<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
  <site-control permitted-cross-domain-policies="by-content-type" />
  <allow-access-from domain="*" secure="false" />
  <allow-http-request-headers-from domain="*" secure="false" headers="Authorization"/>
</cross-domain-policy>

