Beefy Boxes and Bandwidth Generously Provided by pair Networks
more useful options
 
PerlMonks  

Re^2: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)

by ssara (Acolyte)
on Dec 31, 2017 at 15:48 UTC ( [id://1206488]=note: print w/replies, xml ) Need Help??


in reply to Re: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)
in thread LWP::Simple::get($url) does not work for particular urls

Thanks a lot.I have one query regarding valid certificate.If there was issue of SSL certificate then why i am directly able to see the data in web browser when i browse the link https://www.cryptopia.co.nz/api/GetCurrencies in the web browser?

  • Comment on Re^2: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)

Replies are listed 'Best First'.
Re^3: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)
by 1nickt (Canon) on Dec 31, 2017 at 16:19 UTC

    If there was issue of SSL certificate then why i am directly able to see the data in web browser when i browse the link https://www.cryptopia.co.nz/api/GetCurrencies in the web browser?

    Hi, this is because your desktop browser uses the Certificate Authority root certificates that are distributed with your operating system, whereas LWP::UserAgent does not know about them. You can force LWP to use the same root certificates by setting the value of the environment variable HTTPS_CA_DIR to the location on your system.

    On my system the certificate directory is /etc/ssl/certs.

    Without: 

    use strict; use warnings;
use LWP::UserAgent;
use JSON;
use Data::Dumper;

my $url = "https://www.cryptopia.co.nz/api/GetCurrencies";
my $res = LWP::UserAgent->new->get( $url );
die $res->content if not $res->is_success;
print Dumper decode_json $res->decoded_content;
__END__

    [download]
    Output: 
    $ perl 1206484.pl | head -20
Can't connect to www.cryptopia.co.nz:443 (certificate verify failed)

SSL connect attempt failed error:14090086:SSL routines:ssl3_get_server
+_certificate:certificate verify failed at /home/nick/perl5/perlbrew/p
+erls/perl-5.26.1/lib/site_perl/5.26.1/LWP/Protocol/http.pm line 46.

    [download]
    Now with the UA pointed at the CA cert store: 
    use strict; use warnings;
use LWP::UserAgent;
use JSON;
use Data::Dumper;

BEGIN {
    $ENV{'HTTPS_CA_DIR'} = '/etc/ssl/certs';
}

my $url = "https://www.cryptopia.co.nz/api/GetCurrencies";
my $res = LWP::UserAgent->new->get( $url );
die $res->content if not $res->is_success;
print Dumper decode_json $res->decoded_content;
__END__

    [download]
    Output: 
    $ perl 1206484.pl | head -20
$VAR1 = {
          'Message' => undef,
          'Success' => bless( do{\(my $o = 1)}, 'JSON::PP::Boolean' ),
          'Error' => undef,
          'Data' => [
                      {
                        'MaxWithdraw' => '90000000',
                        'IsTipEnabled' => bless( do{\(my $o = 0)}, 'JS
+ON::PP::Boolean' ),
                        'DepositConfirmations' => 20,
                        'Status' => 'OK',
                        'MinWithdraw' => '20000',
                        'Name' => '1337',
                        'Algorithm' => 'POS',
                        'Symbol' => '1337',
                        'MinBaseTrade' => '2e-05',
                        'StatusMessage' => undef,
                        'MinTip' => '166.66666666',
                        'ListingStatus' => 'Active',
                        'Id' => 331,
                        'WithdrawFee' => '0.01'

    [download]

    Hope this helps!


    The way forward always starts with a minimal test.
[reply]
[d/l]
[select]
      > ... this is because your desktop browser uses the Certificate Authority root certificates that are distributed with your operating system, whereas LWP::UserAgent does not know about them.

      The problem is not that the root CA is not trusted by LWP but that the intermediate CA is missing (broken server setup) and thus the trust chain cannot be created. Desktop browsers often successfully work around such broken setups by using cached certificates or downloading missing CA from the web but other clients (Python, Perl, Java, mobile apps...) don't do this workarounds and thus fail with broken sites.

[reply]

        Thanks for the more accurate information, I defer to an expert, which I am not!


        The way forward always starts with a minimal test.
[reply]

      Thanks a lot for the information.

[reply]
Re^3: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)
by choroba (Cardinal) on Dec 31, 2017 at 16:13 UTC
    Maybe your browser uses different certificates than your program?

    ($q=q:Sq=~/;[c](.)(.)/;chr(-||-|5+lengthSq)`"S|oS2"`map{chr |+ord
}map{substrSq`S_+|`|}3E|-|`7**2-3:)=~y+S|`+$1,++print+eval$q,q,a,

    [download]
[reply]
[d/l]

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://1206488]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others studying the Monastery: (4)
As of 2024-04-20 00:51 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found