or
http://www.norea.nl/Norea/Metanavigatie/RSS
am using ac3 - player 10 - cs4 prof
thanks in advance!The crossdomain.xml file needs to go on the domain that's hosting the RSS feed (ie, norea.nl), not the domain that's hosting the swf. So if you have 2 domains:
www.a.com - hosting the RSS feed
www.b.com - hosting the swf
The the crossdomain.xml file goes on www.a.com and would look like:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="http://www.b.com" />
</cross-domain-policy>
or, if you wanted to allow any domain to access the RSS feed, do this:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />
<allow-access-from domain="*" />
</cross-domain-policy> -
Crossdomain.xml windows xp location?
im in progress making a simple desktop app where im going to play radio streaming on it.
im streaming the radio using FLV Player in my Windows XP SP2 PC.
For the app, im using a swf player from Fun SoundPlayer Maker.
The problem is, when im pressing the PLAY button, flash will popup stating about security settings.
I've search around, and it was about Crossdomain.xml, but i dont know where to put the file in my Windows XP Sp2 PC.
Can somebody tell me where sholud i put it and how to make my SWF collect data from it?
Its really frustrating....Theoretically if you want to control subdirectories - you need to place crossdomain.xml into the topmost directory you want to protect. In your case it may be:
www.mysite.com/content/website1/crossdomain.xml
With that said, Flash will strill attempt to load xml from the root - you need to load policy explicitly:
Security.loadPolicy("www.mysite.com/content/website1/crossdomain.xml");
Maybe you are looking for
-
Dear experts This is a problem I have read a lot about, but none of the answers work properly and I wanted to create a new thread in order to try to compile a final answer for this problem (at least in version 6.0) As you know Standar SAP uses postin
-
Hi Need some assistance here I think. Not sure if I'm doing something wrong or if it's a bug. I'm creating a pixel-like drawing using 1mm squares, need to be very accurate. Going through this process... - I've got a .psd file as a background referenc
-
Is Photoshop Elements 9 compatible with OS X Mountain Lion? I am having a lot of issues with this software.
-
Flash 8 compatible with Flash 9 Player
Just want to make sure that the Flash 9 Player is backwards compatible with Flash 8 files. Are there any limitations? System is Windows 2K and XP - no Vista worries yet!
-
Error 2 upon opening Dreamweaver CS5 - is OS X Lion to blame?
I'm a licensed user of the CS5 Web Premium platform for the Macintosh computer. I recently upgraded to Lion (OS 10.7.x), and since then I've been unable to open Dreamweaver without having the following screen pop up: Error: unable to open .../.../Dre