5 Replies Latest reply on Dec 2, 2008 4:53 PM by Newsgroup_User

    security sandbox violation- tried everything?

    bmilesp Level 1
      Hello, i've been pulling my hair out for the past 2 hours now trying to resolve a:

      Error #2044: Unhandled securityError:. text=Error #2048: Security sandbox violation: ...

      here are the multiple steps i've tried to resolve this:

      so i've tried these in my initialize function:

      flash.system.Security.allowDomain(" http://www.picasaweb.google.com");
      flash.system.Security.allowDomain(" http://search.yahoo.com/");
      Security.loadPolicyFile(" http://localhost/crossdomain.xml");

      also:
      Security.loadPolicyFile("c:\wanp\www\crossdomain.xml");

      my crossdomain.xml file:

      <?xml version="1.0"?>

      <!DOCTYPE cross-domain-policy SYSTEM " http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
      <cross-domain-policy>
      <site-control permitted-cross-domain-policies="all"/>
      <allow-access-from domain="*" secure="false"/>
      <allow-http-request-headers-from domain="*" headers="*" secure="false"/>
      </cross-domain-policy>

      also i've tried in the project->properties->flex compiler -> additional compiler arguments:

      -use-network=false


      all with no luck. Any other suggestions? Thank you!
        • 1. Re: security sandbox violation- tried everything?
          Level 7

          "bmilesp" <webforumsuser@macromedia.com> wrote in message
          news:gh43he$g58$1@forums.macromedia.com...
          > Hello, i've been pulling my hair out for the past 2 hours now trying to
          > resolve
          > a:
          >
          > Error #2044: Unhandled securityError:. text=Error #2048: Security sandbox
          > violation: ...
          >
          > here are the multiple steps i've tried to resolve this:
          >
          > so i've tried these in my initialize function:
          >
          > flash.system.Security.allowDomain(" http://www.picasaweb.google.com");
          > flash.system.Security.allowDomain(" http://search.yahoo.com/");
          > Security.loadPolicyFile(" http://localhost/crossdomain.xml");
          >
          > also:
          > Security.loadPolicyFile("c:\wanp\www\crossdomain.xml");

          Why do you think picasaweb or yahoo will be hitting your site?


          • 2. security sandbox violation- tried everything?
            bmilesp Level 1
            i'm trying to use an rss feed from picassa in my app.

            if these policies i'm adding allow access FROM picassa (and not TO picassa), therefore not affecting the security violation, then what is causing the security violation? How do i fix it? Thanks again -b
            • 3. Re: security sandbox violation- tried everything?
              Level 7

              "bmilesp" <webforumsuser@macromedia.com> wrote in message
              news:gh4f22$cj$1@forums.macromedia.com...
              > if these policies i'm adding allow access FROM picassa (and not TO
              > picassa),
              > therefore not affecting the security violation, then what is causing the
              > security violation? How do i fix it? Thanks again -b

              You can't allow access TO picassa. Only picassa can. I think the usual
              solution is to use a proxy server.

              I'm not sure why it's more secure to have a server that you don't control
              hit your server than a Flash file you don't control, but there you have it.

              HTH;

              Amy


              • 4. Re: security sandbox violation- tried everything?
                bmilesp Level 1
                So flash player cannot get an external rss feed from picassa unless picassa has a crossdomain.xml file that allows a flash app from my site access? If that is the case, then i would have to use my server as a proxy... well... that just sounds very anti-web-2.0 doen't it?

                Thank you for your help- now time to proxify :)
                • 5. Re: security sandbox violation- tried everything?
                  Level 7

                  "bmilesp" <webforumsuser@macromedia.com> wrote in message
                  news:gh4j99$594$1@forums.macromedia.com...
                  > So flash player cannot get an external rss feed from picassa unless
                  > picassa has
                  > a crossdomain.xml file that allows a flash app from my site access? If
                  > that is
                  > the case, then i would have to use my server as a proxy... well... that
                  > just
                  > sounds very anti-web-2.0 doen't it?

                  That about sums it up. :-)

                  > Thank you for your help- now time to proxify :)


                  Good luck!