Xml cross domain

I am putting xml weather on my Flash site using Yahoo!
weather. I am using code similar to:
var my_xml:XML = new XML();
my_xml.ignoreWhite = true;
my_xml.onLoad = function(success:Boolean) {
// do something
my_xml.load("
http://xml.weather.yahoo.com/forecastrss?p=FRXX0076");
city_mc.onEnterFrame = function() {
city_mc._city.text =
my_xml.firstChild.childNodes[0].childNodes[6].attributes.city;
_temp.text =
my_xml.firstChild.childNodes[0].lastChild.childNodes[5].attributes.temp;
_conditions.text =
my_xml.firstChild.childNodes[0].lastChild.childNodes[5].attributes.text;
which works fine when tested locally, but doesn't work on the
www.
Yahoo offers cross domain xml at:
http://search.yahooapis.com/crossdomain.xml
which (I've been told) will remedy the security issue. How
would I modify my code and/or .swf above to call the
crossdomain.xml AND weather.xml needed to display weather on my
site? I have EXTREMELY limited knowledge of XML, so be gentle.
Thanks in advance for your assistance (and patience!)

Yahoo weather needs its own crossdomain.xml. Apparently they
are working on
it :)
http://tech.groups.yahoo.com/group/ydn-flash/message/10

Similar Messages

  • Load XML file from addon domain without cross-domain Policy file

    Hello.
    Assuming that there are two addon domains on the same server: /public_html/domain1.com       and      /public_html/domain2.com
    I try to load XML file from domain2.com into domain1.com without using cross-domain policy file (since it doesn’t work on xml files in my case).
    So the idea is to use php file in order to load XML and read it back to flash.
    I’ve found an interesting scripts that seems to do the job but unfortunately I can't get it to work. In my opinion there is somewhere problem with AS3 part. Please take a look.
    Here are the AS3/PHP scripts:
    AS3 (.swf in www.domain1.com):
    // location of the xml that you would like to load, full http address
    var xmlLoc:String = "http://www.domain2.com/MyFile.xml";
    // location of the php xml grabber file, in relation to the .swf
    var phpLoc:String = "loadXML.php";
    var xml:XML;
    var loader:URLLoader = new URLLoader();
    var request:URLRequest = new URLRequest(phpLoc+"?location="+escape(xmlLoc) );
    loader.addEventListener(Event.COMPLETE, onXMLLoaded);
    loader.addEventListener(IOErrorEvent.IO_ERROR, onIOErrorHandler);
    loader.load(request);
    function onIOErrorHandler(e:IOErrorEvent):void {
        trace("There was an error with the xml file "+e);
    function onXMLLoaded(e:Event):void {
        trace("the rss feed has been loaded");
        xml = new XML(loader.data);
        // set to string, since it is passed back from php as an object
        xml = XML(xml.toString());
        xml_txt.text = xml;
    PHP (loadXML.php in www.domain1.com):
    <?php
    header("Content-type: text/xml");
    $location = "";
    if(isset($_GET["location"])) {
        $location = $_GET["location"];
        $location = urldecode($location);
    $xml_string = getData($location);
    // pass the url encoded vars back to Flash
    echo $xml_string;
    //cURLs a URL and returns it
    function getData($query) {
        // create curl resource
        $ch = curl_init();
        // cURL url
        curl_setopt($ch, CURLOPT_URL, $query);
        //Set some necessary params for using CURL
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
       //Execute the curl function, and decode the returned JSON data
        $result = curl_exec($ch);
        return $result;
        // close curl resource to free up system resources
        curl_close($ch);
    ?>

