I'm writing a streaming audio player in flex for a client of mine. Everything is going fine except for the security issues.

I'm using computeSpectrum to draw a sound channel visualization and that function is one of the one's flash security limits without proper use of a crossdomain file.

Basically its set up on two servers. www.clientswebsite.com/somedirectory/AudioPlayer.html (http://www.clientswebsite.com/somedirectory/AudioPlayer.html) is the page with my .swf.

streamstation.clientswebsite.com is a server with shoutcast set up. I had my client install IIS on port 80 so now theres a crossdomain file at streamstation.clientswebsite.com/crossdomain.xml.

The file is on the up and up:

<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only" />

<allow-access-from domain="*" />

</cross-domain-policy>

but for some reason I still get security issues poping up in my debug flash player.

I am not at all a server or hardware guy, I'm a humble flash developer and this security issue has me stumped. So, I would greatly appreciate any advice you guys have.

Also, if its relevant, I'm developing this in Flex 3.

Any help at all would be greatly appreciated.

http://bugs.adobe.com/jira/browse/FP-147