DOCSLIB.ORG

Flash Communication Server MX (FCS) Provides Web Developers with the • Reviews Means to Add Rich, Interactive Audio and Video Features to Their Sites

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Flash Communication Server MX (FCS) Provides Web Developers with the • Reviews Means to Add Rich, Interactive Audio and Video Features to Their Sites Flash Communication Server By Giacomo Guilizzoni, Brian Lesser, Joey Lott, Robert Reinhardt, Justin Watkins Publisher: O'Reilly Pub Date: February 2005 ISBN: 0-596-00504-0 Pages: 854 Table of • Contents • Index • Reviews Reader Flash Communication Server MX (FCS) provides web developers with the • Reviews means to add rich, interactive audio and video features to their sites. • Errata Programming Flash Communication Server gives developers a leg up on • Academic this potentially intimidating technology. It explains how FCS can facilitate video on demand, live webcasts, video chat and messaging, real-time collaboration, and much more. Flash Communication Server By Giacomo Guilizzoni, Brian Lesser, Joey Lott, Robert Reinhardt, Justin Watkins Publisher: O'Reilly Pub Date: February 2005 ISBN: 0-596-00504-0 Pages: 854 Table of • Contents • Index • Reviews Reader • Reviews • Errata • Academic Copyright About the Authors Brian Lesser Giacomo "Peldi" Guilizzoni Joey Lott Robert Reinhardt Justin Watkins Foreword Preface What Does FlashCom Offer? What's in This Book? How to Use This Book Audience ActionScript 1.0 Versus ActionScript 2.0 Server-Side ActionScript The flash-communications.net Site Director, Breeze, and Other Options Flash Video Options Licensing and Hosting Options Conventions Used in This Book Voice Using Code Examples Safari Enabled Comments and Questions Acknowledgments Part I: FlashCom Foundation Chapter 1. Introducing the Flash Communication Server Section 1.1. Clients and Servers Section 1.2. Creating an Application Section 1.3. Real-Time Messaging Protocol Section 1.4. The Communication Classes Section 1.5. Communicating with Application Servers, Databases, and Directory Servers Section 1.6. Firewalls and Security Section 1.7. Getting Started Section 1.8. Hello Video! Section 1.9. Conclusion Chapter 2. Communication Components Section 2.1. Overview of Communication Components Section 2.2. Summary of Communication Components Section 2.3. Creating an Application that Monitorsa Connection Section 2.4. Building a Simple Chat Room Section 2.5. Adding Audio and Video to the Chat Room Section 2.6. Forgoing the SimpleConnect Component Section 2.7. Conclusion Chapter 3. Managing Connections Section 3.1. Making a Connection Section 3.2. Managing a Connection Section 3.3. Reusing a NetConnection Object Section 3.4. Multiple Simultaneous NetConnection Objects Section 3.5. Testing and Debugging Network Connections Section 3.6. Subclassing the NetConnection Class Section 3.7. Communication Components Without SimpleConnect Section 3.8. Conclusion Chapter 4. Applications, Instances, and Server-Side ActionScript Section 4.1. Scripting Application Instances Section 4.2. Differences Between Flash ActionScript and Server-Side ActionScript Section 4.3. The Life of an Application Instance Section 4.4. Running a Simple Hello World Test Script Section 4.5. A More Realistic Example Section 4.6. Instance-to-Instance Communications Section 4.7. Script Filenames and Locations in Detail Section 4.8. Testing and Debugging Server-SideScript Files Section 4.9. Designing Communication Applications Section 4.10. Conclusion Part II: Audio, Video, and Data Streams Chapter 5. Managing Streams Section 5.1. A Simple Publisher/Subscriber Example Section 5.2. Stream Names Section 5.3. Publishing Streams in Detail Section 5.4. Playing Streams in Detail Section 5.5. The Stream Class Section 5.6. Publishing and Playing ActionScript Data Section 5.7. Creating Synchronized Presentations Section 5.8. The NetStream and Stream Information Objects Section 5.9. Stream Enhancements and Limitations Section 5.10. Conclusion Chapter 6. Microphone and Camera Section 6.1. Working with Microphone/Audio Input Section 6.2. Working with Camera Input Section 6.3. Building a Message-Taking Application Section 6.4. Building a Surveillance Application Section 6.5. Conclusion Chapter 7. Media Preparation and Delivery Section 7.1. Audio and Video Compression Section 7.2. Converting Prerecorded Materialto FLV Format Section 7.3. Using Flash Pro's Media Components Section 7.4. Enabling Multiple Bit Rate FLVsWithin an Application Section 7.5. Streaming MP3 Audio Section 7.6. Conclusion Part III: Remote Connectivity and Communication Chapter 8. Shared Objects Section 8.1. Objects and Shared Objects Section 8.2. Getting a Shared Object in Flash Section 8.3. Updates and Frame Rates Section 8.4. Scripting Shared Objects on the Server Section 8.5. Temporary and Persistent Shared Objects Section 8.6. Proxied Shared Objects Section 8.7. Shared Objects and Custom Classes Section 8.8. Avoiding Collisions Section 8.9. Optimizing Shared Object Performance Section 8.10. Broadcasting Remote Method Callswith send( ) Section 8.11. A Simple Video and Text Chat Application Section 8.12. Conclusion Chapter 9. Remote Methods Section 9.1. Why Use Calls? Section 9.2. The send( ) and call( ) Methods Section 9.3. Client-to-Server Calls Section 9.4. Server-to-Client Calls Section 9.5. Server-to-Server Calls Section 9.6. A Simple Lobby/Rooms Application Section 9.7. Debugging Calls Section 9.8. Advanced Topics Section 9.9. Conclusion Chapter 10. Server Management API Section 10.1. Connecting to the Admin Service Section 10.2. Using the Server Management API Section 10.3. Server Management API Uses Section 10.4. Conclusion Chapter 11. Flash Remoting Section 11.1. The Remoting Gateway Section 11.2. Remoting Basics Section 11.3. Role of Remoting in FlashCom Applications Section 11.4. Securing Access Section 11.5. Conclusion Chapter 12. ColdFusion MX and FlashCom Section 12.1. Understanding ColdFusion MXand Flash Remoting Section 12.2. Using Flash Remoting to Log Events Section 12.3. Getting a List of Streams Section 12.4. Using ColdFusion and FTP to Mirror Streams Section 12.5. Conclusion Part IV: Design and Deployment Chapter 13. Building Communication Components Section 13.1. Source Files Section 13.2. People Lists Section 13.3. A Simple People List Section 13.4. Listenable Shared Objects Section 13.5. Status and People List Section 13.6. Text Chat Section 13.7. Shared Text Section 13.8. Video Conference and Video Window Section 13.9. PeopleGrid Section 13.10. Summary Section 13.11. Conclusion Chapter 14. Understanding the Macromedia Component Framework Section 14.1. The Component Framework Section 14.2. Under the Hood of the Chat Component Section 14.3. Creating a Simple Component from Scratch: SharedTextInput Section 14.4. Creating a Container Component: SharedAddressForm Section 14.5. Creating an Authenticating Component Section 14.6. Integrating Components with Your Existing Applications Section 14.7. Understanding the Framework Section 14.8. Conclusion Chapter 15. Application Design Patterns and Best Practices Section 15.1. Shared Object Management Section 15.2. Moving Code to the Server Section 15.3. Building Façades on the Server Section 15.4. Server-Side Client Queues Section 15.5. A Framework for Recording and Playing Back Componentized Applications Section 15.6. Components and Component Frameworks Section 15.7. Conclusion Chapter 16. Building Scalable Applications Section 16.1. Coordinating Instances Section 16.2. Scalability and Load Balancing Section 16.3. Conclusion Chapter 17. Network Performance, Latency,and Concurrency Section 17.1. Latency Section 17.2. Bandwidth Section 17.3. Concurrency Section 17.4. Conclusion Chapter 18. Securing Applications Section 18.1. The Three A's: Authentication, Authorization, and Accounting Section 18.2. Authentication Section 18.3. Authorization Section 18.4. Accounting Section 18.5. Suggestions and References Section 18.6. Conclusion Index Copyright © 2005 O'Reilly Media, Inc. All rights reserved. Printed in the United States of America. Published by O'Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O'Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (http://safari.oreilly.com). For more information, contact our corporate/institutional sales department: (800) 998-9938 or [email protected]. Nutshell Handbook, the Nutshell Handbook logo, and the O'Reilly logo are registered trademarks of O'Reilly Media, Inc. Programming Flash Communication Server, the image of a brown bear with cub, and related trade dress are trademarks of O'Reilly Media, Inc. Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in this book, and O'Reilly Media, Inc. was aware of a trademark claim, the designations have been printed in caps or initial caps. While every precaution has been taken in the preparation of this book, the publisher and authors assume no responsibility for errors or omissions, or for damages resulting from the use of the information contained herein. About the Authors Brian Lesser Giacomo "Peldi" Guilizzoni Joey Lott Robert Reinhardt Justin Watkins Brian Lesser Brian Lesser is the lead author of Programming Flash Communication Server. He works in Ryerson University's Computing and Communications Services, where he has the ungainly title of Assistant Director, Teaching and Technology Support. Brian's background is in imaging and information systems. Before Ryerson, he worked in the National Archives of Canada Photograph Conservation Lab and the Xerox Research Centre of Canada Thin Film Science Lab. He has been captivated with Flash and FlashCom, and their potential in education, since FlashCom was first released. Many of his early experiments and tutorials are