    I think you might be right about permissions/settings on the server for php. Unfortunately I'm not allowed to adjust them.
    So I wrote my own script - this time I used file path instead of http address of the XML file.  It works fine in my case.
    Here it is:
    XML file on domain2.com:
    <?xml version="1.0" encoding="UTF-8"?>
    <gallery>
        <image imagePath="galleries/gallery_1/images/1.jpg" thumbPath="galleries/gallery_1/thumbs/1.jpg" file_name= "1"> </image>
        <image imagePath="galleries/gallery_1/images/2.jpg" thumbPath="galleries/gallery_1/thumbs/2.jpg" file_name= "2"> </image>
        <image imagePath="galleries/gallery_1/images/3.jpg" thumbPath="galleries/gallery_1/thumbs/3.jpg" file_name= "3"> </image>
    </gallery>
    swf  on domain1.com:
    var imagesXML:XML;
    var variables:URLVariables = new URLVariables();
    var varURL:URLRequest = new URLRequest("MyPHPfile.php");
    varURL.method = URLRequestMethod.POST;
    varURL.data = variables;
    var MyLoader:URLLoader = new URLLoader;
    MyLoader.dataFormat =URLLoaderDataFormat.VARIABLES;
    MyLoader.addEventListener(Event.COMPLETE, XMLDone);
    MyLoader.load(varURL);
    function XMLDone(event:Event):void {
        var imported_XML:Object = event.target.data.imported_XML;
        imagesXML = new XML(imported_XML);
       MyTextfield_1.text = imagesXML;
       MyTextfield_2.text = imagesXML.image[0].attribute("thumbPath");  // sample reference to attribute "thumbPath" of the first element
    php file on domain1.com:
    <?php
    $xml_file = simplexml_load_file('../../domain2.com/galleries/gallery_1/MyXMLfile.xml');  // directory to XML file on the same server
    $imported_XML = $xml_file->asXML();
    print "imported_XML=" . $imported_XML;
    ?>
    Regards
    PS: for those who read the above discussion: the first and the second script work but you must test which one is better in your situation. The first script will also work between two domains on different servers. No cross domain policy file needed.

  • Cross Domain XML not working

    Greetings,
    I recently obtained two different domains that point to a subdirectory of another domain server. The swf file I created does not show up when I use the domains that are pointing to the subdirectory of the original domain.
    I placed an xml file into the root directory that contains the following code:
    <?xml version="1.0"?>
    <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
    <cross-domain-policy>
        <allow-access-from domain="*.newdomainname1.com"/>
        <allow-access-from domain="*.newdomainame2.com"/>
    </cross-domain-policy>
    Nothing shows up. Is there something else I need to do make this work? I created the swf file using CS3 - Action Script 2. I tried searching everywhere to see if I'm missing a step, but cannot find anything. Any help would be greatly appreciated.

    I'm still not entirely clear what the problem is.
    Those links to the other domain show 404 errors, which is related to how things are set up on your hosting server for those domains, and nothing to do with flash.
    Are you trying to get the swf at http://www.searecovery.com/ to load data from the other domains? (I can't see it trying to do that, so perhaps not)
    If so you need to add *.searecovery.com to the crossdomain files at the other domains.
    Crossdomain files give flash content (swfs) hosted at one domain access to load data (or grant access to the data of loaded assets) from another domain.
    So you need crossdomain permission if you want a swf hosted at www.danfoss-searecovery.com to load xml data from www.danfosssearecovery.com for example, or to get at the bitmapdata of jpgs loaded from www.danfosssearecovery.com.
    If you just want to host the swf at the other domain, and if it's not loading data from external domains, then you pretty much just need to move copies of the html and swf there along with any external assets it loads (so long as you have used relative urls for loaded assets from within the swf) . If that's what you're trying to do then the issue here is likely to be simply how your hosting environment is set up for the other domains.

  • How and when to load cross-domain.xml for web services.

    I'm accessing some 3rd party web services and so I need them to have a cross-domain.xml file, which they have done.
    In order to access their web services, am I correct that I need to load the cross-domain.xml file they put on their web server, and if so, is my code to do so below correct, which I put in my creationComplete handler function?
    Note, of course the IP address in my code is not 0.0.0.0.
    Do I need all these lines, and am I doing this correctly?
    Currently I am getting a SecurityErrorEvent.
    Security.allowDomain("0.0.0.0");
    Security.loadPolicyFile("http://0.0.0.0/crossdomain.xml");
    var request:URLRequest = new URLRequest("http://0.0.0.0/crossdomain.xml");
    var loader:URLLoader = new URLLoader();
    loader.addEventListener(Event.COMPLETE, policyLoaded);
    loader.addEventListener(IOErrorEvent.IO_ERROR, policyIOError);
    loader.addEventListener(SecurityErrorEvent.SECURITY_ERROR, policySecurityError);
    loader.load(request);

    Okay, I found that when I put the crossdomain.xml file at the root of my web site file area my hosting company provides, I do not specifically need to load the crossdomain.xml file.
    But if I want finer control over who has access to what, and I put the crossdomain.xml file in the same directory as my Flex app SWF file, what lines of the following code (or additional lines I don't know about) should I put in my app creationComplete handler function to load the crossdomain.xml file?
    Note, of course the IP address in my code is not 0.0.0.0.
    Do I need all these lines, and am I doing this correctly?
    Security.allowDomain("0.0.0.0");
    Security.loadPolicyFile("http://0.0.0.0/myAppFolder/crossdomain.xml");
    var request:URLRequest = new URLRequest("http://0.0.0.0/myAppFolder/crossdomain.xml");
    var loader:URLLoader = new URLLoader();
    loader.addEventListener(Event.COMPLETE, policyLoaded);
    loader.addEventListener(IOErrorEvent.IO_ERROR, policyIOError);
    loader.addEventListener(SecurityErrorEvent.SECURITY_ERROR, policySecurityError);
    loader.load(request);

  • Xml Socket  policy to connect to a range of IPS cross domain scripting

    Dear,
    I have a problem with connecting to other servers rather the
    one who has served the swf file.
    i was facing the problem even on the same machine , so i have
    provided the policy file , to be served before opening the
    connection, and it works, but still in IE6 i was just skiping the
    requset-policy-file that is sent by the movie and it works, rather
    the other browsers didn't like this way. At that time i have
    written the code to check for the header , and send back the policy
    file.
    the policy file that i am using is the following:
    PolicyFile = @"<?xml
    version=""1.0""?><cross-domain-policy><allow-access-from
    domain=""192.168.1.100"" to-ports=""843""
    /><allow-access-from domain=""192.168.1.101""
    to-ports=""843"" /></cross-domain-policy>";
    My hope is to be able to connect to 192.168.1.101:843 , and
    my server web is the other ip .
    Best regerds

    Hi, go to
    Flash Resources , you can
    find a java application that can serve policy files to resolve this
    problem.

  • I am calling an xml , that come from rtmp server and i want to play a video . when i pause it show an error of cross domain. what i can i do?

    I am calling an xml , that come from rtmp server and i want to play a video . when i pause it show an error of cross domain. what i can i do?

    Please quote the exact error message, word-for-word, verbatim.
    What is your operating system?
    What version of Lightroom?

  • Problem with socket cross domain

    Hi guys,
    This is my cross domain file:
    <?xml version="1.0"?>
    <!DOCTYPE cross-domain-policy SYSTEM "/xml/dtds/cross-domain-policy.dtd">
    <!-- Policy file for xmlsocket://socks.example.com -->
    <cross-domain-policy>
       <site-control permitted-cross-domain-policies="*"/>
       <allow-access-from domain="localhost" to-ports="80" />
    </cross-domain-policy>
    I am placing it in my server.
    From flex i am running this:
    Security.loadPolicyFile("my server address");
    And yet I am getting this event:
    SecurityErrorEvent type="securityError" bubbles=false cancelable=false eventPhase=2 text="Error #2048"
    What can I do?

    Hello ILikeMyScreenNameNdCoffee,
    I had the same problem with XMLSocket and I used a policy server that runs
    on the remote server on port 843 and from Flex I load file before connecting
    the xmlsocket Security.loadPolicyFile("my server address:843"). If you want
    I can upload a version of my policy server or you can use the server policy
    from here
    http://www.broculos.net/tutorials/how_to_make_a_multi_client_flash_java_server/20080320/en
    Also you can read here more about file policy:
    http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_04.html.
    On Thu, Aug 19, 2010 at 5:40 PM, ILikeMyScreenNameNdCoffee <[email protected]

