Cross-domain Policy File (crossdomain.xml)ΒΆ
SphereView is implemented and runs on Adobe Flash Player. When a SphereView client wants to access data across domains using a HTTP protocol, it is required that the destination domain permits the access through cross-domain policy file or crossdomain.xml). Situations where SphereView might require cross-domain policy file are:
- A SphereView wants to display a ICON Tag, whose files are hosted at other domains (check: TagXML Specification [tag@icon@URI] ).
- A SphereView wants to display a MODEL Tag, whose files are hosted at other domains (check: WebALP.SphereView#PutModel() ).
Tip
An original domain of a SphereView is the domain where SphereView.swf is downloaded from.
Cross-domain policy file (crossdomain.xml) must be located at a ROOT of the destination domain, where files are to be accessed, i.e. www.example.com/crossdomain.xml. For example,
- If SphereView were to use an image from wikipedia.org (the file is usually hosted at upload.wikimedia.org), there must be a http://upload.wikimedia.org/crossdomain.xml.
The content of cross-domain policy file can be configured based on an intention of the administrator. The most loosely policy file is provided here for a reference:
1 2 3 4 5 6 | <?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all"/>
<allow-access-from domain="*"/>
</cross-domain-policy>
|