Skip SSL verification #19

thekid · 2016-06-28T19:45:04Z

Currently only possible via:

index 6cd14dc..b732637 100644
--- a/src/main/php/peer/http/SSLSocketHttpTransport.class.php
+++ b/src/main/php/peer/http/SSLSocketHttpTransport.class.php
@@ -21,11 +21,14 @@ class SSLSocketHttpTransport extends SocketHttpTransport {
    */
   protected function newSocket(\peer\URL $url, $arg) {
     if ('tls' === $arg) {
-      return new TLSSocket($url->getHost(), $url->getPort(443), null);
+      $s= new TLSSocket($url->getHost(), $url->getPort(443), null);
     } else {
       sscanf($arg, 'v%d', $version);
-      return new SSLSocket($url->getHost(), $url->getPort(443), null, $version);
+      $s= new SSLSocket($url->getHost(), $url->getPort(443), null, $version);
     }
+    $s->setVerifyPeer(false);
+    $s->setAllowSelfSigned(false);
+    return $s;
   }

(plus a couple more tweeks for proxy setups)

Especially for testing against self-signed certificates, this can be tedious. Maybe passing https+unverified://example.com/ can make this easier but not compromise default security

/cc @kiesel

The text was updated successfully, but these errors were encountered:

kiesel · 2016-07-27T10:25:04Z

👍 for this - for development this is often necessary.

thekid added the question label Jun 28, 2016

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Skip SSL verification #19

Skip SSL verification #19

thekid commented Jun 28, 2016 •

edited

Loading

kiesel commented Jul 27, 2016

Skip SSL verification #19

Skip SSL verification #19

Comments

thekid commented Jun 28, 2016 • edited Loading

kiesel commented Jul 27, 2016

thekid commented Jun 28, 2016 •

edited

Loading