Roller LDAP Support : solution?

On 6/21/06, Matthew Holt <mholtredhat.com> wrote:
> Eric.Bardouxsanofipasteur.com wrote:
> > Hi all,
> >
> > As far as my last issues are with my ldap
configuration, and no more
> > with Roller, here are the elements i can give you
today to set up an
> > identification with LDAP on Roller.
> >
> > First of all, you must know that the jar delivered
with Roller are not
> > really "up-to-date".
> > - So first, you have to download the Acegi 1.0.0
(not the RC1), and
> > spring 2.0-m4.
> > - In your WEB-INF/lib, remove the old acegi jar
(RC1 named one) and copy
> > the new one from your download.
> > - Open the spring 2.0-m4 jar file, and extract
only the
> >
org\springframework\dao\EmptyResultDataAccessException.cl
ass (with this
> > same path to your WEB-INF/classes folder.
> >
> > Now we have our file, we will have to make some
small changes to the
> > security.xml file.
> > - First, as far as the html filter has been
reviewed in the new Acegi
> > jar, you must change your filter list in the
filter chain bean. To do
> > that, look for the definition of this bean at the
beginning of the
> > security.xml "filterChainProxy"
> > In this bean, you must have the chain of filters
applyed to every
> > request. At the very end of this chain, you should
find the
> > "securityEnforcementFilter". Replace
it with those two new filters :
> >
"exceptionTranslationFilter,filterSecurityInterceptor
"
> >
> > Now your bean must be :
> >     <bean id="filterChainProxy"
> >
class="org.acegisecurity.util.FilterChainProxy"&
gt;
> >         <property
name="filterInvocationDefinitionSource">
> >             <value>
> >                
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
> >                 PATTERN_TYPE_APACHE_ANT
> >
> >
/**=httpSessionContextIntegrationFilter,authenticationProces
singFilter,r
> >
ememberMeProcessingFilter,channelProcessingFilter,remoteUser
Filter,anony
> >
mousProcessingFilter,exceptionTranslationFilter,filterInvoca
tionIntercep
> > tor
> >             </value>
> >         </property>
> >     </bean>
> >
> > - Then, we must define those two new filters, and
remove the old one. To
> > do that, in the security.xml file, look for the
> > <bean
id="securityEnforcementFilter", and remove the
whole bean.
> >
> > - Add this bean at its place :
> >     <bean
id="exceptionTranslationFilter"
> >
class="org.acegisecurity.ui.ExceptionTranslationFilter
">
> >         <property
name="authenticationEntryPoint"
> >
ref="authenticationProcessingFilterEntryPoint"/&
gt;
> >     </bean>
> >
> > - The filterInvocationInterceptor Bean should be
already defined (it was
> > used by the old securityEnforcementFilter).
> > Just check it.
> >
> >
> > At this point, you should be able to start Roller,
and it should work in
> > its initial configuration. Please check it. If it
doesn't work now, it
> > won't work after ;)
> >
> > Ok, now, let's set up the ldap authentication.
> > - First, we must tell Roller to try an LDAP
authentification first, then
> > try in the database, and then, an anonymous.
> > The tries in database and anonymous are already
set up, so we just have
> > to add the ldap one.
> > So, in the security.xml file, look for the bean
which id is
> > "authenticationManager", and add as
the first tag of the <list> this one
> > : <ref
local="ldapAuthProvider"/>
> > It should look like :
> >     <bean
id="authenticationManager"
> >
class="org.acegisecurity.providers.ProviderManager&qu
ot;>
> >         <property
name="providers">
> >             <list>
> >                 <ref
local="ldapAuthProvider"/>
> >                 <ref
local="daoAuthenticationProvider"/>
> >                 <ref
local="anonymousAuthenticationProvider"/>
> >                 <!--
rememberMeAuthenticationProvider added
> > programmatically -->
> >             </list>
> >         </property>
> >     </bean>
> >
> > - We are very near from the end now! As you can
imagine, we now have to
> > set up the ldapAuthProvider!
> > Here it is. Some fields has to be changed to match
your own ldap
> > configuration :
> >
> >     <bean id="ldapAuthProvider"
> >
> >
class="org.acegisecurity.providers.ldap.LdapAuthentica
tionProvider">
> >       <constructor-arg>
> >         <bean
> >
class="org.acegisecurity.providers.ldap.authenticator.
BindAuthenticator"
> >
> >            <constructor-arg><ref
> >
local="initialDirContextFactory"/></constr
uctor-arg>
> >            <property
name="userDnPatterns"><list><value&g
t;uid= [ERIC'S
> > NOTES : CHANGE
IT?]</value></list></property>
> >         </bean>
> >       </constructor-arg>
> >       <constructor-arg>
> >         <bean
> >
class="org.acegisecurity.providers.ldap.populator.Defa
ultLdapAuthorities
> > Populator">
> >            <constructor-arg><ref
> >
local="initialDirContextFactory"/></constr
uctor-arg>
> >           
<constructor-arg><value>ou=groups</value>&
lt;/constructor-arg>
> >            <property
> >
name="groupRoleAttribute"><value>ou<
/value></property>
> >         </bean>
> >       </constructor-arg>
> >     </bean>
> >
> > - and finally, you have to set up the
initialDirContextFactory used
> > here. Put it BEFORE the ldapAuthProvider bean :
> >     <bean
id="initialDirContextFactory"
> >
> >
class="org.acegisecurity.ldap.DefaultInitialDirContext
Factory">
> >       <constructor-arg
value="ldap://ldap.url...[TO BE
> > CHANGED]:389/dc=[TO BE CHANGED],[dc, dn, whatever
you need]"/>
> > <!--      <property
> >
name="managerDn"><value>dc=pasteur,dc=a
ventis,dc=com</value></property>
> >       <property
> >
name="managerPassword"><value>password&
lt;/value></property> -->
> > [ERIC'S NOTE : uncomment if your LDAP need
authentication]
> >     </bean>
> >
> >
> > - Now, this should work.
> >
> > Hope this will help some of you ;)
> >
> > Eric
> >
------------------------------------------------------------
-------------------------------
> > "Cette communication (y compris les pieces
jointes) est reservee a l'usage exclusif du destinataire
(des destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
> > This transmission (including any attachments) is
intended solely for the use of the addressee(s) and may
contain confidential information including trade secrets
which are privileged, confidential, exempt from disclosure
under applicable law and/or subject to copyright. If you are
not an intended recipient, any use, disclosure,
distribution, reproduction, review or copying (either whole
or partial) is unauthorized and may be unlawful. E-mails are
susceptible to alteration and their integrity cannot be
guaranteed.Sanofi Pasteur shall not be liable for this
e-mail if modified or falsified. If you are not the intended
recipient of this e-mail, please delete it immediately from
your system and notify the sender of the wrong delivery and
the mail deletion. Thank you."
> >
************************************************************
**********
> >
> >
> >
> Should I be making these modifications in the src and
then build? I
> thought since I'm just modifying files and the WEB-INF
dir I can use the
> already built app I dl'd off the site.
>
> However, soon as I replace acegi-security-1.0.0-RC1.jar
with either
> Matt's snapshot or the acegi-security-1.0.0.jar file
from the website,
> the application fails to start in Tomcat. (i tried
removing the default
> jar file and replacing it with the new one, and I also
tried removing
> the default jar file, replacing it with the new one,
and renaming the
> new one to match the old jar file name).

Did you update security.xml as well?  I've attached the one
I
committed to roller_3.0 yesterday.

Matt

>
> What am I doing wrong??
> Thanks.
> Matt
>

Matt Raible wrote:
> On 6/21/06, Matthew Holt <mholtredhat.com> wrote:
>> Eric.Bardouxsanofipasteur.com wrote:
>> > Hi all,
>> >
>> > As far as my last issues are with my ldap
configuration, and no more
>> > with Roller, here are the elements i can give
you today to set up an
>> > identification with LDAP on Roller.
>> >
>> > First of all, you must know that the jar
delivered with Roller are not
>> > really "up-to-date".
>> > - So first, you have to download the Acegi
1.0.0 (not the RC1), and
>> > spring 2.0-m4.
>> > - In your WEB-INF/lib, remove the old acegi
jar (RC1 named one) and 
>> copy
>> > the new one from your download.
>> > - Open the spring 2.0-m4 jar file, and extract
only the
>> >
org\springframework\dao\EmptyResultDataAccessException.cl
ass (with 
>> this
>> > same path to your WEB-INF/classes folder.
>> >
>> > Now we have our file, we will have to make
some small changes to the
>> > security.xml file.
>> > - First, as far as the html filter has been
reviewed in the new Acegi
>> > jar, you must change your filter list in the
filter chain bean. To do
>> > that, look for the definition of this bean at
the beginning of the
>> > security.xml "filterChainProxy"
>> > In this bean, you must have the chain of
filters applyed to every
>> > request. At the very end of this chain, you
should find the
>> > "securityEnforcementFilter".
Replace it with those two new filters :
>> >
"exceptionTranslationFilter,filterSecurityInterceptor
"
>> >
>> > Now your bean must be :
>> >     <bean id="filterChainProxy"
>> >
class="org.acegisecurity.util.FilterChainProxy"&
gt;
>> >         <property
name="filterInvocationDefinitionSource">
>> >             <value>
>> >                
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>> >                 PATTERN_TYPE_APACHE_ANT
>> >
>> > 
>>
/**=httpSessionContextIntegrationFilter,authenticationProces
singFilter,r
>> > 
>>
ememberMeProcessingFilter,channelProcessingFilter,remoteUser
Filter,anony
>> > 
>>
mousProcessingFilter,exceptionTranslationFilter,filterInvoca
tionIntercep
>> > tor
>> >             </value>
>> >         </property>
>> >     </bean>
>> >
>> > - Then, we must define those two new filters,
and remove the old 
>> one. To
>> > do that, in the security.xml file, look for
the
>> > <bean
id="securityEnforcementFilter", and remove the
whole bean.
>> >
>> > - Add this bean at its place :
>> >     <bean
id="exceptionTranslationFilter"
>> >
class="org.acegisecurity.ui.ExceptionTranslationFilter
">
>> >         <property
name="authenticationEntryPoint"
>> >
ref="authenticationProcessingFilterEntryPoint"/&
gt;
>> >     </bean>
>> >
>> > - The filterInvocationInterceptor Bean should
be already defined 
>> (it was
>> > used by the old securityEnforcementFilter).
>> > Just check it.
>> >
>> >
>> > At this point, you should be able to start
Roller, and it should 
>> work in
>> > its initial configuration. Please check it. If
it doesn't work now, it
>> > won't work after ;)
>> >
>> > Ok, now, let's set up the ldap
authentication.
>> > - First, we must tell Roller to try an LDAP
authentification first, 
>> then
>> > try in the database, and then, an anonymous.
>> > The tries in database and anonymous are
already set up, so we just 
>> have
>> > to add the ldap one.
>> > So, in the security.xml file, look for the
bean which id is
>> > "authenticationManager", and add
as the first tag of the <list> 
>> this one
>> > : <ref
local="ldapAuthProvider"/>
>> > It should look like :
>> >     <bean
id="authenticationManager"
>> >
class="org.acegisecurity.providers.ProviderManager&qu
ot;>
>> >         <property
name="providers">
>> >             <list>
>> >                 <ref
local="ldapAuthProvider"/>
>> >                 <ref
local="daoAuthenticationProvider"/>
>> >                 <ref
local="anonymousAuthenticationProvider"/>
>> >                 <!--
rememberMeAuthenticationProvider added
>> > programmatically -->
>> >             </list>
>> >         </property>
>> >     </bean>
>> >
>> > - We are very near from the end now! As you
can imagine, we now 
>> have to
>> > set up the ldapAuthProvider!
>> > Here it is. Some fields has to be changed to
match your own ldap
>> > configuration :
>> >
>> >     <bean id="ldapAuthProvider"
>> >
>> >
class="org.acegisecurity.providers.ldap.LdapAuthentica
tionProvider">
>> >       <constructor-arg>
>> >         <bean
>> > 
>>
class="org.acegisecurity.providers.ldap.authenticator.
BindAuthenticator"
>> >
>> >            <constructor-arg><ref
>> >
local="initialDirContextFactory"/></constr
uctor-arg>
>> >            <property
name="userDnPatterns"><list><value&g
t;uid= 
>> [ERIC'S
>> > NOTES : CHANGE
IT?]</value></list></property>
>> >         </bean>
>> >       </constructor-arg>
>> >       <constructor-arg>
>> >         <bean
>> > 
>>
class="org.acegisecurity.providers.ldap.populator.Defa
ultLdapAuthorities
>> > Populator">
>> >            <constructor-arg><ref
>> >
local="initialDirContextFactory"/></constr
uctor-arg>
>> >           
<constructor-arg><value>ou=groups</value>&
lt;/constructor-arg>
>> >            <property
>> >
name="groupRoleAttribute"><value>ou<
/value></property>
>> >         </bean>
>> >       </constructor-arg>
>> >     </bean>
>> >
>> > - and finally, you have to set up the
initialDirContextFactory used
>> > here. Put it BEFORE the ldapAuthProvider bean
:
>> >     <bean
id="initialDirContextFactory"
>> >
>> >
class="org.acegisecurity.ldap.DefaultInitialDirContext
Factory">
>> >       <constructor-arg
value="ldap://ldap.url...[TO BE
>> > CHANGED]:389/dc=[TO BE CHANGED],[dc, dn,
whatever you need]"/>
>> > <!--      <property
>> > 
>>
name="managerDn"><value>dc=pasteur,dc=a
ventis,dc=com</value></property>
>> >       <property
>> >
name="managerPassword"><value>password&
lt;/value></property> -->
>> > [ERIC'S NOTE : uncomment if your LDAP need
authentication]
>> >     </bean>
>> >
>> >
>> > - Now, this should work.
>> >
>> > Hope this will help some of you ;)
>> >
>> > Eric
>> > 
>>
------------------------------------------------------------
------------------------------- 
>>
>> > "Cette communication (y compris les
pieces jointes) est reservee a 
>> l'usage exclusif du destinataire (des
destinataires) et peut contenir 
>> des informations privilegiees, confidentielles,
exemptees de 
>> divulgation selon la loi ou protegees par les
droits d'auteur. Si 
>> vous n'etes pas un destinataire, toute
utilisation, divulgation, 
>> distribution, reproduction, examen ou copie (totale
ou partielle) est 
>> non-autorisee et peut etre illegale. Tout message
electronique est 
>> susceptible d'alteration et son integrite ne peut
etre assuree. 
>> Sanofi Pasteur decline toute responsabilite au
titre de ce message 
>> s'il a ete modifie ou falsifie. Si vous n'etes
pas destinataire de ce 
>> message, merci de le detruire immediatement et
d'avertir l'expediteur 
>> de l'erreur de distribution et de la destruction
du message. Merci.
>> > This transmission (including any attachments)
is intended solely 
>> for the use of the addressee(s) and may contain
confidential 
>> information including trade secrets which are
privileged, 
>> confidential, exempt from disclosure under
applicable law and/or 
>> subject to copyright. If you are not an intended
recipient, any use, 
>> disclosure, distribution, reproduction, review or
copying (either 
>> whole or partial) is unauthorized and may be
unlawful. E-mails are 
>> susceptible to alteration and their integrity
cannot be 
>> guaranteed.Sanofi Pasteur shall not be liable for
this e-mail if 
>> modified or falsified. If you are not the intended
recipient of this 
>> e-mail, please delete it immediately from your
system and notify the 
>> sender of the wrong delivery and the mail deletion.
Thank you."
>> >
************************************************************
**********
>> >
>> >
>> >
>> Should I be making these modifications in the src
and then build? I
>> thought since I'm just modifying files and the
WEB-INF dir I can use the
>> already built app I dl'd off the site.
>>
>> However, soon as I replace
acegi-security-1.0.0-RC1.jar with either
>> Matt's snapshot or the acegi-security-1.0.0.jar
file from the website,
>> the application fails to start in Tomcat. (i tried
removing the default
>> jar file and replacing it with the new one, and I
also tried removing
>> the default jar file, replacing it with the new
one, and renaming the
>> new one to match the old jar file name).
>
> Did you update security.xml as well?  I've attached
the one I
> committed to roller_3.0 yesterday.
>
> Matt
>
>>
>> What am I doing wrong??
>> Thanks.
>> Matt
>>
>
------------------------------------------------------------
------------
>
> <?xml version="1.0"
encoding="UTF-8"?>
> <!--
>   Licensed to the Apache Software Foundation (ASF)
under one or more
>    contributor license agreements.  The ASF licenses
this file to You
>   under the Apache License, Version 2.0 (the
"License"); you may not
>   use this file except in compliance with the License.
>   You may obtain a copy of the License at
>
>       http://www
.apache.org/licenses/LICENSE-2.0
>
>   Unless required by applicable law or agreed to in
writing, software
>   distributed under the License is distributed on an
"AS IS" BASIS,
>   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
express or implied.
>   See the License for the specific language governing
permissions and
>   limitations under the License.  For additional
information regarding
>   copyright in this work, please see the NOTICE file in
the top level
>   directory of this distribution.
> -->
> <!DOCTYPE beans PUBLIC "-//SPRING//DTD
BEAN//EN"
>     "h
ttp://www.springframework.org/dtd/spring-beans.dtd"
;>
>
> <beans>
>
>     <!-- ======================== FILTER CHAIN
======================= -->
>     <bean id="filterChainProxy"
class="org.acegisecurity.util.FilterChainProxy"&
gt;
>         <property
name="filterInvocationDefinitionSource">
>             <value>
>                
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
>                 PATTERN_TYPE_APACHE_ANT
>                
/**=httpSessionContextIntegrationFilter,authenticationProces
singFilter,rememberMeProcessingFilter,channelProcessingFilte
r,remoteUserFilter,anonymousProcessingFilter,exceptionTransl
ationFilter,filterInvocationInterceptor
>             </value>
>         </property>
>     </bean>
>
>     <!-- ======================== AUTHENTICATION
======================= -->
>     
>     <!-- Note the order that entries are placed
against the objectDefinitionSource is critical.
>          The FilterSecurityInterceptor will work from
the top of the list down to the FIRST pattern that matches
the request URL.
>          Accordingly, you should place MOST SPECIFIC
(ie a/b/c/d.*) expressions first, with LEAST SPECIFIC (ie
a/.*) expressions last -->
>     <bean
id="filterInvocationInterceptor"
class="org.acegisecurity.intercept.web.FilterSecurityI
nterceptor">
>         <property
name="authenticationManager"
ref="authenticationManager"/>
>         <property
name="accessDecisionManager"
ref="accessDecisionManager"/>
>          <property
name="objectDefinitionSource">
>             <value>
>                 PATTERN_TYPE_APACHE_ANT
>                
/roller-ui/login-redirect.jsp=admin,editor
>                 /roller-ui/yourProfile**=admin,editor
>                 /roller-ui/createWebsite**=admin,editor
>                 /roller-ui/yourWebsites**=admin,editor
>                 /roller-ui/authoring/**=admin,editor
>                 /roller-ui/admin/**=admin
>                 /rewrite-status*=admin
>             </value>
>         </property>
>     </bean>
>
>     <bean id="authenticationManager"
class="org.acegisecurity.providers.ProviderManager&qu
ot;>
>         <property name="providers">
>             <list>
>                 <ref
local="daoAuthenticationProvider"/>
>                 <ref
local="anonymousAuthenticationProvider"/>
>                 <!--
rememberMeAuthenticationProvider added programmatically
-->
>             </list>
>         </property>
>     </bean>
>   
>     <!-- Log failed authentication attempts to
commons-logging -->
>     <bean id="loggerListener"
class="org.acegisecurity.event.authentication.LoggerLi
stener"/> 
>     
>     <bean id="daoAuthenticationProvider"
class="org.acegisecurity.providers.dao.DaoAuthenticati
onProvider">
>          <property
name="userDetailsService"
ref="jdbcAuthenticationDao"/>
>          <property name="userCache"
ref="userCache"/>
>     </bean>
>
>     <!-- Read users from database -->
>     <bean id="jdbcAuthenticationDao"
class="org.acegisecurity.userdetails.jdbc.JdbcDaoImpl
">
>         <property name="dataSource">
>             <bean
class="org.springframework.jndi.JndiObjectFactoryBean
">
>                 <property
name="jndiName"
value="java:comp/env/jdbc/rollerdb"/>
>             </bean>
>         </property>
>         <property
name="usersByUsernameQuery">
>             <value>SELECT
username,passphrase,isenabled FROM rolleruser WHERE username
= ?</value>
>         </property>
>         <property
name="authoritiesByUsernameQuery">
>             <value>SELECT username,rolename FROM
userrole WHERE username = ?</value>
>         </property>
>     </bean>
>
>     <bean id="userCache"
class="org.acegisecurity.providers.dao.cache.EhCacheBa
sedUserCache">
>         <property name="cache">
>             <bean
class="org.springframework.cache.ehcache.EhCacheFactor
yBean">
>                 <property
name="cacheManager">
>                     <bean
class="org.springframework.cache.ehcache.EhCacheManage
rFactoryBean"/>
>                 </property>
>                 <property
name="cacheName"
value="userCache"/>
>             </bean>
>         </property>
>     </bean>
>    
>     <bean
id="anonymousAuthenticationProvider"
class="org.acegisecurity.providers.anonymous.Anonymous
AuthenticationProvider">
>         <property name="key"
value="anonymous"/>
>     </bean>
>     
>     <bean id="roleVoter"
class="org.acegisecurity.vote.RoleVoter">
>         <property name="rolePrefix"
value=""/>
>     </bean>
>
>     <bean id="accessDecisionManager"
class="org.acegisecurity.vote.AffirmativeBased"&
gt;
>         <property
name="allowIfAllAbstainDecisions"
value="false"/>
>         <property
name="decisionVoters">
>             <list>
>                 <ref
local="roleVoter"/>
>             </list>
>         </property>
>     </bean>
>     
>     <!-- ===================== HTTP REQUEST SECURITY
==================== -->
>     <bean
id="httpSessionContextIntegrationFilter"
class="org.acegisecurity.context.HttpSessionContextInt
egrationFilter"/>
>     
>     <bean
id="authenticationProcessingFilter"
class="org.acegisecurity.ui.webapp.AuthenticationProce
ssingFilter">
>         <property
name="authenticationManager"
ref="authenticationManager"/>
>         <property
name="authenticationFailureUrl"
value="/roller-ui/login.do?error=true"/>
>         <property
name="defaultTargetUrl"
value="/"/>
>         <property
name="filterProcessesUrl"
value="/j_security_check"/>
>         <property
name="rememberMeServices"
ref="rememberMeServices"/>
>     </bean>
>     
>     <bean id="anonymousProcessingFilter"
class="org.acegisecurity.providers.anonymous.Anonymous
ProcessingFilter">
>         <property name="key"
value="anonymous"/>
>         <property name="userAttribute"
value="anonymous,ROLE_ANONYMOUS"/>
>     </bean>
>     
>     <bean
id="exceptionTranslationFilter"
class="org.acegisecurity.ui.ExceptionTranslationFilter
">
>         <property
name="authenticationEntryPoint"
ref="authenticationProcessingFilterEntryPoint"/&
gt;
>     </bean>
>     
>     <bean id="remoteUserFilter"
class="org.acegisecurity.wrapper.SecurityContextHolder
AwareRequestFilter"/>
>
>     <bean
id="authenticationProcessingFilterEntryPoint"
class="org.acegisecurity.ui.webapp.AuthenticationProce
ssingFilterEntryPoint">
>         <property name="loginFormUrl"
value="/roller-ui/login.do"/>
>         <property name="forceHttps"
value="false"/>
>     </bean>
>
>     <!-- ===================== REMEMBER ME
==================== -->
>     <bean
id="rememberMeProcessingFilter"
class="org.acegisecurity.ui.rememberme.RememberMeProce
ssingFilter">
>         <property
name="authenticationManager"
ref="authenticationManager"/>
>         <property
name="rememberMeServices"
ref="rememberMeServices"/>
>     </bean>
>  
>     <bean id="rememberMeServices"
class="org.acegisecurity.ui.rememberme.TokenBasedRemem
berMeServices"> 
>         <property
name="userDetailsService"
ref="jdbcAuthenticationDao"/>
>         <property name="key"
value="rollerlovesacegi"/> 
>         <property name="parameter"
value="rememberMe"/>
>     </bean> 
>   
>     <bean
id="rememberMeAuthenticationProvider"
class="org.acegisecurity.providers.rememberme.Remember
MeAuthenticationProvider"> 
>         <property name="key"
value="rollerlovesacegi"/>
>     </bean>
>     
>     <!-- ===================== SSL SWITCHING
==================== -->
>     <bean id="channelProcessingFilter"
class="org.acegisecurity.securechannel.ChannelProcessi
ngFilter">
>         <property
name="channelDecisionManager"
ref="channelDecisionManager"/>
>         <property
name="filterInvocationDefinitionSource">
>             <value>
>                 PATTERN_TYPE_APACHE_ANT
>             </value>
>         </property>
>     </bean>
>                 
>     <bean id="channelDecisionManager"
class="org.acegisecurity.securechannel.ChannelDecision
ManagerImpl">
>         <property
name="channelProcessors">
>             <list>
>                 <bean
class="org.acegisecurity.securechannel.SecureChannelPr
ocessor"/>
>                 <bean
class="org.acegisecurity.securechannel.InsecureChannel
Processor"/>
>             </list>
>         </property>
>     </bean>
> </beans>
>   
Thanks Matt. That fixed it.

 
Hi all,

I try to install Roller with Oracle 9.2 for database.
Installation/start -> ok
First registration -> ok
Then i try to make some change in the global administration
(enabling
upload, comments,...)
When i save, it says "ok", but when the page is
refreshed, all the
checkboxes are empty (only text fields are saved).
No exception in logs...

Any idea?

Eric
------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

A lot of things do not work with my installation :
- listing entries
- listing comments
- updating global settings
- display the front page of my installation (main.do)
- listing categories of a blog

 

-----Message d'origine-----
De : Eric.Bardouxsanofipasteur.com [mailto:Eric.Bardouxsanofipasteur.com] 
Envoyé : jeudi 22 juin 2006 09:58
À : roller-userincubator.apache.org
Objet : Issue with Oracle

 
Hi all,

I try to install Roller with Oracle 9.2 for database.
Installation/start -> ok
First registration -> ok
Then i try to make some change in the global administration
(enabling upload, comments,...) When i save, it says
"ok", but when the page is refreshed, all the
checkboxes are empty (only text fields are saved).
No exception in logs...

Any idea?

Eric
------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

It seems that for each of those errors, the exception is the
same.
And no difference if i use the thin driver.

Eric


WARN  2006-06-22 14:29:15,631
JDBCExceptionReporter:logExceptions - SQL Error: 933,
SQLState: 42000
ERROR 2006-06-22 14:29:15,631
JDBCExceptionReporter:logExceptions - ORA-00933: SQL command
not properly ended

