SOAP and class1 cert

Hammy has asked for the wisdom of the Perl Monks concerning the following question:

Hello, I have code that calls a SOAP service. The service requires that I pass it a certificate (The public piece of the certificate is loaded into the owner of the services web server). Previously I was using the SSL cert on the box and everything worked well. I went to Verisign to get a Class 1 cert. When using that cert, I get the following error:

SOAP::Transport::HTTP::Client::send_receive: 500 (Internal Server Erro
+r) configure certs failed: failed to load /usr/local/certs/staging.ce
+r:
[download]

This error happens during the submission of the service so it is not ever getting to the service.

Here is the code that I am using to call the service:

$ENV{HTTPS_CERT_FILE}= '/usr/local/certs/staging.cer';
$ENV{HTTPS_KEY_FILE}  = '/usr/local/certs/staging.pfx';
use XML::Simple;
use SOAP::Lite +trace; 

my $data = SOAP::Data->name('data' => "$xml")->type('string')->uri('')
+;

my $s = SOAP::Lite
-> uri ('http://my.site.com/SoapService')
-> proxy ('https://stagingdi.site.com/SoapService/SoapService.asmx')
-> on_action(sub{join '/', @_})
-> on_fault(sub{});

$result = $s->PerformUpdate($data)->result;
[download]

Does anyone have a clue where I can go to find out what I might be doing incorrectly? Thanks in advance.

Comment on SOAP and class1 cert Select or Download Code

Replies are listed 'Best First'.
Re: SOAP and class1 cert by idsfa (Vicar) on Aug 24, 2005 at 15:58 UTC
The code doesn't support https. Excerpt from the `send_receive` method indicated in your error message: `sub send_receive { . . . my $http_endpoint = qq[http://$host:$port$endpoint]; my $ua = LWP::UserAgent->new(); my $post = HTTP::Request->new('POST', $http_endpoint, ...` [download] Note the hardcoded `http`. Did you actually test to confirm that you were passing SSL connections? The intelligent reader will judge for himself. Without examining the facts fully and fairly, there is no way of knowing whether vox populi is really vox dei, or merely vox asinorum. -- Cyrus H. Gordon	[reply] [d/l] [select]
Re^2: SOAP and class1 cert by Hammy (Scribe) on Aug 24, 2005 at 17:56 UTC
I have been using this code for about 1 year now and there have been no problems. It works like a charm when I use the SSL cert on the box, but not when I use the class one cert I just aquired. I found one thing I am doing wrong was trying to use the pfx file. I have converted it to a pem, but I now get an invalid arguement error. I am not sure where to go next.	[reply]
Re^3: SOAP and class1 cert by cbrandtbuffalo (Deacon) on Aug 24, 2005 at 20:46 UTC
It's been a while since I had to troubleshoot a problem like this, but in the past, I think I fired up a browser on the soap client, imported the cert, and tried to access the remote soap server that way. As I remember, this helped me track down cert issues independent of the soap layers. Don't know if it will help in your case. Good luck.	[reply]
Re^4: SOAP and class1 cert by Hammy (Scribe) on Aug 24, 2005 at 20:51 UTC
Re^5: SOAP and class1 cert by cbrandtbuffalo (Deacon) on Aug 25, 2005 at 19:51 UTC
Re^4: SOAP and class1 cert by Hammy (Scribe) on Aug 25, 2005 at 15:59 UTC