  • Calling secured web service, cross domain security

    Hey all,
    I am trying to call a secured service, for which i need to enable cross domain security.
    I have followed the steps described in
    http://download.oracle.com/docs/cd/E15523_01/web.1111/e13707/domain.htm#i1176046
    i.e. enabling trust between weblogic server domains.
    The problem is: -
    User authentication is working fine, but i am not able to invoke the operation.
    Here is the content of log file
    [2010-04-01T12:15:58.109+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger port from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:58.109+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger service from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger invoke from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger invoke_footer from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger operation from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger request_xml_choice_toggle from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
    [2010-04-01T12:15:59.031+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] WSMAgent is initialized for category=management, function=agent.function.client, topologyNodePath=/wls/em/EJBs/default/COMPONENTs/default/WEBSERVICECLIENTs/ItemCostService/PORTs/ItemCostServiceSoapHttpPort/INTERCEPTORs/, isJ2EE=true
    [2010-04-01T12:15:59.046+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Recipient Alias property not configured in the policy. Defaulting to encrypting with signers certificate.
    [2010-04-01T12:15:59.046+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] WSMAgent is initialized for category=security, function=agent.function.client, topologyNodePath=/wls/em/EJBs/default/COMPONENTs/default/WEBSERVICECLIENTs/ItemCostService/PORTs/ItemCostServiceSoapHttpPort/INTERCEPTORs/, isJ2EE=true
    [2010-04-01T12:15:59.328+05:30] [soa_server1] [NOTIFICATION] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] MediatorServiceEngine received a request for operation = retrieveItemCost
    [2010-04-01T12:16:02.109+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Payload after BaseActionHander.requestMessage :{parameters=oracle.xml.parser.v2.XMLElement@137ba0c}
    [2010-04-01T12:16:02.109+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Properties after BaseActionHander.requestMessage :{ReferenceInstance=[email protected]9371, to=http://adc60091fems.us.oracle.com:6079/cstItemCosts/ItemCostService, oracle.fabric.security.identity.subject=Subject:[[
    Principal: CrossDomainConnectors
    Principal: all_function_all_data
    Principal: authenticated-role
    Private Credential: Subject:
    Principal: all_function_all_data
    Principal: CrossDomainConnectors
    , tracking.compositeInstanceId=30022, tracking.ecid=0000IUs7bmy1f_JLMm0Fye1Bg7vS000325, tracking.conversationId=null, tracking.compositeInstanceCreatedTime=Thu Apr 01 12:15:59 IST 2010, action=http://xmlns.oracle.com/apps/scm/costing/itemCosts/service/ItemCostService/retrieveItemCostRequest, tracking.parentComponentInstanceId=reference:30019, MESH_METRICS=null, tracking.parentReferenceId=mediator:3B28BA003D5A11DFBF807548C0B7C19C:3B4087C03D5A11DFBF807548C0B7C19C:req, transport.http.remoteAddress=10.177.219.95}
    [2010-04-01T12:16:02.125+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Headers after BaseActionHander.requestMessage :[]
    [2010-04-01T12:16:03.562+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Rolling back transaction due to ORAMED-03303:[Unexpected exception in case execution]Unexpected exception in request response operation "retrieveItemCost" on reference "Service1". Possible Fix:Check whether the reference service is properly configured and running or look at exception for analysing the reason or contact oracle support.
    [2010-04-01T12:16:03.578+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Got an exception: oracle.fabric.common.FabricInvocationException: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check[[
    oracle.tip.mediator.infra.exception.MediatorException: ORAMED-03303:[Unexpected exception in case execution]Unexpected exception in request response operation "retrieveItemCost" on reference "Service1". Possible Fix:Check whether the reference service is properly configured and running or look at exception for analysing the reason or contact oracle support.
    at oracle.tip.mediator.service.SyncRequestResponseHandler.handleFault(SyncRequestResponseHandler.java:207)
    at oracle.tip.mediator.service.SyncRequestResponseHandler.process(SyncRequestResponseHandler.java:123)
    at oracle.tip.mediator.service.ActionProcessor.onMessage(ActionProcessor.java:64)
    at oracle.tip.mediator.dispatch.MessageDispatcher.executeCase(MessageDispatcher.java:124)
    at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCase(InitialMessageDispatcher.java:514)
    at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCases(InitialMessageDispatcher.java:417)
    at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCases(InitialMessageDispatcher.java:301)
    at oracle.tip.mediator.dispatch.InitialMessageDispatcher.dispatch(InitialMessageDispatcher.java:137)
    at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.process(MediatorServiceEngine.java:779)
    at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.request(MediatorServiceEngine.java:650)
    at oracle.integration.platform.blocks.mesh.SynchronousMessageHandler.doRequest(SynchronousMessageHandler.java:139)
    at oracle.integration.platform.blocks.mesh.MessageRouter.request(MessageRouter.java:179)
    at oracle.integration.platform.blocks.mesh.MeshImpl$2.run(MeshImpl.java:167)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAs(Subject.java:396)
    at oracle.integration.platform.blocks.mesh.MeshImpl.doRequestAsSubject(MeshImpl.java:165)
    at oracle.integration.platform.blocks.mesh.MeshImpl.request(MeshImpl.java:141)
    at sun.reflect.GeneratedMethodAccessor1762.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
    at oracle.integration.platform.metrics.PhaseEventAspect.invoke(PhaseEventAspect.java:59)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy184.request(Unknown Source)
    at oracle.integration.platform.blocks.soap.WebServiceEntryBindingComponent.doMessageProcessing(WebServiceEntryBindingComponent.java:1169)
    at oracle.integration.platform.blocks.soap.WebServiceEntryBindingComponent.processIncomingMessage(WebServiceEntryBindingComponent.java:768)
    at oracle.integration.platform.blocks.soap.FabricProvider.processMessage(FabricProvider.java:113)
    at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:1160)
    at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:896)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
    at oracle.security.jps.internal.jaas.AccActionExecutor.execute(AccActionExecutor.java:47)
    at oracle.security.jps.internal.jaas.CascadeActionExecutor$SubjectPrivilegedExceptionAction.run(CascadeActionExecutor.java:79)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
    at weblogic.security.Security.runAs(Security.java:61)
    at oracle.security.jps.wls.jaas.WlsActionExecutor.execute(WlsActionExecutor.java:48)
    at oracle.security.jps.internal.jaas.CascadeActionExecutor.execute(CascadeActionExecutor.java:52)
    at oracle.security.jps.internal.jaas.AbstractSubjectSecurity.executeAs(AbstractSubjectSecurity.java:105)
    at oracle.j2ee.ws.server.provider.GenericProviderPlatform.runAs(GenericProviderPlatform.java:302)
    at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:903)
    at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessing(ProviderProcessor.java:561)
    at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:216)
    at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:179)
    at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:417)
    at oracle.integration.platform.blocks.soap.FabricProviderServlet.doPost(FabricProviderServlet.java:480)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
    at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
    at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
    at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
    at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:326)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3592)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
    at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2202)
    at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2108)
    at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1432)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    Caused by: oracle.fabric.common.FabricInvocationException: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.throwFabricInvocationException(WebServiceExternalBindingComponent.java:414)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.throwFabricInvocationExceptionForSoapFault(WebServiceExternalBindingComponent.java:410)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processSOAPFault(WebServiceExternalBindingComponent.java:393)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processOutboundMessage(WebServiceExternalBindingComponent.java:252)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.sendSOAPMessage(WebServiceExternalBindingComponent.java:635)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.request(WebServiceExternalBindingComponent.java:525)
    at oracle.integration.platform.blocks.mesh.SynchronousMessageHandler.doRequest(SynchronousMessageHandler.java:139)
    at oracle.integration.platform.blocks.mesh.MessageRouter.request(MessageRouter.java:179)
    at oracle.integration.platform.blocks.mesh.MeshImpl$2.run(MeshImpl.java:167)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.Subject.doAs(Subject.java:396)
    at oracle.integration.platform.blocks.mesh.MeshImpl.doRequestAsSubject(MeshImpl.java:165)
    at oracle.integration.platform.blocks.mesh.MeshImpl.request(MeshImpl.java:141)
    at sun.reflect.GeneratedMethodAccessor1762.invoke(Unknown Source)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
    at oracle.integration.platform.metrics.PhaseEventAspect.invoke(PhaseEventAspect.java:71)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy184.request(Unknown Source)
    at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.request2Mesh(MediatorServiceEngine.java:981)
    at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:202)
    at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:94)
    at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:74)
    at oracle.tip.mediator.service.SyncRequestResponseHandler.process(SyncRequestResponseHandler.java:74)
    ... 64 more
    Caused by: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check
    at oracle.j2ee.ws.client.jaxws.DispatchImpl.throwJAXWSSoapFaultException(DispatchImpl.java:882)
    at oracle.j2ee.ws.client.jaxws.DispatchImpl.invoke(DispatchImpl.java:715)
    at oracle.j2ee.ws.client.jaxws.OracleDispatchImpl.synchronousInvocationWithRetry(OracleDispatchImpl.java:226)
    at oracle.j2ee.ws.client.jaxws.OracleDispatchImpl.invoke(OracleDispatchImpl.java:97)
    at oracle.integration.platform.blocks.soap.AbstractWebServiceBindingComponent.dispatchRequest(AbstractWebServiceBindingComponent.java:450)
    at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processOutboundMessage(WebServiceExternalBindingComponent.java:185)
    ... 88 more
    [2010-04-01T12:16:03.578+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Updating fault processing DMS metrics
    [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] MediatorServiceEngine returning a response for operation = retrieveItemCost
    [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [J2EE_MODULE.name: fabric] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Message Type is normalized, exiting agent.processFault()
    [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [J2EE_MODULE.name: fabric] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Message Type is normalized, exiting agent.processFault()
    [2010-04-01T12:16:04.296+05:30] [soa_server1] [ERROR] [OWS-04115] [oracle.webservices.service] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [APP: soa-infra] [arg: FabricProvider] [arg: javax.xml.rpc.soap.SOAPFaultException: FailedCheck : failure in security check] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] An error occurred for port: FabricProvider: javax.xml.rpc.soap.SOAPFaultException: FailedCheck : failure in security check.
    [2010-04-01T12:16:04.312+05:30] [AdminServer] [NOTIFICATION] [] [oracle.sysman.emSDK.webservices.wsdlapi.dispatch.DispatchUtil] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Dispatch.invoke failed.Exception stack trace written to trace file.
    [2010-04-01T12:16:04.343+05:30] [AdminServer] [ERROR] [EM-00453] [oracle.sysman.emas.model.wsmgt.WSTestModel] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Failed to invoke operation
    [2010-04-01T12:16:04.343+05:30] [AdminServer] [ERROR] [EM-00453] [oracle.sysman.emas.view.wsmgt.WSView] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE]*.ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Failed to invoke operation*
    [2010-04-01T12:16:04.359+05:30] [AdminServer] [NOTIFICATION:24] [] [oracle.sysman.core.app.menu.XMLMenuManager] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] The Document for grid menu is not found.
    [2010-04-01T12:16:04.531+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidad.bean.PropertyKey] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Unserializable value:oracle.sysman.core.view.tgtctls.common.DefaultTreeModel@15622f9 for key:UINodePropertyKey[value,17]
    Thanks
    Nitin

