1. 首頁
  2. 問答
  3. PHP捲曲和HTTPS

PHP捲曲和HTTPS

2010-12-07 105 views
43

,我發現這個功能做的真棒工作(恕我直言):http://nadeausoftware.com/articles/2007/06/php_tip_how_get_web_page_using_curlPHP捲曲和HTTPS

/** 
* Get a web file (HTML, XHTML, XML, image, etc.) from a URL. Return an 
* array containing the HTTP server response header fields and content. 
*/ 
function get_web_page($url) 
{ 
    $options = array(
     CURLOPT_RETURNTRANSFER => true,  // return web page 
     CURLOPT_HEADER   => false, // don't return headers 
     CURLOPT_FOLLOWLOCATION => true,  // follow redirects 
     CURLOPT_ENCODING  => "",  // handle all encodings 
     CURLOPT_USERAGENT  => "spider", // who am i 
     CURLOPT_AUTOREFERER => true,  // set referer on redirect 
     CURLOPT_CONNECTTIMEOUT => 120,  // timeout on connect 
     CURLOPT_TIMEOUT  => 120,  // timeout on response 
     CURLOPT_MAXREDIRS  => 10,  // stop after 10 redirects 
    ); 

    $ch  = curl_init($url); 
    curl_setopt_array($ch, $options); 
    $content = curl_exec($ch); 
    $err  = curl_errno($ch); 
    $errmsg = curl_error($ch); 
    $header = curl_getinfo($ch); 
    curl_close($ch); 

    $header['errno'] = $err; 
    $header['errmsg'] = $errmsg; 
    $header['content'] = $content; 
    return $header; 
}

我唯一的問題是,它不適合工作的https://。 Anny的想法,我需要做什麼,使這項工作的HTTPS?謝謝!

來源

2010-12-07 StackOverflowNewbie

+4

請定義「不起作用」。 – 2010-12-07 01:53:19

+3

curl默認檢查SSL證書是否有效......如果您自己簽署了有問題的證書,您可能需要禁用該行爲 – RageZ 2010-12-07 01:54:21

+0

@RegeZ - 如何執行您的建議? – StackOverflowNewbie 2010-12-07 01:55:12

回答

70

速戰速決,在你的選擇補充一點:

curl_setopt($ch,CURLOPT_SSL_VERIFYPEER, false)

或者只是把它添加到您當前的功能:

/** 
* Get a web file (HTML, XHTML, XML, image, etc.) from a URL. Return an 
* array containing the HTTP server response header fields and content. 
*/ 
function get_web_page($url) 
{ 
    $options = array(
     CURLOPT_RETURNTRANSFER => true,  // return web page 
     CURLOPT_HEADER   => false, // don't return headers 
     CURLOPT_FOLLOWLOCATION => true,  // follow redirects 
     CURLOPT_ENCODING  => "",  // handle all encodings 
     CURLOPT_USERAGENT  => "spider", // who am i 
     CURLOPT_AUTOREFERER => true,  // set referer on redirect 
     CURLOPT_CONNECTTIMEOUT => 120,  // timeout on connect 
     CURLOPT_TIMEOUT  => 120,  // timeout on response 
     CURLOPT_MAXREDIRS  => 10,  // stop after 10 redirects 
     CURLOPT_SSL_VERIFYPEER => false  // Disabled SSL Cert checks 
    ); 

    $ch  = curl_init($url); 
    curl_setopt_array($ch, $options); 
    $content = curl_exec($ch); 
    $err  = curl_errno($ch); 
    $errmsg = curl_error($ch); 
    $header = curl_getinfo($ch); 
    curl_close($ch); 

    $header['errno'] = $err; 
    $header['errmsg'] = $errmsg; 
    $header['content'] = $content; 
    return $header; 
}

來源

2010-12-07 01:55:55 SystemX17

21

我試圖用捲曲做一些HTTPS的API使用PHP調用並遇到了這個問題。我注意到在PHP站點這讓我啓動和運行的建議:http://php.net/manual/en/function.curl-setopt.php#110457

Please everyone, stop setting CURLOPT_SSL_VERIFYPEER to false or 0. If your PHP installation doesn't have an up-to-date CA root certificate bundle, download the one at the curl website and save it on your server:

http://curl.haxx.se/docs/caextract.html

Then set a path to it in your php.ini file, e.g. on Windows:

curl.cainfo=c:\php\cacert.pem

Turning off CURLOPT_SSL_VERIFYPEER allows man in the middle (MITM) attacks, which you don't want!

來源

2014-10-29 22:13:07

0

像加文·帕爾默回答另一種選擇是使用.pem文件,但有捲曲選項

1-下載最新更新從https://curl.haxx.se/docs/caextract.html.pem文件,並保存在某個地方它在服務器上(公共文件夾外)

2 - 設定你的代碼的選項,而不是php.ini文件

curl_setopt($ch, CURLOPT_CAINFO, $_SERVER['DOCUMENT_ROOT'] . "/../cacert-2017-09-20.pem");

來源

2017-12-11 21:44:14

 相關問題

  • 暫無相關問題^_^