Revert r17851 and just give non-local flash clients access to
[rails.git] / public / oauth / crossdomain.xml
1 <?xml version="1.0"?>
2 <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
3
4 <cross-domain-policy>
5         <allow-access-from domain="*"/>
6         <allow-http-request-headers-from domain="*" headers="Authorization,X_HTTP_METHOD_OVERRIDE"/>
7         <allow-http-request-headers-from domain="*.openstreetmap.org" headers="*"/>
8         <allow-http-request-headers-from domain="*.openstreetmap.net" headers="*"/>
9         <allow-http-request-headers-from domain="*.openstreetmap.com" headers="*"/>
10 </cross-domain-policy>