Comments on: JavaScript library and .swf for cross-domain flash cookies http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/ Expert Advice on Website Development, Javascript, Ajax, and Security Wed, 16 May 2012 12:12:25 +0000 hourly 1 http://wordpress.org/?v=3.3.2 By: nFriedly http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-6407 nFriedly Mon, 14 May 2012 19:41:11 +0000 http://nfriedly.com/techblog/?p=272#comment-6407 I think chrome has it's own built-in flashplayer, so that could explain the discrepancy there... But I can't seem to reproduce the error in my system. I just installed http://fpdownload.macromedia.com/pub/flashplayer/updaters/11/flashplayer_11_plugin_debug.dmg from http://www.adobe.com/support/flashplayer/downloads.html and http://www.adobe.com/software/flash/about/ confirms that I'm on 11,2,202,235. I'm in FF 12.0 if that makes a difference. You're probably right that it's the __flashBugFix is when the bug first appears, but I'm not sure what the root cause is. Could you send me an email with the url of the page? nathan @ [this site].com I think chrome has it’s own built-in flashplayer, so that could explain the discrepancy there… But I can’t seem to reproduce the error in my system.

I just installed http://fpdownload.macromedia.com/pub/flashplayer/updaters/11/flashplayer_11_plugin_debug.dmg from http://www.adobe.com/support/flashplayer/downloads.html and http://www.adobe.com/software/flash/about/ confirms that I’m on 11,2,202,235.

I’m in FF 12.0 if that makes a difference.

You’re probably right that it’s the __flashBugFix is when the bug first appears, but I’m not sure what the root cause is. Could you send me an email with the url of the page? nathan @ [this site].com

]]> By: S! http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-6405 S! Fri, 11 May 2012 11:09:06 +0000 http://nfriedly.com/techblog/?p=272#comment-6405 Just updated Flash player to latest debugger version on Mac (11.2.202.235) and I'm getting a JS error in Firefox. Strangely, it was fine before and still works fine in Chrome. FF console error is: this.swf.set is not a function swfstore.min.js:Line 27 Seems to be when it tries to set the __flashBugFix key? Just updated Flash player to latest debugger version on Mac (11.2.202.235) and I’m getting a JS error in Firefox. Strangely, it was fine before and still works fine in Chrome. FF console error is:

this.swf.set is not a function
swfstore.min.js:Line 27

Seems to be when it tries to set the __flashBugFix key?

]]> By: nFriedly http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3393 nFriedly Thu, 27 Oct 2011 21:59:54 +0000 http://nfriedly.com/techblog/?p=272#comment-3393 No problem. I just added some additional comments to the ActionScript file to clarify things there also. No problem. I just added some additional comments to the ActionScript file to clarify things there also.

]]> By: Lord Vader http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3392 Lord Vader Thu, 27 Oct 2011 21:12:43 +0000 http://nfriedly.com/techblog/?p=272#comment-3392 Awesome! Thanks for the quick response! Awesome! Thanks for the quick response!

]]> By: nFriedly http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3391 nFriedly Thu, 27 Oct 2011 20:05:53 +0000 http://nfriedly.com/techblog/?p=272#comment-3391 Hi Vader, You're close, it would actually be just the domain part, so in my case: Security.allowDomain("nfriedly.com"); Or, to support multiple domains / subdomains, I believe you would have to do: Security.allowDomain("nfriedly.com", "www.nfriedly.com"); And then if you want the file to be accessible across http/https boundaries (where the .swf is https but the page is http or vice versa), you also need to do the same with: Security.allowInsecureDomain("nfriedly.com", "www.nfriedly.com"); You can find more details here: http://help.adobe.com/en_US/FlashPlatform/reference/actionscript/3/flash/system/Security.html#allowDomain%28%29 Hi Vader,

You’re close, it would actually be just the domain part, so in my case:

Security.allowDomain(“nfriedly.com”);

Or, to support multiple domains / subdomains, I believe you would have to do:

Security.allowDomain(“nfriedly.com”, “www.nfriedly.com”);

And then if you want the file to be accessible across http/https boundaries (where the .swf is https but the page is http or vice versa), you also need to do the same with:

Security.allowInsecureDomain(“nfriedly.com”, “www.nfriedly.com”);

You can find more details here:
http://help.adobe.com/en_US/FlashPlatform/reference/actionscript/3/flash/system/Security.html#allowDomain%28%29

]]> By: Lord Vader http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3389 Lord Vader Thu, 27 Oct 2011 02:57:17 +0000 http://nfriedly.com/techblog/?p=272#comment-3389 Hi Nathan, Thanks for putting this together. In the readme you mention "It would be wise to edit and recompile the flash file to limit itself to your domain and http/https settings." Where do you fix this? Looking at Storage.as, would it be this? Security.allowDomain("*"); For example, to only allow your domain, would you just edit the value to something like: Security.allowDomain("http://nfriedly.com/"); If so, how does that work with sub-domains, or even with www? Thanks for your help! Hi Nathan,

Thanks for putting this together. In the readme you mention “It would be wise to edit and recompile the flash file to limit itself to your domain and http/https settings.” Where do you fix this?

