WARNING: Using this method will open you to Man-In-Middle_Attacks. As suggested by Filip Procházka in the comments below, you should get an up to date CA root certificate bundle and use CURLOPT_CAINFO. This article suggests a secure method for dealing with self-signed certificates.
If you’re getting stuck trying to use cURL over https in PHP, try setting both the verify peer and verify host options to false:
$url = 'https://myverysecret.domain/secrets/';
$curl = curl_init($url);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
curl_exec($curl);
Literary worse than Hitler. Why would you turn off the certificate verification?
Just set
CURLOPT_CAINFOwith a certificate bundle* literally
Thank you, despite your skewed value system, you raise a very valid point.
I have updated the article with a warning.
It looks like I haven’t read your article properly, I saw
CURLOPT_SSL_VERIFY*, falseand my sight turned red. Thanks for the update!