Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

Interactive statements, WebServices and HTTPS

Level 1
Level 1


I'm working on Interactive Statement, that must comunicate secure with server. Good way for it is webservice, and It works perfectly with http. For developing I use interactive statement as AIR application and it work's perfectly on both protocol http and https.

BUT problem is with HTTPS protocol for secure connection from PDF (outside AIR runtime, after generating interactive PDF):

When I change url of server for https, interactive statement can't connect to the server with this error mesage:

E3626616-1AAB-C9B4-BDAC-0436834FE2B2 (mx.messaging.messages::ErrorMessage)#0
  body = (Object)#1
  clientId = "DirectHTTPChannel0"
  correlationId = "B9352710-5919-6A3A-29D2-04367F4B8210"
  destination = ""
  extendedData = (null)
  faultCode = "Channel.Security.Error"
  faultDetail = "Destination: DefaultHTTPS"
  faultString = "Security error accessing url"
  headers = (Object)#2
  messageId = "E3626616-1AAB-C9B4-BDAC-0436834FE2B2"
  rootCause = (
    bubbles = false
    cancelable = false
    currentTarget = (
      bytesLoaded = 0
      bytesTotal = 0
      data = (null)
      dataFormat = "text"
    eventPhase = 2
    target = (
    text = "Error #2048: Porušení rozsahu zabezpečení: file://PDFMedia031535/g/1 nemůže načítat data z"
    type = "securityError"
  timestamp = 0
  timeToLive = 0

I have site as trusted in Windows, in Acrobat and Reader for all ports and protocols (http, https). A have certificate from trusted everywhere too. PDF with interactive statement is reader extended, certifyied from certificate

What i've forgot? Something missing?

My crossdomain.xml is avaiable on and looks like this:


  <site-control permitted-cross-domain-policies="all"/>

  <allow-access-from domain="*" to-ports="*" secure="true"/>

  <allow-http-request-headers-from domain="*" headers="*" secure="true"/>


Thanks for advice.


0 Replies
Level 1
Level 1

I found solution, but I don't know, if it's pure.

When I change crossdomain.xml like this:

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "">
    <site-control permitted-cross-domain-policies="all" />
    <allow-access-from domain="*" to-ports="*" secure="true"/>
    <allow-access-from domain="*" to-ports="*" secure="false"/>
    <allow-http-request-headers-from domain="*" headers="*" secure="true" />
    <allow-http-request-headers-from domain="*" headers="*" secure="false" />

It started to work fine.

Strange solution...