Skip to Content Skip to Menu

Invalid or no certificate authority found, using bundled information

10 years 2 days ago #252369 by jimmyandrews
Invalid or no certificate authority found, using bundled information was created by jimmyandrews
Using Connect 6, the FB plugin and my site is an HTTPS always-on site, I had experienced the following issue:

In IE when trying to login with FB (after being connected) it would return a blank page. In FF, the error that was returned was "Invalid or no certificate authority found, using bundled information."

This is what I did to get it going again. Not sure if it is the proper thing to do, just listing the changes I made. I no longer have the login issues.

I stumbled across this site, stackoverflow.com/questions/7374223/invalid-or-no-certificate-authority-found-using-bundled-information

It states that if you add
Code:
CURLOPT_SSL_VERIFYPEER => false,
to base_facebook.php, under line 140
Code:
public static $CURL_OPTS = array(
it will resolve the issue for HTTPS sites.

base_facebook.php is located in
{BASE}/components/com_comprofiler/plugin/user/plug_cbconnect/hybridauth/thirdparty/Facebook
Better at infrastructure and hardware :-)
Trying to change the world with people's free time!
Be a part of the movement, find out more at what2do.live/

Please Log in or Create an account to join the conversation.

  • krileon
  • krileon
  • ONLINE
  • Posts: 48482
  • Thanks: 8283
  • Karma: 1443
10 years 1 day ago #252416 by krileon
Replied by krileon on topic Invalid or no certificate authority found, using bundled information
The Facebook cert is included with the API. So it shouldn't be doing that. The bundled Facebook API is Facebooks library so it would seam to be a bug in Facebooks API library. Likely won't be fixed until HybridAuth has been updated to v2 API library.

Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.

Please Log in or Create an account to join the conversation.

10 years 1 day ago - 10 years 1 day ago #252426 by jimmyandrews
Replied by jimmyandrews on topic Invalid or no certificate authority found, using bundled information
That has been the sentiment around the forums, that this is a FB API issue. I just wanted to make sure that my change wasn't creating an unintentional consequence. With more and more sites moving to an always-on HTTPS protocol I assume that other users may run into this issue too.

EDIT: There are other sites that talk about this issue too, but most of the responses have been to turn off SSL, which is horrible advice. Sure, it would fix your issue, but so does adding a single line of code.
Better at infrastructure and hardware :-)
Trying to change the world with people's free time!
Be a part of the movement, find out more at what2do.live/
Last edit: 10 years 1 day ago by jimmyandrews.

Please Log in or Create an account to join the conversation.

  • krileon
  • krileon
  • ONLINE
  • Posts: 48482
  • Thanks: 8283
  • Karma: 1443
10 years 1 day ago #252431 by krileon
Replied by krileon on topic Invalid or no certificate authority found, using bundled information
I believe this isn't an issue for their v2 API, but v2 is PHP 5.4+ only so it creates a list of problems on its own. HybridAuth will hopefully see a new release in the coming months before v1 is discontinued in April of next year. Until then your fix seams completely acceptable and will go ahead and implement the fix into CB Connect so you won't have to keep doing it on each release (fix should be in todays nightly).

Kyle (Krileon)
Community Builder Team Member
Before posting on forums: Read FAQ thoroughly + Read our Documentation + Search the forums
CB links: Documentation - Localization - CB Quickstart - CB Paid Subscriptions - Add-Ons - Forge
--
If you are a Professional, Developer, or CB Paid Subscriptions subscriber and have a support issue please always post in your respective support forums for best results!
--
If I've missed your support post with a delay of 3 days or greater and are a Professional, Developer, or CBSubs subscriber please send me a private message with your thread and will reply when possible!
--
Please note I am available Monday - Friday from 8:00 AM CST to 4:00 PM CST. I am away on weekends (Saturday and Sunday) and if I've missed your post on or before a weekend after business hours please wait for the next following business day (Monday) and will get to your issue as soon as possible, thank you.
--
My role here is to provide guidance and assistance. I cannot provide custom code for each custom requirement. Please do not inquire me about custom development.
The following user(s) said Thank You: jimmyandrews

Please Log in or Create an account to join the conversation.

Moderators: beatnantkrileon
Powered by Kunena Forum