Load more

Recommended publications
  • Web Tracking: Mechanisms, Implications, and Defenses Tomasz Bujlow, Member, IEEE, Valentín Carela-Español, Josep Solé-Pareta, and Pere Barlet-Ros
    ARXIV.ORG DIGITAL LIBRARY 1 Web Tracking: Mechanisms, Implications, and Defenses Tomasz Bujlow, Member, IEEE, Valentín Carela-Español, Josep Solé-Pareta, and Pere Barlet-Ros Abstract—This articles surveys the existing literature on the of ads [1], [2], price discrimination [3], [4], assessing our methods currently used by web services to track the user online as health and mental condition [5], [6], or assessing financial well as their purposes, implications, and possible user’s defenses. credibility [7]–[9]. Apart from that, the data can be accessed A significant majority of reviewed articles and web resources are from years 2012 – 2014. Privacy seems to be the Achilles’ by government agencies and identity thieves. Some affiliate heel of today’s web. Web services make continuous efforts to programs (e.g., pay-per-sale [10]) require tracking to follow obtain as much information as they can about the things we the user from the website where the advertisement is placed search, the sites we visit, the people with who we contact, to the website where the actual purchase is made [11]. and the products we buy. Tracking is usually performed for Personal information in the web can be voluntarily given commercial purposes. We present 5 main groups of methods used for user tracking, which are based on sessions, client by the user (e.g., by filling web forms) or it can be collected storage, client cache, fingerprinting, or yet other approaches. indirectly without their knowledge through the analysis of the A special focus is placed on mechanisms that use web caches, IP headers, HTTP requests, queries in search engines, or even operational caches, and fingerprinting, as they are usually very by using JavaScript and Flash programs embedded in web rich in terms of using various creative methodologies.
    [Show full text]
  • Protokoly Pro Komunikaci Klient ˚U Na Platformˇe Flash
    MASARYKOVA UNIVERZITA F}w¡¢£¤¥¦§¨ AKULTA INFORMATIKY !"#$%&'()+,-./012345<yA| Protokoly pro komunikaci klient ˚una platformˇeFlash BAKALÁRSKA PRÁCA Tomáš Mizerák Brno, jar 2010 Prehlásenie Prehlasujem, že táto bakalárska práca je mojím pôvodným autorským dielom, ktoré som vypracoval samostatne. Všetky zdroje, pramene a literatúru, ktoré som pri vypracovaní používal alebo z nich ˇcerpal,v práci riadne citujem s uvedením úplného odkazu na prís- lušný zdroj. Vedúci práce: RNDr. David Šafránek, Ph.D. ii Pod’akovanie Dakujemˇ svojmu vedúcemu bakalárskej práce RNDr. Davidovi Šafránkovi, Ph.D. za pomoc, ochotu a strpenie, ktoré mi venoval pri tvorbe tejto práce. Taktiež d’akujem svojej rodine za podporu poˇcascelého štúdia a všetkým, ktorí mi akýmkol’vek spôsobom pomohli pri spracovaní tejto bakalárskej práce. iii Zhrnutie Vd’aka vysokej rozšírenosti technológie Flash a výkonu dnešných poˇcítaˇcovmôžeme im- plementovat’ aplikácie a hry bez nutnosti inštalácie. Táto práca zh´rˇnaspôsoby komunikácie klientov Flash a prehl’ad dostupných protokolov. V rámci práce boli jednoduchým nástro- jom otestované dva najrozšírenejšie protokoly pre Flash – HTTP a RTMP. Súˇcast’ou práce je ukážková aplikácia využívajúca RTMP pre spojenie klient-server a RTMFP pre peer-to-peer komunikáciu. iv Abstract Because of the great expansion of Flash technology and thanks to the performance of mod- ern computers we’re able to implement applications and games without the necessity of installing them. This thesis includes various possibilities of communication between Flash clients and an overview of available protocols. As a part of this thesis two most common protocols for Flash – HTTP and RTMP – were tested by a simple custom tool. The practical part is a demo application which uses RTMP for a client-server and RTMFP for peer-to-peer communication.
    [Show full text]
  • Privacy Notice
    PRIVACY NOTICE Effective Date: April 1, 2019 We at Richter7, Inc. (“Richter7”, “we” or “us”), respect your concerns about privacy. This Privacy Notice describes the types of information collected through our website at http://www.richter7.com (the “Site”), and how we may use the information, with whom we may share it and the choices available to you regarding our use of the information. We also describe the measures we take to safeguard the information and tell you how to contact us about our privacy practices. INFORMATION WE COLLECT We may collect and store personal information (such as name and other contact details) that you choose to provide to us when you provide them through the Site or when you contact us. The types of personal information we collect may include: • Contact information, such as your e-mail address and company; and • Other personal information you may submit to us, such as when you contact us. INFORMATION WE COLLECT BY AUTOMATED MEANS We are committed to making your online experience with our Site informative and relevant. To achieve this, we collect certain information by automated means when you visit this Site, such as browser cookies, web beacons, device identifiers, server logs, and other technologies. The information we obtain in the manner may include your IP address, browser type, device and operating system type and characteristics, referring URLs, information on actions taken on the Site, how many users visited our Site and dates and times of Site visits. We collect this information by various means, as explained below. Cookies A “cookie” is a text file that websites send to a visitor’s computer or other Internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser.
    [Show full text]
  • An Analysis of Various Web Tracking Methods
    Rochester Institute of Technology RIT Scholar Works Theses 11-16-2012 An Analysis of various web tracking methods William Huba Follow this and additional works at: https://scholarworks.rit.edu/theses Recommended Citation Huba, William, "An Analysis of various web tracking methods" (2012). Thesis. Rochester Institute of Technology. Accessed from This Thesis is brought to you for free and open access by RIT Scholar Works. It has been accepted for inclusion in Theses by an authorized administrator of RIT Scholar Works. For more information, please contact [email protected]. An Analysis of Various Web Tracking Methods by William Huba Committee Members Bo Yuan Yin Pan Sumita Mishra Thesis submitted in partial fulfillment of the requirements for the degree of Master of Science in Networking and System Administration Rochester Institute of Technology B. Thomas Golisano College of Computing and Information Sciences 11/16/2012 Table of Contents Table of Contents ............................................................................................................................. 2 1. Abstract ................................................................................................................................. 5 2. Introduction .......................................................................................................................... 5 3. Related Work ........................................................................................................................ 6 4. Methods of profile detection ...............................................................................................
    [Show full text]
  • Developing Android Applications with Adobe
    Developing Android Applications with Adobe AIR wnload from Wow! eBook <www.wowebook.com> o D Véronique Brossier Beijing • Cambridge • Farnham • Köln • Sebastopol • Tokyo Developing Android Applications with Adobe AIR by Véronique Brossier Copyright © 2011 Véronique Brossier. All rights reserved. Printed in the United States of America. Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O’Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (http://my.safaribooksonline.com). For more information, contact our corporate/institutional sales department: (800) 998-9938 or [email protected]. Editor: Mary Treseler Indexer: John Bickelhaupt Production Editor: Kristen Borg Cover Designer: Karen Montgomery Copyeditor: Audrey Doyle Interior Designer: David Futato Proofreader: Kristen Borg Illustrator: Robert Romano Printing History: May 2011: First Edition. Nutshell Handbook, the Nutshell Handbook logo, and the O’Reilly logo are registered trademarks of O’Reilly Media, Inc. Developing Android Applications with Adobe AIR, the image of a Royal Flycatcher, and related trade dress are trademarks of O’Reilly Media, Inc. Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in this book, and O’Reilly Media, Inc., was aware of a trademark claim, the designations have been printed in caps or initial caps. While every precaution has been taken in the preparation of this book, the publisher and authors assume no responsibility for errors or omissions, or for damages resulting from the use of the information con- tained herein. ISBN: 978-1-449-39482-0 [LSI] 1303389007 A mon père.
