The persistance service api checks that the url specified is within the codebase of the application. This is to insure one application cannot read or write the stored data of another unless it is from the same codebase.
For signed applications, this restriction should be removed.