curl command with certificates to php SoapClient (BankID)

Question

Based on https://www.bankid.com/assets/bankid/rp/bankid-relying-party-guidelines-v2.13.pdf

I have working curl command:

curl https://appapi.test.bankid.com/rp/v4?wsdl -E --cacert /path/to/BankID_SSL_Root_Certification_Authority_TEST.pem --cert /path/to/ServerCertificate.cer --key /path/to/PrivateKey.key

ServerCertificate.cer and PrivateKey.key were extracted from PFX certificate (https://www.bankid.com/assets/bankid/rp/FPTestcert2_20150818_102329.pfx) with openssl command.

But I can't make it work with PHP SoapClient:

SOAP-ERROR: Parsing WSDL: Couldn't load from 'https://appapi.test.bankid.com/rp/v4?wsdl' : failed to load external entity "https://appapi.test.bankid.com/rp/v4?wsdl"

I will appreciate any help here.

Dmitry · Accepted Answer

Thank you guys for your answers.

The solution:

openssl pkcs12 -in FPTestcert2_20150818_102329.pfx -nocerts -out key.pem -nodes
openssl pkcs12 -in FPTestcert2_20150818_102329.pfx -nokeys -out cert.pem
openssl rsa -in key.pem -out server.key
Copy
-----BEGIN RSA PRIVATE KEY----- ... -----END RSA PRIVATE KEY-----
section from server.key and
-----BEGIN CERTIFICATE----- ... -----END CERTIFICATE-----
section from cert.pem and put them into new certname.pem file.

Then:

try {
    $this->client = new SoapClient( $this->wsdl, array( "local_cert" => "/path_to_cert/certname.pem" ) );
} catch (Exception $e) {
    return json_encode( array( "result" => false, "reason" => $e->getMessage() ) );
}

curl command with certificates to php SoapClient (BankID)

Answers (2)

Related Questions