Php SOAP call over SSL - How to hide certificate, key and CA certificate together in request?

Question

Php SOAP call over SSL - How to hide certificate, key and CA certificate together in request?

So, I'm trying to consume a web service using something like this: $ client = new SoapClient ("some.wsdl", array ('local_cert' => "cert_key.pem"));

I've done this successfully in the past with other web services that required the certificate and key to be merged into a local_cert file. Now I am trying to use a service that also relies on a trusted CA. This is a J2EE web service (Axis) that I consume and every time I try to get opinions from the team hosting this service they tell me that it must be a PHP problem ...

The response I get from the SoapClient call always fails to connect. I used to get SSL errors, but then realized that I was using the wrong server certificate, so now I at least know that I am on the right path to making an SSL call.

I don't know how to make sure the CA certificate is included in this local_cert file. I have my server cert, my server cert and my CA cert, but is there an order in which I am merging them into local_cert? Am I missing something?

Thank you in advance

0

soap php ssl

scooterhanson 28 nov. '08 at 20:54

source to share

1 answer

Nick R. · Accepted Answer · 2008-12-15T00:58:20+0000

Neither IIS nor Apache, in my experience, require a CA file to authenticate a client certificate for web services. You only need to specify the PEM file (and install it in local storage in IIS). I would say your code looks good. When SSL is authenticated for any reason, you usually get Forbidden messages. Errors that say you can't connect can include ports that won't open, such as port 443 for SSL.

Php SOAP call over SSL - How to hide certificate, key and CA certificate together in request?

More articles: