From 9c458ae54b008c0595e3a9197008516216af4675 Mon Sep 17 00:00:00 2001
From: Imran Hussain <imranh@sucs.org>
Date: Thu, 24 Sep 2015 16:46:43 +0100
Subject: [PATCH] Disable cert checking when talking to the SU-API

Disable verifying of the cert wehn talking to the SU-API VM. We don't need it,
as long as the data is sent down a secure connection that's all we really care
about. Also this makes tings easier to admin as we don't need to worry about
renewing certs during freshers.
---
 components/susignup-admin.php | 8 ++++++++
 components/susignup.php       | 2 ++
 2 files changed, 10 insertions(+)

diff --git a/components/susignup-admin.php b/components/susignup-admin.php
index c24eb1a..ed8574d 100644
--- a/components/susignup-admin.php
+++ b/components/susignup-admin.php
@@ -38,6 +38,8 @@ if (isset($session->groups[$permission])) {
 				$apiReq = curl_init();
 				curl_setopt($apiReq, CURLOPT_URL, $url);
 				curl_setopt($apiReq, CURLOPT_RETURNTRANSFER, TRUE);
+				curl_setopt($apiReq, CURLOPT_SSL_VERIFYPEER, false);
+				curl_setopt($apiReq, CURLOPT_SSL_VERIFYHOST, false);
 
 				$apiResult = curl_exec($apiReq);
 				if ($apiResult === FALSE) {
@@ -171,6 +173,8 @@ if (isset($session->groups[$permission])) {
                                 $apiReq = curl_init();
                                 curl_setopt($apiReq, CURLOPT_URL, $url);
                                 curl_setopt($apiReq, CURLOPT_RETURNTRANSFER, TRUE);
+				curl_setopt($apiReq, CURLOPT_SSL_VERIFYPEER, false);
+				curl_setopt($apiReq, CURLOPT_SSL_VERIFYHOST, false);
 
                                 $apiResult = curl_exec($apiReq);
 				libxml_use_internal_errors(true);
@@ -207,6 +211,8 @@ if (isset($session->groups[$permission])) {
 		$apiReq = curl_init();
 		curl_setopt($apiReq, CURLOPT_URL, $url);
 		curl_setopt($apiReq, CURLOPT_RETURNTRANSFER, TRUE);
+		curl_setopt($apiReq, CURLOPT_SSL_VERIFYPEER, false);
+		curl_setopt($apiReq, CURLOPT_SSL_VERIFYHOST, false);
 
 		$apiResult = curl_exec($apiReq);
 		$sumembers = su_response_decode($apiResult);
@@ -260,6 +266,8 @@ if (isset($session->groups[$permission])) {
 		$apiReq = curl_init();
 		curl_setopt($apiReq, CURLOPT_URL, $url);
 		curl_setopt($apiReq, CURLOPT_RETURNTRANSFER, TRUE);
+		curl_setopt($apiReq, CURLOPT_SSL_VERIFYPEER, false);
+		curl_setopt($apiReq, CURLOPT_SSL_VERIFYHOST, false);
 
 		$apiResult = curl_exec($apiReq);
 		$sumembers = su_response_decode($apiResult);
diff --git a/components/susignup.php b/components/susignup.php
index 7b19e0c..b5c153f 100755
--- a/components/susignup.php
+++ b/components/susignup.php
@@ -34,6 +34,8 @@ if(!empty($_REQUEST['sid'])&&!empty($_REQUEST['transactionID'])){
 	curl_setopt($ch,CURLOPT_POST,count($fields));
 	curl_setopt($ch,CURLOPT_POSTFIELDS,$fields_string);
 	curl_setopt($ch,CURLOPT_RETURNTRANSFER,TRUE);
+	curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
+	curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
 	//execute post
 	$result = curl_exec($ch);
 
-- 
2.24.1