stackoom
  简体   繁体   中英

"unable to get local issuer certificate" when trying to access Microsoft Graph

 原文  2019-06-28 21:43:23       php/ symfony/ azure-active-directory/ microsoft-graph-api/ guzzle

Question

I want to configure my Symfony4 application to read and send e-mails using the msgraph-sdk-php library.

My first experience was this piece of code:

    $guzzle = new \GuzzleHttp\Client();
    $url = 'https://login.microsoftonline.com/' . $tenantId . '/oauth2/token?api-version=1.0';
    $token = json_decode($guzzle->post($url, [
        'form_params' => [
            'client_id' => $clientId,
            'client_secret' => $clientSecret,
            'resource' => 'https://graph.microsoft.com/',
            'grant_type' => 'client_credentials',
        ],
        'verify' => false
    ])->getBody()->getContents());
    $accessToken = $token->access_token;

    $graph = new Graph();
    $graph->setAccessToken($accessToken);

    try {
        $user = $graph->createRequest("GET", "/me")
            ->setReturnType(User::class)
            ->execute();
    } catch (GraphException $e) {
        $user=(object) ['getGivenName'=>$e->getMessage()];
    }

    return "Hello, I am $user->getGivenName() ";

But then Symfony shows me an exception page with this message:

cURL error 60: SSL certificate problem: unable to get local issuer certificate

What should I do to overcome this?

1 answers

solution1
 1 ACCPTED  2019-06-28 21:58:11

On Windows systems cURL can't access the CA-Certs sometimes. So you have to download the CA-Files and add them to Curl. You can download the certificate here:

http://curl.haxx.se/docs/caextract.html 

curl_setopt($ch, CURLOPT_CAINFO, __DIR__ . "/certs/cacert.pem");
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);

So to fix the problem temporary you can disable the Peer verification but you should do that only for testing.

$client->setDefaultOption('verify', false);

Then it should be possible to connect. To add the certificate you can to the following but then you have to download the certificate first.

$client = new \GuzzleHttp\Client();
$client->setDefaultOption('verify', 'curl-ca-bundle.crt');

Or last solution ad the ca file to your php.ini (The file from curl.haxx.se):

curl.cainfo = "[pathtothisfile]\cacert.pem"

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question “Error SSL certificate problem: unable to get local issuer certificate” when trying to make a phone call with Twilio Paypal Access - SSL certificate: unable to get local issuer certificate Docusign error: "unable to get local issuer certificate" Unable to get local issuer certificate using CURL Php 5.6 unable to get local issuer certificate SSL certificate error: unable to get local issuer certificate when authenticating with Podio SSL certificate problem: unable to get local issuer certificate when push to remote repository Wordpress Cron Error “SSL certificate: unable to get local issuer certificate” Curl err (60) SSL certificate: unable to get local issuer certificate SSL certificate problem: unable to get local issuer certificate
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM