Posted: April 3, 2015 at 5:59 pm
I’ve been running EE3 for more than a year without issue. About 10 days ago, PayPal IPNs started failing. See sample entries from paypal.ipn_results.log (these are from the same event): March 23rd payment that worked: redacted – Event Espresso support team – LOC The puzzling error line is: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed[04/03/2015 5:20 PM] Note that this is NOT a secure domain (no SSL certificate installed). Should EE3 be checking for a valid SSL certificate? If it shouldn’t, what’s making EE3 think this is a secure domain? I queried my hosting technical support who tells me there’s been no system updates in the last six weeks. I tried the minimal template but got the same issue. Thanks for your help. |
|
Hi there, could you take a look at this solution? https://eventespresso.com/topic/cant-see-force-https-on-return-url-setting/#post-70897 — |
|
Lorenzo, I did the following: 1) Downloaded cacert.pem from your provided post link and uploaded it to /www/conf/ on my server. 2) Added the following to php.ini: curl.cainfo=/www/conf/cacert.pem 3) Restarted Apache I still have the problem. Here’s the IPN log file error: Errors resulting from the execution of curl transfer: SSL certificate problem, verify that the CA cert is OK. Details: Did I do the above correctly? Alternatively, is there a code hack I can add to bypass this SSL check (worthless as this is not a secure domain)? Thanks. |
|
PS – My PayPal IPN settings: Notification URL http://www.elpasocountybar.org/transactions/ |
|
Also, this was working up to about 10 days ago in the same event. I’ve not changed any settings. Is there a reason this once worked without a cacert.pem file installed? |
|
The CA file is used to verify the host (PayPal) cert can be trusted not your own so the CA file is needed as the IPN is verified over HTTPS. The same error is being thrown:
Which usually means the CA file can not be found, or is outdate and does not include the HOST CA record. What kind of hosting are you using? |
|
Tony, thanks. I found this “fix” which which works fine for me as this is not an SSL site: add: to Paypal.php: I hope this may be useful to others. |
|
Hi William, That’s a less secure way of handling things, but does work. |
|
The support post ‘PayPal IPN curl transfer failing’ is closed to new replies.
Have a question about this support post? Create a new support post in our support forums and include a link to this existing support post so we can help you.