CiviCRM Community Forums (archive)

*

News:

Have a question about CiviCRM?
Get it answered quickly at the new
CiviCRM Stack Exchange Q+A site
This forum was archived on 25 November 2017. Learn more.
How to get involved.
What to do if you think you've found a bug.



  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Post-installation Setup and Configuration (Moderator: Dave Greenberg) »
  • SSL Implementation Flexibility
Pages: [1]

Author Topic: SSL Implementation Flexibility  (Read 1127 times)

jgaryt

  • Guest
SSL Implementation Flexibility
March 08, 2009, 09:15:16 pm
Hi,

I have run into an issue with CiviCRM recognizing my SSL certificate, presumably because it's not hosted in CPanel, and a variable check that CiviCRM is doing is failing.  This means that I cannot activate the SSL option in CiviContribute.  I thought I found a way around it by using a Drupal Contributed module called "Secure Pages", and for the most part that is true, but even that module could not see my SSL and required an .htaccess piece of trickery.

So, using Secure Pages does secure my CiviContribute forms except for the Recaptcha items; those calls to the api are still made over http, thus making my form report to the user that it is not secure.  (And as I am taking CC info, even though the transaction is secure, smart people will not click ok).

My SSL cert is installed on an edge load-balancer, as I am running my sites in a type of "cloud" environment, so applications looking for CPanel SSL info don't see my cert.

What is CiviCRM looking for to establish SSL implementation?  Or, what can I do to make this work?

Thanks
jgaryt

Donald Lobo

  • Administrator
  • I’m (like) Lobo ;)
  • *****
  • Posts: 15963
  • Karma: 470
    • CiviCRM site
  • CiviCRM version: 4.2+
  • CMS version: Drupal 7, Joomla 2.5+
  • MySQL version: 5.5.x
  • PHP version: 5.4.x
Re: SSL Implementation Flexibility
March 09, 2009, 08:22:56 am

civicrm make a call to the home page via https and expects it to succeed to determine if there is an SSL certificate. This also means that the domain is the same for both http and https (http://drupal.demo.civicrm.org/ and https://drupal.demo.civicrm.org/)

lobo
A new CiviCRM Q&A resource needs YOUR help to get started. Visit our StackExchange proposed site, sign up and vote on 5 questions

jgaryt

  • Guest
Re: SSL Implementation Flexibility
March 10, 2009, 03:43:47 am
Thanks for the reply;

my client's site has the same domain for http and https, but CiviCRM cannot enable the "Force Secure URL's" Option, reporting:

Quote
Please correct the following errors in the form fields below:

    * You need to set up a secure server before you can enable SSL

I have implemented SSL, but as I said, the certificate is not in CPanel.  If this does not matter to CiviCRM, what could it be that is stopping the SSL check from finding it?

I read on this thread how to call the site with this:
Code: [Select]
<?php
      $churl = "https://www.getamericaright.org";

      $ch = curl_init();
      curl_setopt($ch, CURLOPT_VERBOSE, 1);
      curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
      curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
      curl_setopt($ch, CURLOPT_URL, $churl);
       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

       // $output contains the output string
       $output = curl_exec($ch);
       echo "<h1>curl</h1>"," error number ", curl_errno($ch);
       echo "<p> ";

       // close curl resource to free up system resources
       curl_close($ch);
?>
and I received an error 52

-jgaryt
« Last Edit: March 10, 2009, 04:05:34 am by jgaryt »
Pages: [1]
  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Post-installation Setup and Configuration (Moderator: Dave Greenberg) »
  • SSL Implementation Flexibility

This forum was archived on 2017-11-26.