1 Reply Latest reply: Aug 10, 2012 7:22 AM by kglad RSS

    crossdomain.xml for subdirectory level



      We need to deploy crossdomain.xml on our webserver, but the host name remains same across different websites,

      How can we add restrictions at sub-directoty level (website1)?


      the URLs are like below, now how can I add restriction to have only for website1?








      <?xml version="1.0"?>

      <!DOCTYPE cross-domain-policySYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">


      <allow-access-from domain="www.mysite.com" secure="false" />

      <allow-access-from domain="mysite.com" secure="false" />





        • 1. Re: crossdomain.xml for subdirectory level
          kglad MVP

          at your root level use crossdomain.xml:


          <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">


          this should be in the root and allows all policy files but gives access to no domains. 

          a policy file (eg, crossdomain2.xml) in a subdirectory with allow-access-from allows domain access to

          the directory, and dependent subdirectories, that contain crossdomain2.xml



          <site-control permitted-cross-domain-policies="all"/>



          and in a subdirectory that you want to allow access, use crossdomain2.xml:


          <?xml version="1.0"?>

          <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">


          this policy file (eg, crossdomain2.xml) in a directory will allow access to that directory and its subdirectories

          IF there's a root policy file allowing cross-domain-policies (eg, crossdomain.xml)



            <!--<allow-access-from domain="www.adobe.com" />-->

          <allow-access-from domain="www.adobe.com" />