1 Reply Latest reply: Aug 10, 2012 7:22 AM by kglad RSS

    crossdomain.xml for subdirectory level

    mp05 Community Member


      We need to deploy crossdomain.xml on our webserver, but the host name remains same across different websites,

      How can we add restrictions at sub-directoty level (website1)?


      the URLs are like below, now how can I add restriction to have only for website1?








      <?xml version="1.0"?>

      <!DOCTYPE cross-domain-policySYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">


      <allow-access-from domain="www.mysite.com" secure="false" />

      <allow-access-from domain="mysite.com" secure="false" />





        • 1. Re: crossdomain.xml for subdirectory level
          kglad MVP

          at your root level use crossdomain.xml:


          <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">


          this should be in the root and allows all policy files but gives access to no domains. 

          a policy file (eg, crossdomain2.xml) in a subdirectory with allow-access-from allows domain access to

          the directory, and dependent subdirectories, that contain crossdomain2.xml



          <site-control permitted-cross-domain-policies="all"/>



          and in a subdirectory that you want to allow access, use crossdomain2.xml:


          <?xml version="1.0"?>

          <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">


          this policy file (eg, crossdomain2.xml) in a directory will allow access to that directory and its subdirectories

          IF there's a root policy file allowing cross-domain-policies (eg, crossdomain.xml)



            <!--<allow-access-from domain="www.adobe.com" />-->

          <allow-access-from domain="www.adobe.com" />