The error:
Dateitransfer fehlgeschlagen: Authentifizierung auf https://<site>/api.php ist fehlgeschlagen.
shows up when configured for a 1.24.1 wiki. I know that the MediaWikiApi for 1.24.1 has been changed in an unfortunate incompatible way. Since this extension is from 2011 I am wondering whether
or something else. How would I debug this situation?
with my new debugging capabilities I found out that status.errors has "SSL certificate problem:unable to get local issuer certificate".
It would be good if such errors would (may be optionally) be propagated to the push-err-authentication message
https://github.com/BITPlan/Push/commit/cf393a32423bd8ae07af50a5587f847f20cfb9b9
has a commit with a few extra lines for error handling. The resulting message is:
Authentication at .../mediawiki/api.php(http-curl-error:SSL certificate problem: unable to get local issuer certificate) failed.
This is a major improvement in handling such situations
I am close to getting things fixed but unfortunately its a little messy.
So the natural attempt to add:
didn't work - you have to set these in the php.ini file. A curl https:// test then works
Mediawiki is different.
see also https://doc.wikimedia.org/mediawiki-core/master/php/HttpFunctions_8php_source.html getCertOptions() and
so
3. putenv("SSL_CERT_PATH=BITPlanValidCerts.pem");
looked promising - but doesn't seem to work on my PHP 5.6. environment. Even changing the PHP 5.6 version check in HttpFunctions didn't make a difference.
So a bit more debugging and I'll get back here.
https://github.com/BITPlan/Push/commit/3f68dd36a65ff6ad8c68df807c2c32311073dae4
fixes the issue by adding the curl.cainfo php ini setting to the curl options
Hurray!
