PayPal SSL cert update
Paul Kim
PotionStore errors: "certificate verify failed"
After some poking around, I came across this: https://ppmts.custhelp.com/cgi-bin/ppdts.cfg/php/enduser/popup_adp.php?p_faqid=800&p_created=1244653674
In short, PayPal renewed their certs and it requires an update to your
root certs. If you follow the instructions, it should lead you to
downloading this file: https://cms.paypal.com/cms_content/US/en_US/files/developer/PP_PHP_SOAP_SDK.tar.gz
After unpacking, grab lib/PayPal/cert/api_cert_chain.crt and stick it
in the certs directory of your PotionStore install.
Did a couple tests and that seems to fix it.
Did I miss some announcement about this anywhere? Is there some way to
mitigate this type of problem in the future?
paul
Paul Kim
Put the new cert file in your config/certs directory (there should be
a version of the file already there so that should be a clue that it's
the right place).
John McLaughlin
Thanks so much -- Last night I started getting emails about failed
orders (it was very late, I was tired and I figured it was a one up
problem) -- Woke up this morning to tons of errors -- Found this post,
followed the instructions and it's all good now
Again, thanks so much.
-John
Chad Sellers
Wow, thanks for catching that. I didn't see any sort of announcement
about this either.
Thanks,
Chad
Chad Sellers
Useful Fruit Software
http://www.usefulfruit.com/
Paul Kim
(thanks to Daniel Jalkut for pointing it out to me)
It did mention this a few days ago: http://developer.paypal-portal.com/t5/Live-Site-Status/SSL-Certificate-renewal-for-API-endpoints/ba-p/154667
So, it might be a good idea to subscribe to the RSS feed for this type
of thing.
Andy, I assume you'll update the cert in the repo?
paul
Andy Kim
Thanks for catching this and making my life easier this morning. I'm
surprised that they made this move without emailing any of us.
The certificate has been updated at the GitHub project.
- Andy Kim