-
-
Notifications
You must be signed in to change notification settings - Fork 167
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Certificate verify location error with POST request #2745
Comments
@lukasbestle that's related to the new cert file and ssl check in the Remote class, right? |
Yes, there was a discussion about this in Slack already and I asked Georg to open an issue. I will take a look at this. |
Quoted, maybe it will help;
|
I don't have access to a Valet setup, but as far as I remember, it uses Homebrew PHP internally, doesn't it? I tried to reproduce the issue with my local installation of Homebrew PHP 7.4.8 on Catalina, but it works just fine for me. What's especially weird about the error message is the @georgobermayr Could you please test the following to track this down further:
var_dump(Remote::get('https://getkirby.com/security.json'));
Since Kirby 3.4.0, Kirby ships with its own CA bundle that is used by default if no other bundle is configured by the user. So I don't think this can be the issue. However it's likely that cURL can't find or doesn't accept our CA bundle on @georgobermayr's machine. BTW: The reason why there wasn't any error before Kirby 3.4.0 is that we have enabled TLS certificate verification for It is possible to disable verification completely in the config to go back to the pre-3.4.0 behavior, but that's obviously not recommended. |
Yes, this uses Homebrew PHP.
I tried that at first in my initial project setup, this trows an exception immediately, no matter the destination host:
No, there is nothing set here.
Sadly not. With the Plankit I get this output, when dumping a GET request to https://getkirby.com/security.json:
So this seems to work and works as well mit my original host and the POST request that I was working with. Just an idea: In the project where I have the issue, I'm working with a custom CMS installation path in Composer: |
Thanks for the additional details! It's actually great that it works with the Plainkit because that means that we now only need to find the difference between your site setup and the Plainkit. I have tried to set up a Starterkit with a custom Composer installation path, but unfortunately that works on my machine, so I still cannot reproduce the issue. Would it be possible for you to send me a reduced version of your site code (i.e. with the content removed and the code reduced so it barely still reproduces the issue with our getkirby.com test URL)? If so, please send me a link to a ZIP file via email to lukas at getkirby. I will treat any code you send me as confidential and won't share it with anyone else. If that's not possible, we need a different way of tracking down the difference between the two sites. |
@lukasbestle Thank you, you've got mail ;-) |
With @georgobermayr's test site I was able to reproduce the error. The fix for this is in #2756. |
✅ |
Describe the bug
I have a custom route that does a POST request, e.g. to a Slack webhook like this:
When I access this route, I get the CURL error 77 with
error setting certificate verify locations:\n CAfile: 1\n CApath: /usr/local/etc/openssl@1.1/certs"
.Kirby Version
Kirby 3.4
Desktop (please complete the following information):
my-folder.test
domain of Valet. The Valet site is not secured, so accessed with HTTP, but the error remains the same, when securing the site.The text was updated successfully, but these errors were encountered: