XIFF AS3 and OpenFire


I try to figure up how to avoid Security Sandbox with Flash 9. I’m using XIFF AS3 framework in Flex application with Openfire server, I had crossdomain.xml file on my root domain, that containes :

<?xml version=“1.0”?>

<!DOCTYPE cross-domain-policy SYSTEM “http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd”>


<allow-access-from domain="*" to-ports=“5223,9090,9091,7777,8080,80” />


But I still have Not Authorized error when trying to connecte to OpenFire. Do i need something else ?

Thanks in advance.


For openfire users:

  • Add Security.loadPolicyFile(“xmlsocket://”+server +":5229"); before xmppSocketConnection.connect() method
  • Make sure to open port 5229 in your firewall settings

This allows Flash Player security model to grant connections to self/other domains as OpenFire listens to this port and respond with a security policy file