    Thanks again Billy,
    I have configured a wallet with all the necessary certificates. Actually I have purchased a VeriSign trusted certificate and convert that into Oracle Wallet (p12) using openssl with appropriate password. And I'm calling UTL_HTTP.set_wallet('<path_to_wallet>','<pass_to_open_it>');
    I have send my public key to them (web service company) and they need me to send my certificate with every request so that they can authenticate.
    You are saying we don't have to write any code for TLS/SSL UTL_HTTP will take care of that, thats really good.
    One more thing I want to mention here...
    In Internet Explorer - When I am importing my certificate without my private key and trying to access web service I'm getting 404 page not found error.
    But when I'm importing my certificate with the private key, I can see WSDL and all other methods offered by that web service.
    I'm guessing Oracle Wallet that I'm creating with my certificate will store private key also. B'coz it is showing me User Certificate in Ready state.
    ORA-00600 is not giving me proper location where I can find any error in my code.
    Thanks
    -Smith

  • Cross domain error while displaying .SWF files in  portal

    Hi Experts,
    i am working on EP ,
    i am trying to display a .swf file in a iview but that file is  giving an error as
    Add a cross domain policy file to the external data web server
    this swf file is retriving data from BI system.
    Please suggest !!
    i got a solution of putting a crossdoaim.xml file in root directory but thats not possible

    I think two urls will work for you:
    Xcelsius SWF with QaaWS through SSL: Cannot access external data
    http://livedocs.adobe.com/flex/3/html/help.html?content=security2_04.html

  • Cross Domain error for Silverlight + MVC application with self hosted WCF service on azure

