How to force SSL mode when connecting to MySQL through PHP
How to force SSL mode when connecting to MySQL through PHP
mabali
Posts: 5Questions: 1Answers: 0
My MySQL server is hosted in Azure and requires SSL. As the database also has an IP filter on it, I need to access the database from the webserver (so I need server side processing).
My connection code looks like this:
$sql_details = array(
'user' => 'MyUserName',
'pass' => 'MyPassword',
'db' => 'MyDatabase',
'host' => 'MyAzureDatabase.mysql.database.azure.com',
"port" => "3306",
"dsn" => "charset=utf8",
"sslmode"=> "require",
"pdoAttr" => array(
PDO::MYSQL_ATTR_SSL_KEY => __DIR__ . './SSL/BaltimoreCyberTrustRoot.crt.pem',
PDO::MYSQL_ATTR_SSL_CERT=> __DIR__ . './SSL/BaltimoreCyberTrustRoot.crt.pem',
PDO::MYSQL_ATTR_SSL_CA => __DIR__ . './SSL/BaltimoreCyberTrustRoot.crt.pem'
)
But my browser just returns:
{"error":"An error occurred while connecting to the database. The error reported by the server was: SQLSTATE[HY000] [9002] SSL connection is required. Please specify SSL options and retry."}
What should I do to build the SSL connection?
Answers
This thread should help, it's asking the same thing.
Cheers,
Colin
I do not have a file php/Database/Driver/Mysql/Query.php; my PHP runs on a Windows server, all I have is a php_mysqli.dll. Not much editing I can do there.
Besides, the thread you mention is four years old and the answer states the issue will be resolved in the next release (which has probably been released by now ;-))
Is a file from our PHP libraries.
php_mysqli.dllis part of the PHP distribution. We actually make use of PDO rather than mysqli.Can you tell me how you would normally connect to your database (obviously masking out the user / pass and any other confidential information).
Thanks,
Allan
Hi Allan,
My normal PHP connection (using the builting MySQL dll) looks like this:
For using DataTables I have only downloaded the ssp.class.php from this site and use that before I make the connection:
Should I download more files (and include those in my code)?
Thanks!
Martijn
Oh I see - just to confirm, you aren't using the Editor libraries here, but rather the SSP class?
This is where the code for the SSP class would need to be modified to add SSL support. Specifically the PDO options array on line 407 will need the three SSL attributes you added above.
Note - don't try to use your mysqli_ initialisation here, as the SSP class uses PDO, not mysqli. If you want to use mysqli you'd need to modify all database interaction in the class (doable, but I'd suggest just getting the PDO setup working - it will be a lot less work).
Allan
Hi Allan,
A snippet from the ssp.class file after I modified it:
I have removed the PDO statements from my own code so the config part after which I build the connection now looks like this:
However, I get a very generic SQLSTATE[HY000] [2002] error now.
The
sql_connectfunction there doesn't make use of the port. Perhaps:However, 3306 is the default port for MySQL, so I don't think that is the issue here.
Try removing the
@from thenew PDO(...)statement. The@will suppress error messages, so hopefully any error messages will point us in the right direction...!Regards,
Allan
I have it fixed!
I altered the sql_connect function to look like this:
and now I have data.
Thanks for helping me out in this!