[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [BULK] Re: HTTPAPI sending a certificate.

From: Scott Klement <sk@xxxxxxxxxxxxxxxx>
To: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [BULK] Re: HTTPAPI sending a certificate.
Date: Mon, 28 Sep 2009 17:31:01 -0500

You've lost me.  An invalid certificate won't work.  It doesn't matter 
if you use PHP or Java or anything else.  This has nothing to do with 
the programming language.

The following code will never work:
https_init(/www/folder/htdocs/InvalidCertificate)

That's not how you assign certificates.  You have to load your 
certificate through digital certificate manager.  You can't simply list 
it's pathname.

HTTPAPI does not do any SSL processing on it's own.  It uses the SSL 
code that's built into the operating system.  It doesn't many any 
difference what language your program is written in, because all 
languages invoke the same code inside the operating system.  It's not a 
programming language issue.

It's possible that if you used a different SSL library (for example, 
calling OpenSSL from PASE instead of using the GSKit library from IBM) 
you could end up finding a way to get the certificate through.  But 
again, that's not a language-specific thing.  Any language calling that 
SSL library will work the same.

However, I have no intention of rewriting HTTPAPI to use a different SSL 
library. If you want it to use a different one, feel free to write it 
yourself and contribute the code back to the project.  This is, after 
all, an open source project.

But I can't help but wonder if you just didn't understand my 
instructions, since you seem to think that you can just specify a 
pathname to HTTPAPI...

Jason Baker wrote:
> Scott,
> 
> After being on the phone with the banks credit card processing company
> basically all day, it turns out they "refuse" to send us a "valid"
> client certificate and state that if we wouldn't use RPG it would work
> just fine.  They want me to use PHP or Java to pick up the file stored
> in a folder "as is".
> 
> The PHP example is $cert = "/path/1234567890.pem";
> 
> Therefore, would it be possible for this to work?
> https_init(/www/folder/htdocs/InvalidCertificate) 
> 
> Oh yeah, the funny thing after talking to a manager, they know the
> certificate is not valid but we have to have it to communicate with
> them.
> 
> What a day, thanks for your help.
> 
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

Follow-Ups:
- RE: [BULK] Re: HTTPAPI sending a certificate.
  - From: Jason Baker

References:
- HTTPAPI sending a certificate.
  - From: Jason Baker
- Re: HTTPAPI sending a certificate.
  - From: Scott Klement
- RE: [BULK] Re: HTTPAPI sending a certificate.
  - From: Jason Baker

Prev by Date: RE: [BULK] Re: HTTPAPI sending a certificate.
Next by Date: Re: [BULK] Re: HTTPAPI sending a certificate.
Previous by thread: RE: [BULK] Re: HTTPAPI sending a certificate.
Next by thread: RE: [BULK] Re: HTTPAPI sending a certificate.
Index(es):
- Date
- Thread