CA证书,用来在挪用HTTPS资本的时刻,考证对方网站是不是是CA公布的证书,而不是本身随意生成的
curl敕令
1.须要下载CA证书 文件地点是 http://curl.haxx.se/ca/cacert.pem
2.把下载的文件放到这个位置 /etc/pki/tls/certs/ca-bundle.crt
3.curl就能够接见https的资本了
php代码
function post($url, $data=array(), $refer = "", $timeout = 30, $header = array()){
$curlObj = curl_init();
$ssl = stripos($url,'https://') === 0 ? true : false;
$options = array(
CURLOPT_URL => $url,
CURLOPT_RETURNTRANSFER => 1,
CURLOPT_POST => 1,
CURLOPT_POSTFIELDS => $data,
CURLOPT_FOLLOWLOCATION => 1,
CURLOPT_AUTOREFERER => 1,
CURLOPT_USERAGENT => 'Webface SelfService Form',
CURLOPT_TIMEOUT => $timeout,
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_0,
CURLOPT_IPRESOLVE => CURL_IPRESOLVE_V4,
CURLOPT_REFERER => $refer
);
if (!empty($header)) {
$options[CURLOPT_HTTPHEADER] = $header;
}
if ($refer) {
$options[CURLOPT_REFERER] = $refer;
}
if ($ssl) {
//注重看这里就是设置CA证书
//只信托CA公布的证书
$options[CURLOPT_SSL_VERIFYPEER]=true;
//当地CA证书,用来考证网站的证书是不是是CA公布的
$options[CURLOPT_CAINFO]=getcwd() . '/cacert.pem';
//考证域名是不是婚配
$options[CURLOPT_SSL_VERIFYHOST] = 2;
/*
//疏忽证书考证,信托任何证书
$options[CURLOPT_SSL_VERIFYHOST] = false;
$options[CURLOPT_SSL_VERIFYPEER] = false;
*/
}
curl_setopt_array($curlObj, $options);
$returnData = curl_exec($curlObj);
if (curl_errno($curlObj)) {
$returnData = curl_error($curlObj);
}
curl_close($curlObj);
return $returnData;
}
$res=post("https://www.baidu.com");
var_dump($res);
以上就是php中curl接见https与CA证书(代码示例)的细致内容,更多请关注ki4网别的相干文章!
