About local file security and Flash Player 693
localWithNetwork The SWF file is a local file that has not been trusted by the user, and
was published with Access Network Only selected in the Publish Settings dialog box (Flash
tab). The SWF file can communicate with the network but cannot read from local
data sources.
You can check the
sandboxType property from any SWF file, although a value is returned
only in files published for Flash Player 8. This means that when you publish for Flash Player 7
or earlier, you do not know whether the
sandboxType property is supported at runtime. If the
property isn't supported at runtime, the value is
undefined, which occurs when the Flash
Player version (indicated by the
System.capabilities.version property) is less than 8. If
the value is
undefined, you can determine the sandbox type according to whether your SWF
file’s URL is a local file or not. If the SWF file is a local file, Flash Player classifies your SWF
as
localTrusted (which is how all local content was treated prior to Flash Player 8);
otherwise Flash Player classifies the SWF file as
remote.
About local-with-file-system restrictions
A local-with-file-system file has not been registered using the configuration file inside the
FlashPlayerTrust directory, the Global Security Settings panel in the Settings Manager, or has
not been granted network permission in the Publish Settings dialog box in the Flash
authoring environment.
These files include legacy content that plays in Flash Player 8. If you are developing content
in Flash 8, or you have content that falls into one of the following categories, you (or your
users) should register the file as trusted. For information on registering a file as trusted, see
“Specifying trusted files using the Settings Manager” on page 688. For information on
granting permission for local file playback using configuration files, see “Creating
configuration files for Flash development” on page 690.
Local-with-file-system SWF files have the following restrictions:
■ Cannot access the network, which includes the following:
■ Loading other SWF files from the network (except using non-Internet UNC paths)
■ Sending HTTP requests
■ Making connections using XMLSocket, Flash Remoting, or NetConnection
■ Calling getURL() except if you use getURL("file:...") or getURL("mailto:...")
NOTE
For information on security sandboxes, see “Understanding local security sandboxes”
on page 680.
To Next Page
Loading...