In order to download the certificate, you need to use the client built into openssl like so: echo -n | openssl s_client -connect $HOST:$PORTNUMBER -servername $SERVERNAME \ | openssl x509 > /tmp/$SERVERNAME.cert That will save the certificate to /tmp/$SERVERNAME.cert. The -servername is used to select the correct certificate when multiple are presented, in the case … Read more
You should be able to use OpenSSL for your purpose: echo | openssl s_client -showcerts -servername gnupg.org -connect gnupg.org:443 2>/dev/null | openssl x509 -inform pem -noout -text That command connects to the desired website and pipes the certificate in PEM format on to another openssl command that reads and parses the details. (Note that “redundant” … Read more
You can disable the ssl verification by using ‘verify_ssl’ => false. So in your code you should change: [ ‘wp_api’ => true, ‘version’ => ‘wc/v3’, ‘sslverify’ => false, ] to: [ ‘wp_api’ => true, ‘version’ => ‘wc/v3’, ‘verify_ssl’ => false, ] Then you don’t need to change any source code.
You may have mixed content error at the site. Press ctrl+shift+i or right click and Inspect element. Click on console tab and check the warnings. If there is mixed content error, you can fix by changing the mixed content url at your files and database.
If it’s all in one line, it will be commented out at # Redirect HTTP… as the # character is used for commenting in .htacces. Try: # REDIRECT HTTP TO HTTPS RewriteEngine On RewriteCond %{HTTPS} off RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Do exactly what you’re doing: view the source of the offending page, and do a text search for “http://”. Anything with this protocol is “insecure”, and needs to be swapped to https. Common offenders are stylesheets, javascript, and 3rd-party widgets. If you can’t find any problems in the source, try using firebug’s “net panel”. It … Read more
You don’t need to turn off SSL on the server. You need to install an HTTP client method that supports SSL transport. This has nothing to do with your server supporting SSL as a server. In this case, WordPress is acting like a web-browser, and trying to make an HTTPS connection to WordPress.org, so that … Read more
This is probably the wrong place to get into the details of certificate verification, and I am not sure I understand all of it so this answer going to focus on the wordpress API. The issue with certificate verification is that you need a list of root certificates of the issuer companies in order to … Read more
The media file item (really, a post type), has the URL of the media item as part of it’s data. So if you upload a media item when your site is at http:, then the URL of the item is stored as one of the meta values of the item. (It will be stored as … Read more
You can’t hook is_ssl() to override the result, and as you’ve noticed you can’t edit WordPress Core itself or your changes will get lost if you’re using built-in automatic updates. So the usual approach – see the WordPress documentation – is to set $_SERVER[‘HTTPS’] = ‘on’;, which is the property is_ssl() tests. Add the following … Read more