allowFileAccessFromFileURLs property Null safety

bool allowFileAccessFromFileURLs
read / write

Sets whether cross-origin requests in the context of a file scheme URL should be allowed to access content from other file scheme URLs. Note that some accesses such as image HTML elements don't follow same-origin rules and aren't affected by this setting.

Don't enable this setting if you open files that may be created or altered by external sources. Enabling this setting allows malicious scripts loaded in a file:// context to access arbitrary local files including WebView cookies and app private data.

Note that the value of this setting is ignored if the value of allowUniversalAccessFromFileURLs is true.

The default value is false.


bool allowFileAccessFromFileURLs;