    [Show full text]
  • Proquest Dissertations
    •u Ottawa l.'Umvcrsilc cnnnriicnw Canada's university FACULTE DES ETUDES SUPERIEURES mn FACULTY OF GRADUATE AND ET POSTOCTORALES u Ottawa POSDOCTORAL STUDIES I/Universittf canadiennc Canada's universily Gaofeng Liu M.Sc. (Systems Science) _„„.„„„„„_ Department of Systems Science A Flash-based Multimedia Whiteboard for Clinical Motion Analysis TITRE DE LA THESE / TITLE OF THESIS Dr. Ed Lemaire ___„__„„_____^^ EXAMINATEURS (EXAMINATRICES) DE LA THESE /THESIS EXAMINERS Dr. Shervin Shirmohammadi Dr. A. El Saddik Gary W. Slater Le Doyen de la Facuitedes eludes superieures et postdocioraies / Dean ofthe Faculty of Graduate and Postdoctoral Studies A Flash-based Multimedia Whiteboard for Clinical Motion Analysis Gaofeng Liu Thesis submitted to the Faculty of Graduate and Postdoctoral Studies In partial fulfillment of the requirements For the MSc degree in Systems Science System Science Department University of Ottawa © Gaofeng Liu, Ottawa, Canada, 2007 Library and Bibliotheque et 1*1 Archives Canada Archives Canada Published Heritage Direction du Branch Patrimoine de I'edition 395 Wellington Street 395, rue Wellington Ottawa ON K1A0N4 Ottawa ON K1A0N4 Canada Canada Your file Votre reference ISBN: 978-0-494-49238-3 Our file Notre reference ISBN: 978-0-494-49238-3 NOTICE: AVIS: The author has granted a non­ L'auteur a accorde une licence non exclusive exclusive license allowing Library permettant a la Bibliotheque et Archives and Archives Canada to reproduce, Canada de reproduire, publier, archiver, publish, archive, preserve, conserve, sauvegarder, conserver, transmettre au public communicate to the public by par telecommunication ou par I'lnternet, prefer, telecommunication or on the Internet, distribuer et vendre des theses partout dans loan, distribute and sell theses le monde, a des fins commerciales ou autres, worldwide, for commercial or non­ sur support microforme, papier, electronique commercial purposes, in microform, et/ou autres formats.
    [Show full text]
  • Userid Name = Userid Value = Test Value = Test123 Domain = Login.Site.Com Domain = .Site.Com Path = / Path = / Secure Secure
    CS 361S Web Security Model Vitaly Shmatikov (most slides from the Stanford Web security group) Reading Assignment Read “Rookits for JavaScript Environments” and “Beware of Finer-Grained Origins” slide 2 Browser and Network request website Browser reply Network OS Hardware slide 3 HTTP: HyperText Transfer Protocol Used to request and return data • Methods: GET, POST, HEAD, … Stateless request/response protocol • Each request is independent of previous requests • Statelessness has a significant impact on design and implementation of applications Evolution • HTTP 1.0: simple • HTTP 1.1: more complex slide 4 HTTP Request Method File HTTP version Headers GET /default.asp HTTP/1.0 Accept: image/gif, image/x-bitmap, image/jpeg, */* Accept-Language: en User-Agent: Mozilla/1.22 (compatible; MSIE 2.0; Windows 95) Connection: Keep-Alive If-Modified-Since: Sunday, 17-Apr-96 04:32:58 GMT Blank line Data – none for GET slide 5 HTTP Response HTTP version Status code Reason phrase Headers HTTP/1.0 200 OK Date: Sun, 21 Apr 1996 02:20:42 GMT Server: Microsoft-Internet-Information-Server/5.0 Connection: keep-alive Content-Type: text/html Data Last-Modified: Thu, 18 Apr 1996 17:39:05 GMT Content-Length: 2543 <HTML> Some data... blah, blah, blah </HTML> slide 6 Website Storing Info In Browser A cookie is a file created by a website to store information in the browser POST login.cgi Browser username and pwd Server HTTP Header: Set-cookie: NAME=VALUE ; domain = (who can read) ; If expires = NULL, expires = (when expires) ; this session only secure = (send only
