| Issue 364: | Feature Request: Remove cross-domain policy warning from trace | |
| 2 people starred this issue and may be notified of changes. | Back to list |
Sign in to add a comment
|
Urgent ISSUE!!!!! Adobe has updated the flash player's security restrictions, as such the current policy file located on google is no longer valid. Please read and implement Adobe's policy file changes. Adobe Article on the changes: http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html Adobe Staff Presentation and Article on subject: http://www.senocular.com/pub/baadaug/04-22-08/ Errors in flexbuilder with latest player. Warning: Domain maps.googleapis.com does not explicitly specify a meta- policy, but Content-Type of policy file http://maps.googleapis.com/mapsapi/crossdomain.xml is 'text/x-cross-domain- policy'. Applying meta-policy 'by-content-type'. Dan Zeitman Dan@dvpweb.com |
||||||||||||||||
,
Jun 05, 2008
Well? How come now one is addressing this? |
|||||||||||||||||
,
Jun 06, 2008
Hi-- Sorry for not responding. That is just a warning -- the crossdomain.xml file is actually only used by us for internal development. For external developers, everything is on the same domain. We'll try to change it so you don't see the warning, however.
Summary: Feature Request: Remove cross-domain policy warning from trace
Status: Accepted Labels: -Type-Defect Type-Enhancement ApiType-Flash Internal-1210373 |
|||||||||||||||||
,
Jun 07, 2008
Thanks for addressing this issue, the fact is Adobe plans to tighten the security of the Flash Player, and change the "warning" to a fatal error, where it will be impossible to load content into the flash player that comes from different URLs even from the same domain. A member of the Adobe Player team recently did a presentaiton about the secuirty changes, and told our developer group the lockdown changes are will happen very soon. Please have your engineers read (and address)this security article posted by Adobe: http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html Thanks! |
|||||||||||||||||
,
Jun 07, 2008
Thanks, I'm sharing that with the team. |
|||||||||||||||||
,
Jun 16, 2008
(No comment was entered for this change.)
Status: FixedNotReleased
|
|||||||||||||||||
,
Jun 16, 2008
So to be clear everyone is on the same page. 1> All of Adobe's Flash Player's are affected. 2> Website's providing content to be viewed within the flash player (Google) must make specific changes to their crossdomain policy files (crossdomain.xml) to allow their content to be viewed and accessed within the Adobe Flash Player. Adobe has posted the specific changes to the policy files here: http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html Again this issue requires URGENT attention. |
|||||||||||||||||
,
Jul 02, 2008
Hi, is there anything new to this topic? I'm still getting this message with Flex: ------------ Warning: Domain maps.googleapis.com does not explicitly specify a meta-policy, but Content-Type of policy file http://maps.googleapis.com/mapsapi/crossdomain.xml is 'text/x-cross-domain-policy'. Applying meta-policy 'by-content-type'. ----------- And it'll stop as it tries to reach http://maps.googleapis.com/crossdomain.xml Please update your crossdomain files. Cheers. |
|||||||||||||||||
,
Jul 02, 2008
NO progress yet. Google team - what's taking so long? |
|||||||||||||||||
,
Jul 02, 2008
Also - can someone change this to a BUG and high priority - it's not an enhancement, its a server mis-configuration on Google's part. |
|||||||||||||||||
,
Jul 05, 2008
It's now fixed from all angles, I believe. Please re-compile with the new 1.5 SWC. I just did, and there's no cross-domain policy warning in my trace.
Status: Fixed
Labels: Fixed-1.5 |
|||||||||||||||||
 Sign in to add a comment
|
|||||||||||||||||
