Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Using certificate with nuSOAP and cURL 1

Status
Not open for further replies.
miraclemaker

miraclemaker

Programmer
Oct 16, 2002
127
GB
Hi I'm using cURL with nuSOAP. I'm requesting a service from a website that requires me to supply a certificate to authenticate myself. I've got two certificates - a .pfx file and a .p7b file. I've installed these on my server but I still can't do any requests. Do I need to specify to cURL to use a certificate when it performs the request?

If so can someone explain how to do this?

Thank a lot.
 
Sort by date Sort by votes
It involves judicious use of the curl_setopt() function.

I've never done client-side certificates with cURL, but I believe that you invoke:

[tt]curl_setopt ($ch, CURLOPT_SSLCERT, $certfile);[/tt]

where $certfile contains the name of the file containing the certificate.

If your certificate file requires a password, invoke:

[tt]curl_setopt ($ch, CURLOPT_SSLCERTPASSWD, $certpassword);[/tt]


One gotcha: cURL can only use PEM and DER-formatted certificate files. cURL defaults to PEM, to specify DER, invoke:

[tt]curl_setopt ($ch, CURLOPT_SSLCERTTYPE, "DER");[/tt]

Want the best answers? Ask the best questions!

TANSTAAFL!!
 
Upvote 0 Downvote
Thnaks for that. I have two certificates; a .p7b file and a .pfx file. Is there a way to convert these to the required format?

I'm using nuSOAP on windows - where do I need to store the certificates so that they are available to cURL?

Thanks.
 
Upvote 0 Downvote
p7b" is a file extension used by Microsoft -- it follows the PKCS#7 format.

openssl should be able to convert the file:

openssl pkcs7 -inform DER -in <yourfilenamehere>.p7b -print_certs -text -out cert.pem

You can store the certs anywhere on the filesystem. You tell cURL to use the file using the curl_setopt() function I listed above.

Want the best answers? Ask the best questions!

TANSTAAFL!!
 
Upvote 0 Downvote
Thanks for that. I found another resource that advised using openssl. I used the command:

openssl.exe pkcs12 –in test_b.pfx –out test_b.pem

- the p7b file contained three certificates that looked like cert authorities, so I used the other file that looked like it contained client certificates.

What is the difference between using pkcs7 and pkcs12?
 
Upvote 0 Downvote
Another question - if I want to create a CA bundle of more than one certificate in a PEM file, what structure should it take?

Is it ok to have
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----

multiple times in one .pem file?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Wand850
  • Locked
  • Question
Parsing XML with multiple namespaces using PHP
Replies
3
Views
379
spamjim
spamjim
Mandy_crw
  • Locked
  • Question
How to send sms in PHP using usb gsm modem?
Replies
1
Views
603
vishvajit
vishvajit
c0deM0nK424
  • Locked
  • Question
Gutenberg Block Editor - page edits and updates not working since wp site migration
Replies
1
Views
814
spamjim
spamjim
Gerrit Broekhuis
  • Locked
  • Question
PHP form with captcha and file upload
Replies
4
Views
384
Gerrit Broekhuis
Gerrit Broekhuis
lexer
  • Locked
  • Question
Fetching Data from Mysql and filling Inputs in a Form
Replies
0
Views
236
lexer
lexer

Part and Inventory Search

Sponsor

Back
Top