raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-02-28 01:53:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Bring in Paypal certificates hack via new initializer

Browse Source
This commit is contained in:
Matt-Yorkley
2021-01-06 15:35:20 +00:00
parent c07a4fcb5e
commit f9f830e0e1
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
config/initializers/paypal.rb Normal file
View File

@@ -0,0 +1,15 @@
# Fixes the issue about some PayPal requests failing with
# OpenSSL::SSL::SSLError (SSL_connect returned=1 errno=0 state=error: certificate verify failed)
module CAFileHack
# This overrides paypal-sdk-core default so we don't pass the cert the gem provides to the
# NET::HTTP instance. This way we rely on the default behavior of validating the server's cert
# against the CA certs of the OS (we assume), which tend to be up to date.
#
# See https://github.com/openfoodfoundation/openfoodnetwork/issues/5855 for details.
def default_ca_file
nil
end
end
require 'paypal-sdk-merchant'
PayPal::SDK::Core::Util::HTTPHelper.prepend(CAFileHack)