PHP, Windows and SSL
Julian Bond
julian_bond at voidstar.com
Fri Feb 22 06:46:35 PST 2008
Kevin Turner <kevin at janrain.com> Fri, 8 Feb 2008 11:05:38
>On Fri, 2008-02-08 at 13:31 +0000, Julian Bond wrote:
>> However, after returning, I get the error message
>> OpenID authentication failed: Server denied check_authentication
>> >From $response->message even though doing the exact same thing to the
>> http:// version of the Provider works fine. Any ideas on how to debug
>> this?
>
>The fact that it's attempting check_authentication means that it hasn't
>successfully established an association with the myOpenID https
>endpoint.
Finally got back to this. The underlying problem is SSL failures due to
CA checking.
The nasty hack is to add
curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);
to post() and get() in ParanoidHTTPFetcher.php
On my linux production servers I didn't have a problem. On my windows
laptop I've been unable so far to get curl to use cacert.pem correctly.
I wonder if it would be a good idea for those functions to report
curl_errno($c) and curl_error($c) rather than just dying quietly.
--
Julian Bond E&MSN: julian_bond at voidstar.com M: +44 (0)77 5907 2173
Webmaster: http://www.ecademy.com/ T: +44 (0)192 0412 433
Personal WebLog: http://www.voidstar.com/ skype:julian.bond?chat
Tamper-Evident Bottle Cap
More information about the Dev
mailing list