Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 3 of 3
  1. #1
    Senior Coder
    Join Date
    Jul 2005
    Location
    UK
    Posts
    1,051
    Thanks
    6
    Thanked 13 Times in 13 Posts

    allowScriptAccess="sameDomain" + Validating Flash in XHTML

    Hi all,

    I've recently been supplied some code to embed some flash in my site from a third party. The code specifies "sameDomain" as the value of allowScriptAccess.

    I've looked through Macromedias official documentation on allowScriptAccess and I can only find reference to two possible values - "always", and "never".

    Does anybody have any information on the purpose of "sameDomain"?

    On another note, as I'm validating my pages as XHTML 1.1, I'm also going to need to fiddle with the code somewhat.

    What I've currently got :

    Code:
    <embed 
    	style="
    		width:400px; 
    		height:326px;" 
    		id="VideoPlayback" 
    		align="middle" 
    		type="application/x-shockwave-flash" 
                    src="path to file" 
    		allowScriptAccess="sameDomain" 
    		quality="best" 
    		bgcolor="#ffffff" 
    		scale="noScale" 
    		wmode="window" 
    		salign="TL"  
    		FlashVars="playerMode=embedded"> 
    </embed>

    I understand that I need to use this instead :

    Code:
    <object type="application/x-shockwave-flash"
    data="path to file"
    width="400" height="326">
    <param name="movie" value="path to file" />
    </object>
    My question - where do the other values in the original code fit in? Especially allowScriptAccess, which I understand is quite important when embedding remote flash movies.
    Last edited by Pennimus; 03-14-2006 at 12:10 AM.

  • #2
    Senior Coder
    Join Date
    Jul 2005
    Location
    UK
    Posts
    1,051
    Thanks
    6
    Thanked 13 Times in 13 Posts
    After some fiddling around I've validated the code by applying all the previous embed values to param names/values.

    Code:
    <object type="application/x-shockwave-flash" data="path" width="400" height="326" id="VideoPlayback" >
    <param name="movie" value="path" />
    <param name="allowScriptAccess" value="sameDomain" />
    <param name="quality" value="best" />
    <param name="scale" value="noScale" />
    <param name="wmode" value="window" />
    <param name="FlashVars" value="playerMode=embedded" />
    <param name="salign" value="TL" />
    </object>
    I would however still like to know what sameDomain means. Also, how can I be sure all the above params are working in the same way that they were when they were elements of the embed tag?

  • #3
    New to the CF scene
    Join Date
    Nov 2006
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Hi-
    it seems like a while since you posted this but i was just looking for info on the same topic and found your post, and then an answer at http://www.adobe.com/devnet/flash/ar...curity_09.html about a quarter of the way down. Clears it up quite well.

    Also you can check out http://alistapart.com/articles/flashsatay for more on issues with putting flash in code that validates.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •