From 9e0817ac05d3af92091c3c5405ea06c63a564902 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20FRANCE?= <frederic.france@free.fr>
Date: Thu, 10 Dec 2015 16:28:22 +0100
Subject: [PATCH] Update paypal.lib.php

---
 htdocs/paypal/lib/paypal.lib.php | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/htdocs/paypal/lib/paypal.lib.php b/htdocs/paypal/lib/paypal.lib.php
index 045863c2c4f..f06624cb076 100644
--- a/htdocs/paypal/lib/paypal.lib.php
+++ b/htdocs/paypal/lib/paypal.lib.php
@@ -702,10 +702,8 @@ function hash_call($methodName,$nvpStr)
      exit;*/
     curl_setopt($ch, CURLOPT_URL, $API_Endpoint);
     curl_setopt($ch, CURLOPT_VERBOSE, 1);
-	//curl_setopt($ch, CURLOPT_SSLVERSION, 3); // unsecure, no more accepted
-    curl_setopt($ch, CURLOPT_SSLVERSION, 1); // Force TLSv1
-    // After 14 january 2016 paypal will accept tls v1.2 and no more tls v1
-    //curl_setopt($ch, CURLOPT_SSLVERSION, 6); // Force TLSv1.2
+    // TLSv1 by default or change to TLSv1.2 in module configuration
+    curl_setopt($ch, CURLOPT_SSLVERSION, (empty($conf->global->PAYPAL_SSLVERSION)?1:$conf->global->PAYPAL_SSLVERSION));
 
     //turning off the server and peer verification(TrustManager Concept).
     curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);