Removed disable SSL peer verification

J7mbo · J7mbo · commit a31eca4ae574 · 2013-07-09T10:27:27.000+01:00
[Issue #14](#14) suggests man in the middle attack possible, removed disabling SSL peer verification in cURL options (it wasn't needed anyway).
diff --git a/TwitterAPIExchange.php b/TwitterAPIExchange.php
@@ -11,7 +11,7 @@
  * @license  http://opensource.org/licenses/gpl-license.php GNU Public License
  * @link     http://github.com/j7mbo/twitter-api-php
  */
-class TwitterAPIExchange 
+class TwitterAPIExchange
 {
     private $oauth_access_token;
     private $oauth_access_token_secret;
@@ -193,8 +193,7 @@ public function performRequest($return = true)
             CURLOPT_HTTPHEADER => $header,
             CURLOPT_HEADER => false,
             CURLOPT_URL => $this->url,
-            CURLOPT_RETURNTRANSFER => true,
-            CURLOPT_SSL_VERIFYPEER => false
+            CURLOPT_RETURNTRANSFER => true
         );
 
         if (!is_null($postfields))
