SSL_connect SYSCALL返回= 5 errno = 0 state = SSLv2 / v3读取服务器问候A - 法拉第::错误:: ConnectionFailed

时间:2014-04-22 15:22:30

标签: ruby-on-rails ruby omniauth

我在这里看到了许多答案,但没有一个有效。

我使用omniauth-oauth2 gem与第三方客户集成。

我正在使用here所述的设置阶段,但我总是收到此错误:

Authentication failure! failed_to_connect: Faraday::Error::ConnectionFailed, SSL_connect SYSCALL returned=5 errno=0 state=SSLv2/v3 read server hello A

Faraday::Error::ConnectionFailed (SSL_connect SYSCALL returned=5 errno=0 state=SSLv2/v3     read server hello A):
.rvm/rubies/ruby-2.0.0-p247/lib/ruby/2.0.0/net/http.rb:918:in `connect'
.rvm/rubies/ruby-2.0.0-p247/lib/ruby/2.0.0/net/http.rb:918:in `block in connect'

config/initializers的初始值设定项为:

Rails.application.config.middleware.use OmniAuth::Builder do
  client_id = 'my_client_id'
  client_secret = 'secret'

  ca_file = Rails.root.join('config', 'cacert.pem').to_s

  ssl_options = {}
  ssl_options[:ca_path] = '/usr/local/etc/openssl'
  ssl_options[:ca_file] = ca_file

  provider :my_partner_provider, client_id, client_secret,  :client_options => {:ssl => ssl_options},
    setup: ->(env){
    req = Rack::Request.new(env)
    site = "https://#{req.params.fetch('shop')}"
    env['omniauth.strategy'].options[:client_options][:site]  = site
  }
end

我尝试过使用和不使用ssl选项。

补充一下,这是我的筹码:https://gist.github.com/cleytonmessias/11274209

我已在终端openssl s_client -showcerts -connect partnerurl.com:443 <<<OK中输入并返回此信息:https://gist.github.com/cleytonmessias/11288646

有谁知道这个问题的解决方案?

1 个答案:

答案 0 :(得分:4)

我终于找到了最终答案:

感谢@mislav提供改变ssl version的提示。

我不得不改变,因为我的伙伴使用asp.net构建了它的应用程序并使用了这个版本的ssl。有关详情,请访问http://mislav.uniqpath.com/2013/07/ruby-openssl/

所以最终的代码如下:

Rails.application.config.middleware.use OmniAuth::Builder do
  client_id = 'my_client_id'
  client_secret = 'secret'

  ssl_options = {}
  ssl_options[:version] = :TLSv1

  ssl = {}
  ssl[:ssl] =  ssl_options

  provider :partner, client_id, client_secret,
    client_options: { connection_opts: ssl} ,
    setup: ->(env){
    req = Rack::Request.new(env)
    token_url = "https://#{req.params.fetch('shop')}"
    env['omniauth.strategy'].options[:client_options][:token_url] = token_url
  }
end