当使用无效的SSL证书向服务器发出POST请求时(Cloudflare必须重新颁发证书),Artax返回以下错误:
stream_socket_enable_crypto(): SSL操作失败,代码1。OpenSSL错误信息:错误:14090086:SSL例程:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
我试图使用
$client->setOption('tlsOptions', [
'verify_peer' => FALSE,
]);
和
$request->setOption('tlsOptions', [
'verify_peer' => FALSE,
]);
但是在这两种情况下都会抛出错误。
谁能告诉我禁用Artax对等验证的正确方法?
我都试过了:
$client->setAllOptions([
'tlsOptions' => [
'verify_peer' => FALSE,
'allow_self_signed' => TRUE,
],
]);
和
$client->setOption('tlsOptions', [
'verify_peer' => FALSE,
'allow_self_signed' => TRUE,
]);
都给我一个400的响应(错误的请求)。
[status:Artax'Response:private] => 400
[reason:Artax'Response:private] => Bad Request
[protocol:Artax'Message:private] => 1.1
[headers:Artax'Message:private] => Array
(
[Date] => Array
(
[0] => Mon, 19 May 2014 09:50:19 GMT
)
[Server] => Array
(
[0] => Apache/2.4.9 (Ubuntu)
)
[Content-Length] => Array
(
[0] => 303
)
[Connection] => Array
(
[0] => close
)
[Content-Type] => Array
(
[0] => text/html; charset=iso-8859-1
)
)
[headerCaseMap:Artax'Message:private] => Array
(
[DATE] => Date
[SERVER] => Server
[CONTENT-LENGTH] => Content-Length
[CONNECTION] => Connection
[CONTENT-TYPE] => Content-Type
)
也许允许自签名会起作用:
$client->setOption('tlsOptions', [
'verify_peer' => FALSE,
'allow_self_signed' => TRUE,
]);
对于当前的master
分支,以下将绕过验证:
$client->setOption(Amp'Artax'Client::OP_CRYPTO, [
"verify_peer" => false,
"verify_peer_name" => false
]);