• Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 17. Understanding Security > HTTP to HTTPS protocol access between SWF ...

HTTP to HTTPS protocol access between SWF files

You must use an allowDomain handler or method to permit a SWF file in one domain to be accessed by a SWF file in another domain. However, if the SWF file being accessed is hosted at a site that uses a secure protocol (HTTPS), the allowDomain handler or method doesn’t permit access from a SWF file hosted at a site that uses an insecure protocol. To permit such access, you must use the LocalConnection.allowInsecure Domain() or System.security.allowInsecureDomain() statements. See “Allowing HTTP to HTTPS protocol access between SWF files” on page 721 for more information.

Allowing HTTP to HTTPS protocol access between SWF files

In addition to the exact-domain matching rules, you must explicitly permit files hosted at sites using a secure protocol (HTTPS) to be accessed by files hosted at sites using an insecure protocol. Depending on whether the called file is published for Flash Player 6, 7, or 8, you must implement either one of the allowDomain statements (see “Cross-domain and subdomain access between SWF files” on page 710), or use the LocalConnection.allowInsecure Domain or System.security.allowInsecureDomain() statements.


PREVIEW

                                                                          

Not a subscriber?

Start A Free Trial


  
  • Creative Edge
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint