Re: [Flash Operator Panel] Flash operator panel over SSL
- From: Richard Lyman <pchammer@xxxxxxxx>
- Date: Wed, 12 Mar 2008 08:12:12 -0700
- Mailing-list: contact operator_panel-help@lists.house.com.ar; run by ezmlm
From your statement, that means you haven't created the crossdomain.xml
file. (which would probably be found, prior to falling back to http to
look for it)
You really need to find *why* flash feels you are going crossdomain and
needs to toss up security. (the fact you are, as you say 'embedded' in
freepbx would be a good reason)
I would create the file with *.your.domain (as a quick test only) to see
if it will find/allow it under https, then trim back fit. (then you
will have more time to find the real reason)
laxmans@xxxxxxxxxxxxx wrote:
Hi,
Thanks for the response - I understand that the crossdomain.xml file
may need to be modified. However, the problem I have is that the flash
player requests the crossdomain file itself via HTTP instead of HTTPS.
Consequently, even if I create such a file, there is no way for the
flash player to get it unless I also enable HTTP access to my webserver.
What I would like is for a way to instruct the flash player to use
https to get the crossdomain file. I suspect this is a configuration
issue, or a quirk in the way that security is being configured in the
flash operator swf.
-Amruth
-------------- Original message from "Carlos Cruz"
<carlos@xxxxxxxxxxxxxxxxx>: --------------
> Just a small clarification as you might already know this, the
crossdomain
> file is related to the flash player, and is used to allow the
flash player
> to run flash/SWF movie clips apps what ever you want to call
them from a
> different domain than from where the original file was called.
>
> I have no experience running flash via HTTPS, but the flash
player might
> need to have your HTTPS domain in this crossdomain file.
>
> Carlos
>
> -----Original Message-----
> From: Amruth Laxman [mailto:laxmans@xxxxxxxxxxxxx]
> Sent: Tuesday, March 11, 2008 11:29 PM
> To: operator_panel@xxxxxxxxxxxxxxxxxx
> Subject: [Flash Operator Panel] Flash operator panel over SSL
>
> Hi,
>
> I'm trying to get FOP working with HTTPS exclusively. I have
everything
> configured and the operator panel works fine as long as I also
leave
> regular HTTP enabled. If I disable HTTP in my firewall, the
flash page
> gets stuck while loading.
>
> A trace of the http requests when HTTP is enabled, shows that
the flash
> player is trying to load crossdomain.xml via HTTP instead of
HTTPS (even
> though the flash file is being served over HTTPS). This seems
> unnecessary, since the file is not present, and the flash player
seems
> to go ahead with the playback despite the missing file.
>
> Does anyone know of a way to disable the fetch of
crossdomain.xml, or
> alternately, is there a way to instruct the flash player to use
https?
>
> I'm running the following versions of software:
> - FOP v.26
> - Embedded in FreePBX 2.2.1 (2.4 also seems to behave the same)
< BR>> - Apache 2.0.52
>
> -Amruth
>
>
> Flash Operator Panel Mailing List
>
> To unsubscribe send an empty message to:
>
> To get help send an empty message to:
>
> The archives can be found at:
> http://www.asternic.org/archives/maillist.html
>
>
> Internal Virus Database is out-of-date.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1310 - Release Date:
3/4/2008
> 8:35 AM
>
>
> Internal Virus Database is out-of-date.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.4/1310 - Release Date:
3/4/2008
> 8:35 AM
>
>
>
>
> Flash Operator Panel Mailing List
>
> To unsubscribe send an empty message to:
>
> To get help send an empty message to:
>
> The archives can be found at:
> http://www.asternic.org/archives/maillist.html
>
>
- Follow-Ups from:
- Amruth Laxman
- References to:
- laxmans
|