    [Show full text]
  • Howse Joseph Mcsc CSCI N
    Illusion SDK: An Augmented Reality Engine for Flash 11 by Joseph Howse Submitted in partial fulfilment of the requirements for the degree of Master of Computer Science at Dalhousie University Halifax, Nova Scotia November 2012 © Copyright by Joseph Howse, 2012 DALHOUSIE UNIVERSITY FACULTY OF COMPUTER SCIENCE The undersigned hereby certify that they have read and recommend to the Faculty of Graduate Studies for acceptance a thesis entitled “Illusion SDK: An Augmented Reality Engine for Flash 11” by Joseph Howse in partial fulfilment of the requirements for the degree of Master of Computer Science. Dated: November 20, 2012 Supervisor: Readers: ii DALHOUSIE UNIVERSITY DATE: November 20, 2012 AUTHOR: Joseph Howse TITLE: Illusion SDK: An Augmented Reality Engine for Flash 11 DEPARTMENT OR SCHOOL: Faculty of Computer Science DEGREE: MCSc CONVOCATION: May YEAR: 2013 Permission is herewith granted to Dalhousie University to circulate and to have copied for non-commercial purposes, at its discretion, the above title upon the request of individuals or institutions. I understand that my thesis will be electronically available to the public. The author reserves other publication rights, and neither the thesis nor extensive extracts from it may be printed or otherwise reproduced without the author’s written permission. The author attests that permission has been obtained for the use of any copyrighted material appearing in the thesis (other than the brief excerpts requiring only proper acknowledgement in scholarly writing), and that all such use is
    [Show full text]
  • Flash Cookies and Privacy
    Flash Cookies and Privacy Ashkan Soltani[A], Shannon Canty[B][1], Quentin Mayo[B][2], Lauren Thomas[B][3] & Chris Jay Hoofnagle[C] School of Information[A] Summer Undergraduate Program in Engineering Research at Berkeley (SUPERB) 2009[B] UC Berkeley School of Law[C] University of California, Berkeley Berkeley, USA correspondence to: [email protected] Abstract have expiration dates by default, whereas HTTP cookies This is a pilot study of the use of “Flash cookies” by popular expire at the end of a session unless programmed to live websites. We find that more than 50% of the sites in our longer by the domain setting the cookie. Flash cookies are sample are using Flash cookies to store information about the stored in a different location than HTTP cookies,[7] thus user. Some are using it to “respawn” or re-instantiate HTTP users may not know what files to delete in order to eliminate cookies deleted by the user. Flash cookies often share the them. Additionally, they are stored so that different browsers same values as HTTP cookies, and are even used on and stand-alone Flash widgets installed on a given computer government websites to assign unique values to users. access the same persistent Flash cookies. Flash cookies are Privacy policies rarely disclose the presence of Flash cookies, not controlled by the browser. Thus erasing HTTP cookies, and user controls for effectuating privacy preferences are clearing history, erasing the cache, or choosing a delete lacking. private data option within the browser does not affect Flash cookies. Even the ‘Private Browsing’ mode recently added to most browsers such as Internet Explorer 8 and Firefox 3 Introduction still allows Flash cookies to operate fully and track the user.
    [Show full text]
  • Web Security the Same Origin Policy
    Web Security The Same Origin Policy Yan Huang Credits: slides adapted from Stanford and Cornell Tech Browser and Network request website Browser reply Network OS Hardware 2 Website Storing Info In Browser A cookie is a file created by a website to store information in the browser POST login.cgi Browser username and pwd Server HTTP Header: Set-cookie: NAME=VALUE ; • domain = (who can read) ; If expires = NULL, expires = (when expires) ; this session only secure = (send only over HTTPS) GET restricted.html Browser Cookie: NAME=VALUE Server • HTTP is a stateless protocol; cookies add state 3 Content Comes from Many Sources ◆ Scripts <script src=“//site.com/script.js”> </script> ◆ Frames <iframe src=“//site.com/frame.html”> </iframe> ◆ Stylesheets (CSS) <link rel=“stylesheet” type="text/css” href=“//site.com/theme.css" /> ◆ Objects (Flash) - using swfobject.js script <script> var so = new SWFObject(‘//site.com/flash.swf', …); so.addParam(‘allowscriptaccess', ‘always'); so.write('flashdiv'); </script> Allows Flash object to communicate with external scripts, navigate frames, open windows 4 Browser Sandbox ◆ Goal: safely execute JavaScript code provided by a website • No direct file access, limited access to OS, network, browser data, content that came from other websites ◆ Same origin policy • Can only access properties of documents and windows from the same domain, protocol, and port ◆ User can grant privileges to signed scripts • UniversalBrowserRead/Write, UniversalFileRead, UniversalSendMail 5 Same Origin Policy protocol://domain:port/path?params
    [Show full text]
  • APPENDIXES Appendix A
    Part Four APPENDIXES Appendix A ERROR CODES This appendix lists the error codes and error messages for the various versions of Flash Lite. Table A-1 shows the error codes for errors that can occur in Flash Lite ver- sions 1.0 and 1.1, and Table A-2 shows the error codes for versions 2.0 and later. (In the later versions, the missing error code numbers 5 and 9 are by design, probably because the engineers of Flash Lite see them as unlucky numbers.) 441 APPENDIX A Table A-1. Error codes for Flash Lite 1.0 and 1.1 Error code Error message 1 Out of memory. 2 Stack limit reached. 3 Corrupt SWF data. 4 ActionScript stuck. This error can occur if the code doesn’t run within the preset time limits (normally meaning that the CPU of the device is too slow). 5 Infinite AS loop. 6 Bad JPEG data. 7 Bad sound data. 8 Cannot find host. 9 ActionScript error. 10 URL too long. Table A-2. Error codes for Flash Lite 2.0 and later Error code Error message 1 Out of memory. 2 Stack limit reached. 3 Corrupt SWF data. 4 ActionScript stuck. This error can occur if the code doesn’t run within the preset time limits (normally meaning that the CPU of the device is too slow). 6 Bad image data; corrupt or unsupported image file. 7 Bad sound data; corrupt or unsupported sound file. 8 Root movie unloaded. 10 URL too long. 11 Insufficient memory to decode image. 12 Corrupt SVG data.
    [Show full text]
  • FLASH PLAYER ADMINISTRATION GUIDE for MICROSOFT WINDOWS 8 2 Introduction
    ADOBE® FLASH® PLAYER Administration Guide for Microsoft® Windows® 8 Legal notices Legal notices For legal notices, see http://help.adobe.com/en_US/legalnotices/index.html. Last updated 4/22/2013 iii Contents Chapter 1: Introduction About this guide . 1 Flash Player and Windows 8 . 1 Additional resources . 1 Chapter 2: Flash Player environment Player files and locations . 3 Data formats used . 3 Network protocols used . 4 Player processes . 5 Player versions . 5 Chapter 3: Administration Privacy and security settings (mms.cfg) . 6 The Global FlashPlayerTrust directory . 16 Chapter 4: User-configured settings Accessing user settings (IE in Desktop Mode) . 17 Privacy options . 17 Local storage options . 18 Security options . 18 Display options . 19 The User FlashPlayerTrust directory . 20 Chapter 5: Security considerations Security overview . 21 Security sandboxes for local content . 22 About compatibility with previous Flash Player security models . 23 Data loading through different domains . 24 Additional security resources . 25 Last updated 4/22/2013 1 Chapter 1: Introduction About this guide This guide provides information that can be used to manage large-scale deployments of Adobe® Flash® Player on Windows 8, typically in a corporate environment. It is intended for the following audiences: • IT administrators who need to deploy Flash Player on their network computers and who need to understand techniques for controlling Flash Player behavior, capabilities, and functionality. • Developers (including programmers and other authors) designing and publishing SWF applications who want to understand the implications of SWF content deployment in their network environment. • IT managers interested in the security of SWF applications in their network environment. This document assumes that you are at least partially familiar with Flash Player and with Adobe® ActionScript®.
    [Show full text]