Log in | Register
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Facebook API Error: Problem with the SSL CA cert (path? access rights?

Topic-icon Facebook API Error: Problem with the SSL CA cert (path? access rights?

Support Specialist
13 years 10 months ago #25324 by alzander
Maged,
Thanks for the input. That helps a lot to narrow things down. Doesn't sound like it's IPv6.

I've been looking more at your SSL configuration. You're using the SSL library called "NSS" for cURL vs what we use (and I think is more common), OpenSSL. It seems like the connection to Facebook simply can't be negotiated at all using the SSL protocol. I found a similar issue in a Stack Exchange post below:
stackoverflow.com/questions/7179216/php-...t-path-access-rights

I'm not sure how much control you have over your server, but if it's possible to try and rename that file (which I believe will clear the SSL cache), that may help. You also mention that your site from another server. It's possible that the old NSS database, either from your old site, or whatever is on the server now, is simply corrupted or holding incorrect (stale) data for Facebook.

So, with that, I don't think I've really given you an answer, but hopefully something you, or your server host, can look into. I really don't know if this is the issue, but it seems like some sort of failure to communicate over SSL. Our Disable SSL Validation setting still requires SSL communication, we just disable some checks to verify how secure the connection really is. You're site doesn't seem to be getting that far.

Keep us posted on any of the above or anything else you might come up with!
Alex
The topic has been locked.
Active Subscriptions:

None
13 years 10 months ago #25326 by magalf
I doubt there is anything corrupt, I just copied the site to a different subdomain, it's the same server so I think that leaves out the corruption part?
I submitted a support ticket to my host server "cloudaccess.net" and I am waiting for their reply regarding renaming that file.
Maged
The topic has been locked.
Support Specialist
13 years 10 months ago #25337 by alzander
Yup, didn't realize it was the same server. Sorry about that. I'm really confused as to what the difference could be here. There's nothing different in our code, your server, or anything else obvious. The error does seem to indicate that a secure SSL connection to Facebook can't be established, but I'm honestly clueless as to why that would be.

Definitely let me know what cloudaccess says. They're an excellent Joomla host. If they can't rename that file, you may want to ask if there's any reason they can think of that your subdomain wouldn't be able to make outgoing SSL calls. You don't need an SSL certificate on your site for outgoing SSL calls, so make sure you say that so they don't come back with the immediate "Get an SSL cert" ;)

Alex
The topic has been locked.
Active Subscriptions:

None
13 years 10 months ago #25342 by magalf
Hi Alex,
you were right, cloudaccess had the domain and subdomains on different servers, they resolved the issue, this was their reply :
We do use Open SSL and it is enabled on your server.
openssl
OpenSSL support enabled
OpenSSL Library Version OpenSSL 1.0.0-fips 29 Mar 2010
OpenSSL Header Version OpenSSL 1.0.0-fips 29 Mar 2010
On this subdomain:
cURL is using SSL Version NSS/3.13.1.0
This is different than the server your other site (main domain) is located where the application is working. That server for cURL is set in this fashion:
cURL is using SSL Version OpenSSL/0.9.8b
Regarding the above differences I will discuss this with our server administrators to determine if we can make this consistent. Thank you for your patience while we discuss this.
Yes we do have IPv6 on our servers.
Thank you,

Staff 08/03/2012 11:59
Hello Maged
The cURL discrepancy has been fixed. Please try to configure your application at this time to see if you are still experiencing a problem.
Thank you,
Staff 08/03/2012 12:08

Maged Elalfy,
I have corrected this issue, I have verified that curl SSL is working correctly. Please check and verify that it your JFBconnect works.
And I checked and it's working fine now,
Thank you for your help Alex
The topic has been locked.
Support Specialist
13 years 10 months ago #25344 by alzander
Oh thank goodness! I really wasn't sure the cause (we're not server experts), so very glad to hear we got you on the right track! Glad it works now, and of course, if you need anything else, just let us know!

Finally, please consider leaving a rating and review on the Joomla Extension Directory for JFBConnect, or our support. It's certainly not required, but very appreciated!
extensions.joomla.org/extensions/social-...ook-integration/7215

Thanks, and good luck,
Alex
The topic has been locked.
  1. Forum
  3. Discontinued Products
  5. JFBConnect Joomla 2.5 Support (CLOSED)
  7. Facebook API Error: Problem with the SSL CA cert (path? access rights?
From the Blog
Facebook | Twitter | LinkedIn | Blog RSS