"A cross-domain policy file is an XML document that grants a web client—such as Adobe Flash Player (though not necessarily limited to it)—permission to handle data across multiple domains. When a client hosts content from a particular source domain and that content makes requests directed towards a domain other than its own, the remote domain would need to host a cross-domain policy file that grants access to the source domain, allowing the client to continue with the transaction. Policy files grant read access to data as well as permit a client to include custom headers in cross-domain requests." from adobe.com
If you had enough of seeing all the routing errors on "/crossdomain.xml" in your logs,
you need to place a "NO PERMISSION" crossdomain.xml specifications.
Simply put the following content on "public/crossdomain.xml" file in your app:
<?xml version="1.0"?>That's it, Access will be explicitly be denied to everyone.
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="none"/>
</cross-domain-policy>
