Actionscript 的ExternalInterface.addCallback 仅在本地工作，不在生产环境中工作

发布于 2024-10-12 07:08:46 字数 1639 浏览 2 评论 0原文

在我的 Flex 应用程序中，我需要一个 Javascript 控件来调用我的 Actionscript 方法之一。很简单，根据 Flex/Actionscript 文档，我在 Actionscript 代码中这样写：

if (ExternalInterface.available)
    ExternalInterface.addCallback("setName", setNameInActiveWindow);

在 Javascript 控件中我写道：

document.getElementById('FlexAppId').setName(name);

效果很好。正如预期的那样，所以我开始制作。但它在生产中不起作用:(。完全相同的代码...我无法弄清楚。上面的Javascript代码已运行，但回调未在Actionscript代码中执行。

这是否与在本地，我使用 local.mydomain.com:8080，其中 local.mydomain.com 解析为 127.0.0.1 （我需要这样做，以便某些小部件正常工作）。然而，在生产中，它只是 www.mydomain.com（mydomain.com 不是真正的域名），而 Flex 应用程序来自 flash.mydomain.com（CDN）

。 mydomain.com：

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
        <site-control permitted-cross-domain-policies="master-only"/>
        <allow-access-from domain="*.mydomain.com"/>
</cross-domain-policy>

更新：我尝试更改本地环境，以便从 flash.mydomain.com 引用 Flex 应用程序，就像在生产中一样。本地也有同样的问题...所以这似乎是某种域安全问题，尽管我上面有 crossdomain.xml 文件，我是否需要更改 crossdomain.xml 中的某些内容？ code>ExternalInterface.addCallback 可以工作吗？

更新2：开始工作了！我必须同时执行 Security.allowDomain("*") 和 Security.allowInsecureDomain("*")。将其设置为 flash.mydomain.com 并没有解决问题，我不得不添加通配符。 allowNetworking 没有效果。我需要 allowScriptAccess="always"，但我以前就有过。只需使用该参数即可轻松使用 ExternalInterface.call 调用 Javascript。但是使用 ExternalInterface.addCallback 添加回调需要使用通配符的上述安全方法。

原文

In my Flex app, I need a Javascript control to call one of my Actionscript methods. Simple enough, according to the Flex/Actionscript documentation, I wrote this in my Actionscript code:

if (ExternalInterface.available)
    ExternalInterface.addCallback("setName", setNameInActiveWindow);

In the Javascript control I wrote:

document.getElementById('FlexAppId').setName(name);

Works great. Exactly as expected, so I went to production. But it doesn't work in production :(. Same exact code... I can't figure it out. The above Javascript code is run, but the callback is not executed in the Actionscript code.

Does this have something to do with domain security? Locally, I'm using local.mydomain.com:8080 where local.mydomain.com resolves to 127.0.0.1 (I need to do this so some widgets work properly). And the Flex app comes from the same local webserver. In production, however, it's just www.mydomain.com (mydomain.com is not the real domain name) and the Flex app comes from flash.mydomain.com (a CDN).

I have a crossdomain.xml file at www.mydomain.com:

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
        <site-control permitted-cross-domain-policies="master-only"/>
        <allow-access-from domain="*.mydomain.com"/>
</cross-domain-policy>

UPDATE: I tried changing the local environment so that the Flex app is referenced from flash.mydomain.com, just like in production. It turns out I get the same problem locally too... so it seems this is some kind of domain security issue despite the crossdomain.xml file I have above. Do I need to change something in my crossdomain.xml? Is there something additional I need to get ExternalInterface.addCallback to work?

UPDATE 2: Got it to work! I had to do both Security.allowDomain("*") and Security.allowInsecureDomain("*"). Setting it to flash.mydomain.com did NOT fix the issue, I had to put a wildcard. allowNetworking had no effect. I need allowScriptAccess="always", but I had that from before. Calling Javascript with ExternalInterface.call works easily with just that parameter. But adding a callback with ExternalInterface.addCallback requires the above Security methods with a wildcard.