1 Reply Latest reply on Jul 8, 2011 4:47 AM by David Kav

    Interactive statements, WebServices and HTTPS

    David Kav



      I'm working on Interactive Statement, that must comunicate secure with server. Good way for it is webservice, and It works perfectly with http. For developing I use interactive statement as AIR application and it work's perfectly on both protocol http and https.


      BUT problem is with HTTPS protocol for secure connection from PDF (outside AIR runtime, after generating interactive PDF):


      When I change url of server for https, interactive statement can't connect to the server with this error mesage:


      E3626616-1AAB-C9B4-BDAC-0436834FE2B2 (mx.messaging.messages::ErrorMessage)#0
        body = (Object)#1
        clientId = "DirectHTTPChannel0"
        correlationId = "B9352710-5919-6A3A-29D2-04367F4B8210"
        destination = ""
        extendedData = (null)
        faultCode = "Channel.Security.Error"
        faultDetail = "Destination: DefaultHTTPS"
        faultString = "Security error accessing url"
        headers = (Object)#2
        messageId = "E3626616-1AAB-C9B4-BDAC-0436834FE2B2"
        rootCause = (flash.events::SecurityErrorEvent)#3
          bubbles = false
          cancelable = false
          currentTarget = (flash.net::URLLoader)#4
            bytesLoaded = 0
            bytesTotal = 0
            data = (null)
            dataFormat = "text"
          eventPhase = 2
          target = (flash.net::URLLoader)#4
          text = "Error #2048: Porušení rozsahu zabezpečení: file://PDFMedia031535/g/1 nemůže načítat data z https://nb103.cca.cz/InteraktivniVypisBank/CategoryManagerService?wsdl."
          type = "securityError"
        timestamp = 0
        timeToLive = 0


      I have site nb103.cca.cz as trusted in Windows, in Acrobat and Reader for all ports and protocols (http, https). A have certificate from nb103.cca.cz trusted everywhere too. PDF with interactive statement is reader extended, certifyied from certificate nb103.cca.cz.


      What i've forgot? Something missing?


      My crossdomain.xml is avaiable on https://nb103.cca.cz/crossdomain.xml and looks like this:


        <site-control permitted-cross-domain-policies="all"/>

        <allow-access-from domain="*" to-ports="*" secure="true"/>

        <allow-http-request-headers-from domain="*" headers="*" secure="true"/>



      Thanks for advice.


        • 1. Re: Interactive statements, WebServices and HTTPS
          David Kav Level 1

          I found solution, but I don't know, if it's pure.


          When I change crossdomain.xml like this:

          <?xml version="1.0"?>
          <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
              <site-control permitted-cross-domain-policies="all" />
              <allow-access-from domain="*" to-ports="*" secure="true"/>
              <allow-access-from domain="*" to-ports="*" secure="false"/>
              <allow-http-request-headers-from domain="*" headers="*" secure="true" />
              <allow-http-request-headers-from domain="*" headers="*" secure="false" />


          It started to work fine.

          Strange solution...