1 person found this helpful
Why is it not a question about allowDomain calls? From the docs:
"If two SWF files written with ActionScript 3.0 are served from different domains--for example, http://siteA.com/swfA.swf and http://siteB.com/swfB.swf--then, by default, Flash Player does not allow swfA.swf to script swfB.swf, nor swfB.swf to script swfA.swf. A SWF file gives permission to SWF files from other domains by calling Security.allowDomain(). By calling Security.allowDomain("siteA.com"), swfB.swf gives SWF files from siteA.com permission to script it."
Please provide more detail.
Because I am 99% sure it set up correctly, dont get any security warning, problem is I cannot convert
embeddedApplicationLoader.content to SystemManager
// where embeddedApplicationLoader is SWFLoader that loads the app
// but embeddedApplicationLoader.content is SystemManager !
I experience the same problem, but the solution deos not work by now.
Post the code, describe where it is failing, post your errors.
The application is a bit complex and I am not allowed to publish the source code, so I have prepared simple applications that really fail with security error when deployed to two different servers, but I have no idea why. I use Crossdomain files like this
<allow-http-request-headers-from domain="*" headers="*" secure="false"/>
<allow-access-from domain="*" secure="false"/>
The error is like this:
SecurityError: Error #2121:
Loader.content: http://somewhere.com/rm/RemoteApplicationLoader.swf has no access to
http://flex.razor.cz/RemotelyLoadedApplication/RemotelyLoadedApplication.swf. This can be bypassed by calling Security.allowDomain.
It tells me to use Security.allowDomain, but in both application's preinitialize event I have done Security.allowDomain("*");