Great work jennytoo! You have pinpointed a problem that a lot of people have struggled with for long.
crossdomain.xml is a file that resides on a server for the purpose of telling other calling flash objects that they are allowed to retrieve data from that server.
The thing is, you are retrieving xml-information from port 3689 (rsp replies), which makes the flash code try to find crossdomain.xml on that server. If it doesn’t find it, you wont be able to serve your primary server with xml from that 3689-server.
You added a “crossdomains.xml” into the admin-root. I guess it looks like this:
The asterisk meaning that this server will comply requests from all requesting flash objects, whatever domain the call comes from. This should help a lot of people. Create this file, stick it in your admin-root and your good to go.
BUT, to be able to read that crossdomain.xml file you need to authenticate yourself to that server, using your admin password. I’m afraid I can’t do anything about that. Every file served out from the admin-root directory, has to be authenticated. Unless I can add the user/pass in the http-request.
EDIT: I tried connecting to “http://admin:[email protected]:3689 and it actually worked, apart from a dialog coming up saying I was about to connect using the username “admin” etc etc.
So perhaps if I make all requests in this way, the loading of crossdomain.xml wont have to be authenticated.
The absolute best thing would be if firefly could serve the crossdomain.xml whenever it was asked for. You could ask Ron to implement this.