Hello,

Seems this it nothing has to do with Fitbit API.

P.S.

In general error you're seeng is most likely file permissions related.

Make sure that when you run

ls -l /usr/local/cpanel/3rdparty/quickinstall/scripts/checkupdates.pl

it has proper permissions set to this file.

I am getting following message after pasting the fitbit consumer key into the mentioned tool for https check :

What is interpretation of this message (what does "this time period mean"?) ?

When will Fitbit run the next check round for http/https ? I want to see latest status of my app

Non-HTTPS requests to the Fitbit API between 2014-10-17 15:00:00 and 2014-10-17 15:30:00 UTC:

• Only HTTPS requests found during this time period.

PM'ed you the keys

I want to know the recent status of my API (whether its making http or https calls).

Can anyone help me with this ?

I can PM the keys.

Thanks in advance

One thing you can do is try to compile Fitbitj4 from github:
https://github.com/Fitbit/fitbit4j/blob/master/fitbit4j/

it already should have updated version with https everywhere.

If you prefer to stay with Fitbit4j version that you currently using you have to update FitbitApiClientAgent.getApiBaseUrl() method and recompile ther class. 

After recompiling and redeploying your project it should start working cirrectly.

Hi,

I am using https://github.com/heyitspavel/fitbitphp library and using https.

Everything works great except in addSubsction method (https://github.com/heyitspavel/fitbitphp/blob/master/fitbitphp.php#L2168) I am receiving an error where it says that I need to use https.

But I am already using https and authentication, getSteps methods are already working.

Can you please check and help me?

Thanks,

Hi there,

I've changed the mentioned parameters i.e.

public function setEndpointBase($apiHost, $authHost, $https = true, $httpsApi = true)

and

private function initUrls($https = true, $httpsApi = true)

as well as private $authHost = 'https://www.fitbit.com'; and private $apiHost = 'https://api.fitbit.com';

When I run the API page then each time I got this error message i.e.

Fatal error: Uncaught exception 'OAuthException' with message 'making the request failed (Couldn't resolve host name)' in C:\wamp\www\healthstatus\wp-content\themes\healthstatus\fitbitphp.php on line 187( ! ) OAuthException: making the request failed (Couldn't resolve host name) in C:\wamp\www\healthstatus\wp-content\themes\healthstatus\fitbitphp.php on line 187

See this screenshot http://prntscr.com/538dju

Some times the error says

Fatal error: Uncaught exception 'OAuthException' with message 'making the request failed (Peer certificate cannot be authenticated with given CA certificates)' in C:\wamp\www\healthstatus\wp-content\themes\healthstatus\fitbitphp.php on line 187
 
( ! ) OAuthException: making the request failed (Peer certificate cannot be authenticated with given CA certificates) in C:\wamp\www\healthstatus\wp-content\themes\healthstatus\fitbitphp.php on line 187

http://prntscr.com/538ett

Can you please look into this?

It stops working after 3 nov 2014

Thanks

John

---

@todwith1d wrote:

We have updated the .Net code to use https on all URLs from your .net FitbitAPI_dotNET_Client.  

 

The https test site returned this (which was correct at the time):

Non-HTTPS requests to the Fitbit API between 2014-10-17 15:00:00 and 2014-10-17 15:30:00 UTC:

• Only HTTPS requests found during this time period.

 

The only place we are NOT using https is in our hosted app URL.  Does that have to be https as well ?

 

Here is the exception xml:

<?xml version="1.0" encoding="UTF-8"?>

<result>

<errors>

<apiError>

<errorType>request</errorType>

<fieldName>n/a</fieldName>

<message>This request should use https protocol.</message>

</apiError>

</errors>

<success>false</success>

</result>

 

Thanks for any help

Tod 

---

What API request returns to you this response.

The basic rule is: every single request that is made to api.fitbit.com should be made over https.

---

@todwith1d wrote:

The only place we are NOT using https is in our hosted app URL.  Does that have to be https as well ?

---

Your application does not need be hosted using HTTPS (but it's a great thing to do). Only requests to api.fitbit.com and redirects to www.fitbit.com as part of OAuth 1.0a are required to use HTTPS.

Hello, my suggestion would be debug your code up to the step where you send the API request and check what http protocol you're using. 

[400: "This request should use https protocol." ] only returned for the cases when you're not using https.

There is not too much we can debug or see on our side. 

P.S. also based on your message I'm not 100% confident that it is https related, since you haven't mentioned you saw "This request should use https protocol." phrase as part of bad response body, even though I'm pretty sure it's related to https cause we did enable https requirement on Nov 3 2014 10:00am PT.

Can you please reply to my earlier post regarding add subscription API method?

The answer to your question is pretty similar to my previous post:

if you getting back message that you're not using https that means you're not using https protocol for that particular API request.

Other requests may work cause you DO use HTTPS for those.