[
https://issues.apache.org/jira/browse/AIRAVATA-1956?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15626025#comment-15626025
]
Marcus Christie commented on AIRAVATA-1956:
-------------------------------------------
So it looks like SSL connections changed in PHP 5.6 to now validate
certificates by default: http://php.net/manual/en/migration56.openssl.php
There is an option,
[verify_peer|http://php.net/manual/en/context.ssl.php#context.ssl.verify-peer],
that can be used to disable certificate validation on a per request basis.
However, that option isn't something that can be specified for the fsockopen
call that the Thrift client makes to open an SSL connection.
I think our options at this point are:
# Require and obtain a valid certificate for the Airavata API server
# Update the Thrift client to use a different method to open the SSL
connection, one that allows specifying verify_peer=FALSE
# Upgrade to the most recent Laravel that doesn't require PHP 5.6. That is,
upgrade to 5.2 instead of 5.4.
I'm assuming that the first two options would require a fair bit of work. For
now I'm going to just pursue option #3, upgrading to Laravel 5.2. That still
gets us the benefit of being on a more modern Laravel.
> Upgrade PGA to use Laravel 5.2
> -------------------------------
>
> Key: AIRAVATA-1956
> URL: https://issues.apache.org/jira/browse/AIRAVATA-1956
> Project: Airavata
> Issue Type: Improvement
> Components: PGA PHP Web Gateway
> Reporter: Suresh Marru
> Assignee: Marcus Christie
>
> PGA currently is based on Laravel 4.2.*. and is now getting close to 2 years
> old. Laravel is in active development and it will better to migrate to latest
> version 5.2
> The release notes are self-described with the changes -
> https://laravel.com/docs/master/releases
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
