I get a security sandbox error in flash when i try and do a upload file or after closer investigation only when i try and type something in an input box through my upload function. I had this all working as you know previously.

I am not sure why i get this. I don't get it when i browse for a file in my upload function but rather when i try and type something in on my input field text box for my "title" field.

i have tried adding System.security.allowDomain("designercolin.com"); even inside my actionscript and that doesn't even seem to work.

Any idea why it would be causing an error when i try and type in my input field. It doesn't even give me the error when i browse for a file to try and upload a file using my upload function. I thought it may have something to do with browsing first then adding the title so i tried adding a title first and i still get the "security sandbox" error.

the exact error is below. It only happens when i type in the box.

*** Security Sandbox Violation ***
SecurityDomain 'http://www.designercolin.com/temp/ispire/get_boards.php' tried to access incompatible context 'file:///Macintosh%20HD/Users/colintoomey/Documents/classes/graduate%20work/thesis%20stuff/ispire%20app/ispire%20v1.026.swf'

this error never happened before in previous versions of my upload script even with the input fields i had.

I have tried it multiple times and sometimes i get the same security error with the same security domain file and other times i get a securitydomain with files get_boards.php or sometimes even a jpeg file. I can try it in many areas like in the search box input field and it will give me an issue with the get_boards.php file for security domain but other places i get other path locations.

all my php files seem to load perfectly fine and i get no errors at all until i try and type something in any of the input boxes in my web app.

What i have started to realize is that it has nothing to do paticular with the upload function but rather something with the input text boxes or something with local files and remote files although im not sure. I tried for instance in another part of my application that has a input box typing in that and i get the same security error. Basically anywhere i type in an input box is when i get the security error.

What is a security sandbox error though and how do i solve it? Is it something in my php file or my actionscript? Im confused.

 

 

 

Reply

I'll try to explain Security Sandbox. If you can imagine a sandbox then imagine that the sand in that sandbox is not allowed to be used/put, or any other action (delete, copied, formatted, etc) from another different sandbox, in this case another domain unless the "client" allows it, person who's actually having the script ran on them.

So in most cases scripts must either only run on the domain that is calling it, if however this script needs to call or work with another domain, the client must allow this, not the programmer/scripter because it could actually be something malicious, the only proper way to get pass this is I believe in having your scripts signed, but I've never done this before with scripts, so I have no idea how you go about doing this.

So that's basically the Security Sandbox, a technique that limits access to only what is allowed without allowing access outside of it. This is for javascript, actionscript, ecmascript, activex and possibly more, server side scripts don't have these security techniques, but it's possible to create it so it's sandboxed.

Cheers,

MC

 

 

 

Reply

Security Sandbox Violation
Security Sandbox Violation?

Yeah, this is really annoying. It doesn't make sense to me why the violation prints in the output window on every keystroke. What does the user typing in an input have to do with access violation of a .Jpg loaded from the net? It's not like I'm typing into the picture. !

-sean

Reply