LinkBack URL
About LinkBacksI've been using altervista for a few months now for a tool that I've built. The code I've used is pretty straight-forward and it was working well. A few hours ago I've started seeing this problem when calling a callback function using curl:
SSL certificate problem: unable to get local issuer certificate
This is the code that produces the error:
I've tried setting CURLOPT_SSL_VERIFYPEER to false, but even that produces the same error. Has something changed on the Altervista side to suddenly cause this?Code://Do the initial check. $header='Authorization: Basic '.base64_encode($client_id.':'.$secret); $fields_string=''; $fields=array( 'grant_type' => 'authorization_code', //Do the initial check. $header='Authorization: Basic '.base64_encode($client_id.':'.$secret); $fields_string=''; $fields=array( 'grant_type' => 'authorization_code', 'code' => $code ); foreach ($fields as $key => $value) { $fields_string .= $key.'='.$value.'&'; } $fields_string = rtrim($fields_string, '&'); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $token_url); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_HTTPHEADER, array($header)); curl_setopt($ch, CURLOPT_POST, count($fields)); curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); // While using this is optional, it may be required if you encounter // the "SSL certificate problem: unable to get local issuer certificate" // error when calling the API using curl. //curl_setopt( $ch, CURLOPT_SSL_VERIFYPEER, false ); $result = curl_exec($ch); if ($result===false) { auth_error(curl_error($ch)); }
The very same code runs well on my local server.
Results 1 to 6 of 6
-
03-11-2015, 08:03 PM #1Guest
SSL certificate problem: unable to get local issuer certificate
Last edited by evetools; 03-11-2015 at 10:10 PM.
-
03-11-2015, 11:34 PM #2
AlterVista Staff
- Join Date
- Jan 2015
- Posts
- 573
Could you please provide the URL of the resource that your script is trying to retrieve?
-
03-12-2015, 08:10 AM #3Guest
This is the URL: https://login.eveonline.com/oauth/token
This is a short explanation on what it's doing:
At this point in time your website has the authorization code. The only thing the authorization code is good for is to obtain an access token.
It is also important to note that the authorization code is single use only.
The you need to make an HTTP POST to https://login.eveonline.com/oauth/token to exchange the authorization code with an access token, and it looks like this:
POST https://login.eveonline.com/oauth/token HTTP/1.1
Authorization: Basic bG9...ZXQ=
Content-Type: application/x-www-form-urlencoded
Host: login.eveonline.com
grant_type=authorization_code&code=gEyuYF_rf...ofM 0
-
03-12-2015, 10:33 PM #4Guest
Is there any news regarding this?
-
03-13-2015, 02:41 PM #5
AlterVista Staff
- Join Date
- Feb 2010
- Posts
- 300
The issue is related to the SSL certificate you're using. The cURL error says that the certificate chain cannot be verified because of the lack of the issuer certificate on our servers.
So the only solution is to ignore the certificate chain check using this setting (I tested it and it works):
We don't made any changes related to SSL. Are you sure the connection worked in the past with the same certificate on your remote server?PHP Code:curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
"Over thinking, over analyzing separates the body from the mind."
-
03-13-2015, 02:47 PM #6Guest
I would not want to ignore the certificate chain as I would like to make sure I'm giving passing the data securely.
Originally Posted by saitfainder
I had finally resolved the issue by doing:
curl_setopt($ch, CURLOPT_CAINFO, getcwd() . "CERT.CRT");
Yes, it had worked without a hitch up until 3 days ago.We don't made any changes related to SSL. Are you sure the connection worked in the past with the same certificate on your remote server?
