I've found Flash security perplexing. Did get it working, but not sure
what the final key was. Have you tried these Actionscript lines in
your main module??
Security.allowDomain("
http://YourAppName.appspot.com");
Security.allowDomain("
http://www.YourDomainName.com");
Also agree that you should load a cross domain xml (I include this
with lines above - and remember to set up statis/xml or what ever else
in your app.yaml):
Security.loadPolicyFile("
http://YourAppName.appspot.com/static/xml/
crossdomain.xml");
Sample (very open) crossdomain.xml:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "
http://www.macromedia.com/xml/
dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="
YourAppDomain.appspot.com"
secure="false" />
<site-control permitted-cross-domain-policies="master-only" />
</cross-domain-policy>
HTH, stevep