How to disable SSL check with Laravel http post

Question

I'm trying to make a post request in laravel to a payment endpoint with the following code

<?php

namespace App\Http\Controllers;

use Illuminate\Http\Request;
use Illuminate\Support\Facades\Http;
class AddCardController extends Controller
{
    //
    public function index()
    {
        return view("addcard");
    }
    public function requestPayment(Request $request)
    {
        $paystack_key = \config("app.paystack_key");
        $url = "https://api.paystack.co/transaction/initialize";
        $email = $request->user("distributors")->email;
        $fields = [
            "email"=>$email,
            "amount"=>50*100,
            "channels"=>["card"],
            "callback_url"=>"d"
        ];
        $query = http_build_query($fields);
        $response = Http::post($url,$fields)::withHeaders(["Authorization: Bearer $paystack_key",
        "Cache-Control: no-cache",])::withOptions(["verify"=>false]);
        return $response;
    }
}

Im geting the following error:

cURL error 60: SSL certificate problem: unable to get local issuer certificate (see https://curl.haxx.se/libcurl/c/libcurl-errors.html) for https://api.paystack.co/transaction/initialize

Im running my Laravel app locally on Apache so I acknowledge the fact that there is no SSL running, but how can I bypass this error. In production ssl will be provided??

Mohammad Hosseini · Accepted Answer · 2021-06-21T18:43:41.330

46

You should use withoutVerifying() with your Post request.

  $response = Http::withoutVerifying()
        ->withHeaders(['Authorization' => 'Bearer ' . $paystack_key, 'Cache-Control' => 'no-cache'])
        ->withOptions(["verify"=>false])
        ->post($url,$fields);

edited Jun 21 '21 at 18:43

answered Jun 21 '21 at 18:25

Mohammad Hosseini

1,649
1
16
31

Thanks this worked, however im getting an exception that says withHeaders() is not a function which is crucial to the app, how can i call all the static classes? – Noble Eugene Jun 21 '21 at 18:32
@NobleEugene I corrected the answer, please check it. – Mohammad Hosseini Jun 21 '21 at 18:48
Ive gotten Laravel to acknowledge it as a function, however im recieving a response from the endpoint saying i dont have any authorization header set – Noble Eugene Jun 21 '21 at 18:57
Ok ive gotten in to work now. Thanks so much – Noble Eugene Jun 21 '21 at 19:05
@NobleEugene If it works please select as answer. tnx – Mohammad Hosseini Jun 21 '21 at 19:09
1

just selected as answer. You absolutely rock man – Noble Eugene Jun 21 '21 at 19:33
@MohammadHosseini is it safe to use `withoutVerifying()` in production? I had to use it on my local development server but wonder if I would need to do this in production and if it is safe. – Mena Sep 17 '22 at 20:34
3

Why do you have `withoutVerifying()` along with `withOptions(['verify' => false])` as they're the same thing? You should use either or! – qwaz Oct 31 '22 at 13:11

How to disable SSL check with Laravel http post

1 Answers1