Recent Rackspace has updated its SSL certificates for some services services, one of which is OpenCloud that stores files. Some developers that have been using the php-opencloud module have been experiencing errors like this:
[curl] 60: SSL certificate problem: unable to get local issuer certificate [url] link
Or this one:
ssl.SSLError: [Errno 1] _ssl.c: 510: error: 14090086: SSL routines: SSL3_GET_SERVER_CERTIFICATE: certificate verify failed
What can be done to mitigate this error?
The rackspace api makes use of the Guzzle library that verifies the SSL of your site, as there is no certificate or an outdated one, it throws the described error. There are several alternatives to solve it, each solution serves one or the other.
Edit the file php.ini , add the following line:
curl.cainfo="C:\Apache24\php\ca-bundle.crt"
Restart apache and you're done
When guzzle is installed by composer, the certificate is also installed in the following location:
vendor \ guzzle \ guzzle \ src \ Guzzle \ Http \ Resources \ cacert.pem
Download the certificate cacert.pem and replace it with the guzzle
Although it is an option, it is not recommended for security vulnerabilities:
$client->setDefaultOption('verify', false);