Looking at Storage.as, would it be this?
Security.allowDomain(“*”);

For example, to only allow your domain, would you just edit the value to something like:
Security.allowDomain(“http://nfriedly.com/”);

If so, how does that work with sub-domains, or even with www? Thanks for your help!

]]> By: nFriedly http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3146 nFriedly Wed, 20 Jul 2011 21:32:07 +0000 http://nfriedly.com/techblog/?p=272#comment-3146 I'm not sure... It works for me in Opera 11.5 / OS X 10.6.8 / Flash 10,3,181,34 debug. What versions / OS are you running? (Flash player version is here: http://kb2.adobe.com/cps/155/tn_15507.html) That page also tells whether or not it has Local File I/O Enabled. I'm not positive, but I think that's a requirement. Is it enabled on your system? I'm moving soon, so I really can't jump on this right away. If you want to dig into it more without me though, you're more than welcome to. If you come up with anything, definitely let me know. I know there's a debug version of flash player at http://www.adobe.com/support/flashplayer/downloads.html, but I don't know a lot about working with it. Thanks for the compliments :) I’m not sure… It works for me in Opera 11.5 / OS X 10.6.8 / Flash 10,3,181,34 debug. What versions / OS are you running? (Flash player version is here: http://kb2.adobe.com/cps/155/tn_15507.html)

That page also tells whether or not it has Local File I/O Enabled. I’m not positive, but I think that’s a requirement. Is it enabled on your system?

I’m moving soon, so I really can’t jump on this right away. If you want to dig into it more without me though, you’re more than welcome to. If you come up with anything, definitely let me know. I know there’s a debug version of flash player at http://www.adobe.com/support/flashplayer/downloads.html, but I don’t know a lot about working with it.

Thanks for the compliments :)

]]> By: Jona http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3145 Jona Tue, 19 Jul 2011 13:37:11 +0000 http://nfriedly.com/techblog/?p=272#comment-3145 It's partially working in Opera (checked in v11.10). The script can create the flash object but it can't get the value: swfStore.get(key) returns 'undefined'. I have tried to debug the script (using Opera Dragonfly) but the browser crash when I look at the 'swf' object. Any ideas? BTW: Awesome piece of code, well written and commented!! It’s partially working in Opera (checked in v11.10).
The script can create the flash object but it can’t get the value: swfStore.get(key) returns ‘undefined’.

I have tried to debug the script (using Opera Dragonfly) but the browser crash when I look at the ‘swf’ object.

Any ideas?

BTW: Awesome piece of code, well written and commented!!

]]> By: Nathan http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-3002 Nathan Fri, 15 Apr 2011 18:39:15 +0000 http://nfriedly.com/techblog/?p=272#comment-3002 I have to say not only is this a quality piece of code but Nathan's a quality guy to boot! Thanks for the help. For whatever its worth, we at yousoft (shameless plug: www.yousoft.co.uk) use it for one of our clients. Specifically they require users to use a cool piece of javascript that scrapes content from sites and creates wish lists (great for weddings, birthdays etc). Thanks to Nathan users don't have to log in every time they view another page Great work!! I have to say not only is this a quality piece of code but Nathan’s a quality guy to boot!

Thanks for the help.

For whatever its worth, we at yousoft (shameless plug: http://www.yousoft.co.uk) use it for one of our clients.

Specifically they require users to use a cool piece of javascript that scrapes content from sites and creates wish lists (great for weddings, birthdays etc).

Thanks to Nathan users don’t have to log in every time they view another page

Great work!!

]]> By: nFriedly http://nfriedly.com/techblog/2010/07/swf-for-javascript-cross-domain-flash-cookies/comment-page-1/#comment-2997 nFriedly Wed, 06 Apr 2011 03:45:29 +0000 http://nfriedly.com/techblog/?p=272#comment-2997 No donation button, although I do appreciate the thought :) Code contributions and links back to my site, however are greatly appreciated. No donation button, although I do appreciate the thought :)

Code contributions and links back to my site, however are greatly appreciated.

]]>