堆栈内存溢出
  简体   繁体   English

通过SSL的php SOAP调用-如何在请求中将证书,密钥和CA证书卡在一起?

[英]php SOAP call over SSL - How do I jam a cert, key, and CA cert together in the request?

 原文  2008-11-28 20:54:09       php/ soap/ ssl

问题描述

So, I'm trying to consume a webservice using something like this: $client = new SoapClient("some.wsdl", array('local_cert' => "cert_key.pem")); 因此,我正在尝试使用如下方式使用Web服务:$ client = new SoapClient(“ some.wsdl”,array('local_cert'=>“ cert_key.pem”));

I've done this successfully in the past with other web services that required a cert & key concatenated into the local_cert file. 过去,我已经通过需要将cert&key链接到local_cert文件中的其他Web服务成功完成了此操作。 Now, I'm trying to consume a service that also relies on a trusted CA. 现在,我正在尝试使用也依赖于受信任CA的服务。 This is a J2EE (Axis) webservice I'm consuming and every time I try to get opinions from the team hosting that service, they tell me that it must be a PHP issue... 这是我正在使用的J2EE(Axis)Web服务,每当我尝试从托管该服务的团队那里获取意见时,他们都会告诉我这一定是PHP问题...

The response I get from the SoapClient call is always a cannot connect. 我从SoapClient调用获得的响应始终是无法连接。 I used to be getting SSL errors, but then I realized I was using the wrong server cert, so now I at least know that I am on the right path of creating an SSL call. 我曾经遇到过SSL错误,但是后来我意识到我使用了错误的服务器证书,所以现在我至少知道我在创建SSL调用的正确路径上。

What I don't know is how to make sure the CA cert gets included in that local_cert file. 我不知道如何确保CA证书包含在该local_cert文件中。 I have my server cert, my server cert key, and the CA cert, but is there an order in which I concatenate them in local_cert? 我有我的服务器证书,我的服务器证书密钥和CA证书,但是在local_cert中将它们串联起来的顺序是什么? Am I completely missing something? 我完全错过了什么吗?

Thanks in advance 提前致谢

1 个解决方案

解决方案1
 2 已采纳  2008-12-15 00:58:20

Neither IIS nor Apache, from my experience, require a CA file to authenticate a client certificate for web services. 根据我的经验,IIS和Apache都不需要CA文件来认证Web服务的客户端证书。 You need only specify the PEM file (and install it in the local store on IIS). 您只需要指定PEM文件(并将其安装在IIS上的本地存储中)。 I would say that your code looks good. 我会说您的代码看起来不错。 When SSL fails for some authentication reason, you will typically get Forbidden messages. 当SSL由于某种身份验证原因而失败时,通常会收到“禁止”消息。 Errors that say you can't connect might involve ports not being open, such as port 443 for SSL. 表示无法连接的错误可能涉及端口未打开,例如SSL的端口443。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用MySQL DB调用的单个页面是否需要SSL证书? - Do I need an SSL cert for a single page with MySQL DB call? PHP问题与SSL CA证书(路径?访问权限?) - PHP Problem with the SSL CA cert (path? access rights?) WordPress-SSL CA证书(路径?访问权限?) - Wordpress - SSL CA cert (path? access rights?) 验证CA证书是否正常(Localhost上的SSL错误) - Verify that the CA cert is OK (SSL Error on Localhost) 如何使用 CURL PHP 传递参数 --cert 和 --key? - How to pass parameter --cert and --key with CURL PHP? 在PHP中使用ssl cert时出错 - Error using ssl cert with PHP PHP 丢失 - SSL 证书 - Subdreamer - PHP missing - SSL cert - Subdreamer Google PHP API客户端:CA cert错误 - Google PHP API Client: CA cert error CurlException:77:SSL CA证书出现问题-Facebook Connect - CurlException: 77: Problem with the SSL CA cert - facebook connect CURL:SSL证书失败,请验证CA证书是否正常 - CURL: SSL certificate fails, verify that the CA cert is OK
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM