diff options
| author | Marco Ceppi <marco@ceppi.net> | 2014-01-22 08:30:38 -0500 |
|---|---|---|
| committer | Marco Ceppi <marco@ceppi.net> | 2014-01-22 08:30:38 -0500 |
| commit | 148926d7dbe532aed8eceaad85a2a30da9e86c63 (patch) | |
| tree | b398ec5f74352250e22d511c19b409b6b5c85603 /Auth | |
| parent | 62f17268670c0859e7946a31303a06a0aa23ee67 (diff) | |
| download | php-openid-148926d7dbe532aed8eceaad85a2a30da9e86c63.zip php-openid-148926d7dbe532aed8eceaad85a2a30da9e86c63.tar.gz php-openid-148926d7dbe532aed8eceaad85a2a30da9e86c63.tar.bz2 | |
Add warning when you disable SSL, don't be silly please
Diffstat (limited to 'Auth')
| -rw-r--r-- | Auth/Yadis/ParanoidHTTPFetcher.php | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/Auth/Yadis/ParanoidHTTPFetcher.php b/Auth/Yadis/ParanoidHTTPFetcher.php index 8f55667..627ea9a 100644 --- a/Auth/Yadis/ParanoidHTTPFetcher.php +++ b/Auth/Yadis/ParanoidHTTPFetcher.php @@ -90,11 +90,16 @@ class Auth_Yadis_ParanoidHTTPFetcher extends Auth_Yadis_HTTPFetcher { $this->reset(); $c = curl_init(); - if (defined('Auth_OpenID_DISABLE_SSL_VERIFYPEER') + if (defined('Auth_OpenID_DISABLE_SSL_VERIFYPEER') && Auth_OpenID_DISABLE_SSL_VERIFYPEER === true) { + trigger_error( + 'You have disabled SSL verifcation, this is a TERRIBLE ' . + 'idea in almost all cases. Set Auth_OpenID_DISABLE_SSL_' . + 'VERIFYPEER to false if you want to be safe again', + E_USER_WARNING); curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false); } - + if ($c === false) { Auth_OpenID::log( "curl_init returned false; could not " . |