    Hi,
    We are migrating existing Silverlight application to MVC; existing Silverlight application is hosted on
    Azure which is consuming self-hosted WCF service. For authentication we have implemented
    ADFS with WIF (passive). The cloud service (<myWebSite>.cloudapp.net) is C Name to (<myWebSite>.<myDomain>.com) and we 
    are consuming  WCF service at <myWebSite>.cloudapp.net/<myService>.svc, as we were getting “Cross Domain” error so we have added “clientaccesspolicy.xml” at the root of “WEB ROLE”.
    Existing Silverlight application works fine but the problem occurred when we deploy our migrated application to the same cloud service. We are getting a “Cross Domain” error.
    The same migrated application works fine on UAT environment, the only difference is UAT environment is
    without ADFS WIF implementation.
    Migrated application is half Silverlight and half MVC with initial landing page is Silverlight. MVC web role is used to host the service i.e. .SVC . To go to SL landing page , redirected from home controller. Following is being observed in fiddler for this
    application
    Existing Silverlight application -
    After authentication with ADFS it redirect to Silverlight landing page.
    Before calling service method it looks for “clientaccesspolicy.xml”
    In response header we are getting the content of “clientaccesspolicy.xml”
    And after this everything works fine
    Migrated Silverlight-MVC application –
    After authentication with ADFS it redirects to “HomeController” and from there we are redirecting to Silverlight landing page.
    Before calling service method it looks for “clientaccesspolicy.xml”
    In response header we are getting  following content - “https://federation-sts.<myDomain>.com/adfs/ls/?wa=wsignin1.0&amp;
    wtrealm=https%3a%2f%2f<myWebSite>.<myDomain>.com&amp;
    wctx=rm%3d0%26id%3dpassive%26ru%3d%252fclientaccesspolicy.xml&amp;wct=2014-03-17T10%3a36%3a04Z”
    4.Throw “Cross Domain” error.
    Also we have added filter in
    RouteConfig
    for .xml file
    routes.IgnoreRoute("{*allxml}",
    new { allxml = @".*\.xml(/.*)?" });
    NOTE: There is no configuration change apart from MVC configuration.
    We have done RDP to web role and found that “clientaccesspiolicy.xml” is present at “E:\approot” location and it is also accessible at “https://<myWebSite>.<myDomain>.com/clientaccesspolicy.xml”.
    Please help
    Thanks,
    Rahul P

    Hi,
    Please try to configure the cross domain policy file to allow public read access (that is, access it without federation requirement), make sure you can access the address
    http://something/clientaccesspiolicy.xml directly in a browser
    without redirecting to check whether the cross domain policy file could be anonymous accessed (Please start a new browser session and make sure you're
    not logged in. Then test the cross domain policy file.).
    Best Regards,
    Ming Xu
    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
    Click
    HERE to participate the survey.

  • Cross-domain SWF loading doesn't work

    I've been trying to get cross-domain SWF loading to work for
    a while now, but even though it works from the Flash IDE the loaded
    SWF is blank when I upload it to a webserver somewhere. And yes,
    both servers have a crossdomain.xml file in their root folder, and
    I've also used System.security.allowDomain("*"). I've published
    both using the 'using network' option in the publish dialog.
    Could someone please help me with this, as I can't seem to
    find why it isn't loading. I've also read the entire PDF about
    Flash 9 security, but I couldn't find anything about external SWF
    loading except for the crossdomain files.

    A little more color on this: If there are 2 or more messages in the active mailbox (and others in a different mailbox), the expand/collapse function works for the messages in the active mailbox. In the message column on the right, all the messages in the conversation are shown (both mailboxes). Only those messages in the active box are shown in the list column when the conversation is expanded. I can kind of see how this might be intentional, but it's strange to see lots of messages in the conversation in the right column, but only one or a few corresponding items in the messge list.

  • Cross Domain Placement

    I seem to have a complete crossdomain.xml that should work
    fine. However, I am in a situation that hopefully can be fixed.
    Here at the U we share the www2.med.umich.edu with other
    departments. Our IT department is throwing a fit about putting the
    crossdomain into the web root.
    However, there is supposedly a web root set for one of our
    areas 'prmc'. I added the crossdomain to that directory since that
    is where the rss files (xml) are located. It still seems to try to
    pull the crossdomain from www2.med.umich.edu and not
    www2.med.umich.edu/prmc.
    Is there anywhere to specify the path to the cross
    domain?

