Most developers encounter ActionScript's security system for the first time when an operation they expect to succeed is blocked for security reasons. In this section, we'll study four of the most-often blocked external operations: loading content, accessing content as data, cross-scripting, and loading data. After defining each, we'll look at the circumstances under which these common operations are blocked.
Loading content means retrieving any external resource in order to subsequently display or play it. Conceptually, loading-content operations enable developers to present external content to the user, even in cases where ActionScript's security rules restrict programmatic access to that content's data.
The ActionScript methods considered to be "loading-content" operations from a security perspective are listed in the leftmost column of Table 19-1.
Table 19-1. Content-loading operations
Type of content
Specific file formats supported by Flash Player 9
Image, Adobe Flash
JPEG, GIF, PNG, SWF
For convenience, this chapter occasionally uses the term content resources when referring to resources loaded using one of the methods listed in Table 19-1. Note, however, that it is the specific method used to load the resource—not the file type of the resource—that ...