    Figured it out.
    In case anyone else has this problem:
    Have to import flash.system.Security;
    Then in you init add:
    Security.loadPolicyFile("
    http://www.yourwebsite.com/anotherfolder/crossdomain.xml");

  • Cross domain policy issues

    I am attempting to communicate with a web service via flash
    across sub domains. All works fine and dandy on my local machine,
    but when i upload to my web server there is no communication across
    the domains. The way the servers are configured, i don't have
    access to the root of the domain to place the crossdomain.xml in
    the default location, so i have it in the folder next to the web
    service and link to it directly shown below. I have this line on
    the first frame of the first layer of my file
    quote:
    System.security.loadPolicyFile("MYDOMAIN/StudentConnect2Apply/crossdomain.xml");
    The server containing the flash file is insecure and the web
    service is secure (https). this is what my crossdomain.xml file
    looks like:
    quote:
    <cross-domain-policy>
    <allow-access-from domain="*.MYDOMAIN.net"
    secure="false"/>
    </cross-domain-policy>
    I have also enabled logging within my flash player to track
    down problems, when i initially load the page in the browser, it
    approves the policy file:
    quote:
    OK: Policy file accepted:
    https://MYDOMAIN/StudentConnect2Apply/crossdomain.xml
    But after submitting the form and attempting to interact with
    the web service, i get an error saying permission is denied due to
    lack of policy file permissions and
    quote:
    Warning: Failed to load policy file from
    MYDOMAIN/crossdomain.xml
    It is looking in the root of the domain after i defined and
    it accepted the overridden location. Is there another way to define
    where the crossdomain.xml file is located that i am missing,
    possibly in the web service settings somewhere?

    I have found my answer, thanks to another forum.
    Meta-Cross Domain Policies.
    http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security_03.html
    Basically I can now say "f*ck you adobe. I as a college
    student who likes to host things on my 150 MB of server space can
    no longer host XML formatted levels for games I write. Because I am
    not the administrator of the server and will never be able to
    convince the administrator to let me have the MCDP file allow my
    flash file to load it's levels."
    F*ck you Adobe, F*ck You.

  • Is it possible to have a different cross domain for subsites

    Hi,
    I am not sure weather it is achievable or not. Can someone help me here please?
    I want to deploy more than one cross domain policy in the farm. Let suppose, www.mysite.com/crossdomain.xml(master- permission for complete site including all subsite.)
    www.mysite.com/site1/crossdomain.xml (Permission just for site1)
    www.mysite.com/crossdomain.xml (Permission jus for site 2)
    And so on.
    Many Thanks
    Manan

    Hi Yammer,
    Apologies if I have posted the question in a wrong section.
    Is it possible for you to point me to the correct section.
    Regards
    Manan

  • Error 2170 in Cross Domain Policy deployed in Enterprise Portal

    Hi All,
    We are facing an Error # 2170 for the Cross Domain Policy in Enterprise Portal.
    We developed the dashboard using 2 web service connections (using ECC Remote Enabled Functon Module). The Web services were made Public so that they can be accessed from any network. We developed the dashboard using the public enabled webservices and exported to the SWF file which is working fine.
    But when we place the dashboard SWF file in the Enterprise portal it gives the error " Cross Domain Policy Error #2170" .
    We Placed the Cross domain Policy file in ECC Server in the root directory and placed the same in Enterprise portal C drive.
    But still it shows the same error when we preview the dashboard in Enterprise Portal.
    The Cross Domain Policy File that we are using is as follows:
    -<cross-domain-policy> <site-control permitted-cross-domain-policies="all"/>
                <allow-access-from secure="false" to-ports="" domain=""/>
               <allow-http-request-headers-from secure="false" domain="" headers=""/>
               <allow-https-request-headers-from secure="false" domain="" headers=""/>
    </cross-domain-policy>
    Please let us know if the cross doamin file is correctly coded and suggest us with suitable solutions for this problem. Also let us know if there is some alternative solution to this issue.
    Thanks,
    Malla Reddy D

    Hello Malla,
    Maybe SAP Note 1240810 helps... Anyway, I would say that if your issue is with the direct SAP NW BI connection, through BICS, the only file which is relevant is bicsremotecrossdomain.xml, which should be located on your server HTTP root.
    Another check you can perform is if you have both portal certificate entries as per SAP Note 1508663.
    Kind Regards,
    Marcio

Maybe you are looking for