ERROR 2006-06-22 14:29:15,631
HibernateWeblogManagerImpl:getComments -
org.hibernate.exception.SQLGrammarException: could not
execute query
ERROR 2006-06-22 14:29:15,631 StandardWrapperValve:invoke -
Servlet.service() for servlet action threw exception
org.hibernate.exception.SQLGrammarException: could not
execute query
	at
org.hibernate.exception.SQLStateConverter.convert(SQLStateCo
nverter.java:65)
	at
org.hibernate.exception.JDBCExceptionHelper.convert(JDBCExce
ptionHelper.java:43)
	at org.hibernate.loader.Loader.doList(Loader.java:2148)
	at
org.hibernate.loader.Loader.listIgnoreQueryCache(Loader.java
:2029)
	at org.hibernate.loader.Loader.list(Loader.java:2024)
	at
org.hibernate.loader.criteria.CriteriaLoader.list(CriteriaLo
ader.java:94)
	at
org.hibernate.impl.SessionImpl.list(SessionImpl.java:1552)
	at
org.hibernate.impl.CriteriaImpl.list(CriteriaImpl.java:283)
	at
org.apache.roller.business.hibernate.HibernateWeblogManagerI
mpl.getComments(HibernateWeblogManagerImpl.java:818)
	at
org.apache.roller.presentation.weblog.actions.CommentManagem
entAction$CommentManagementPageModel.<init>(CommentMan
agementAction.java:280)
	at
org.apache.roller.presentation.weblog.actions.CommentManagem
entAction.query(CommentManagementAction.java:96)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
Method)
	at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown
Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown
Source)
	at java.lang.reflect.Method.invoke(Unknown Source)
	at
org.apache.struts.actions.DispatchAction.dispatchMethod(Disp
atchAction.java:276)
	at
org.apache.struts.actions.DispatchAction.execute(DispatchAct
ion.java:196)
	at
org.apache.struts.action.RequestProcessor.processActionPerfo
rm(RequestProcessor.java:421)
	at
org.apache.struts.action.RequestProcessor.process(RequestPro
cessor.java:226)
	at
org.apache.struts.action.ActionServlet.process(ActionServlet
.java:1164)
	at
org.apache.struts.action.ActionServlet.doGet(ActionServlet.j
ava:397)
	at
javax.servlet.http.HttpServlet.service(HttpServlet.java:689)
	at
javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:252)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.roller.presentation.filters.RequestFilter.doFilte
r(RequestFilter.java:83)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.roller.presentation.filters.BreadCrumbFilter.doFi
lter(BreadCrumbFilter.java:94)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.roller.presentation.filters.PersistenceSessionFil
ter.doFilter(PersistenceSessionFilter.java:60)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:264)
	at
org.acegisecurity.intercept.web.FilterSecurityInterceptor.in
voke(FilterSecurityInterceptor.java:107)
	at
org.acegisecurity.intercept.web.FilterSecurityInterceptor.do
Filter(FilterSecurityInterceptor.java:72)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.ui.ExceptionTranslationFilter.doFilter(Exc
eptionTranslationFilter.java:110)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.providers.anonymous.AnonymousProcessingFil
ter.doFilter(AnonymousProcessingFilter.java:125)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.wrapper.SecurityContextHolderAwareRequestF
ilter.doFilter(SecurityContextHolderAwareRequestFilter.java:
81)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.securechannel.ChannelProcessingFilter.doFi
lter(ChannelProcessingFilter.java:138)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.d
oFilter(RememberMeProcessingFilter.java:142)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.ui.AbstractProcessingFilter.doFilter(Abstr
actProcessingFilter.java:216)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.context.HttpSessionContextIntegrationFilte
r.doFilter(HttpSessionContextIntegrationFilter.java:195)
	at
org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.d
oFilter(FilterChainProxy.java:274)
	at
org.acegisecurity.util.FilterChainProxy.doFilter(FilterChain
Proxy.java:148)
	at
org.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBe
anProxy.java:90)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.roller.presentation.filters.SchemeEnforcementFilt
er.doFilter(SchemeEnforcementFilter.java:121)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.roller.presentation.filters.CharEncodingFilter.do
Filter(CharEncodingFilter.java:104)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFi
lter(ApplicationFilterChain.java:202)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(App
licationFilterChain.java:173)
	at
org.apache.catalina.core.StandardWrapperValve.invoke(Standar
dWrapperValve.java:213)
	at
org.apache.catalina.core.StandardContextValve.invoke(Standar
dContextValve.java:178)
	at
org.apache.catalina.core.StandardHostValve.invoke(StandardHo
stValve.java:126)
	at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo
rtValve.java:105)
	at
org.apache.catalina.core.StandardEngineValve.invoke(Standard
EngineValve.java:107)
	at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd
apter.java:148)
	at
org.apache.coyote.http11.Http11Processor.process(Http11Proce
ssor.java:869)
	at
org.apache.coyote.http11.Http11BaseProtocol$Http11Connection
Handler.processConnection(Http11BaseProtocol.java:664)
	at
org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(Poo
lTcpEndpoint.java:527)
	at
org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(
LeaderFollowerWorkerThread.java:80)
	at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.ru
n(ThreadPool.java:684)
	at java.lang.Thread.run(Unknown Source)
Caused by: java.sql.SQLException: ORA-00933: SQL command not
properly ended

	at
oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:
134)
	at
oracle.jdbc.oci8.OCIDBAccess.check_error(OCIDBAccess.java:23
37)
	at
oracle.jdbc.oci8.OCIDBAccess.parseExecuteDescribe(OCIDBAcces
s.java:1258)
	at
oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStat
ement.java:2513)
	at
oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(Orac
leStatement.java:2857)
	at
oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(Ora
clePreparedStatement.java:608)
	at
oracle.jdbc.driver.OraclePreparedStatement.executeQuery(Orac
lePreparedStatement.java:536)
	at
org.apache.tomcat.dbcp.dbcp.DelegatingPreparedStatement.exec
uteQuery(DelegatingPreparedStatement.java:92)
	at
org.hibernate.jdbc.AbstractBatcher.getResultSet(AbstractBatc
her.java:139)
	at
org.hibernate.loader.Loader.getResultSet(Loader.java:1669)
	at org.hibernate.loader.Loader.doQuery(Loader.java:662)
	at
org.hibernate.loader.Loader.doQueryAndInitializeNonLazyColle
ctions(Loader.java:224)
	at org.hibernate.loader.Loader.doList(Loader.java:2145)
	... 71 more 

-----Message d'origine-----
De : Eric.Bardouxsanofipasteur.com [mailto:Eric.Bardouxsanofipasteur.com] 
Envoyé : jeudi 22 juin 2006 10:42
À : roller-userincubator.apache.org
Objet : RE: Issue with Oracle

A lot of things do not work with my installation :
- listing entries
- listing comments
- updating global settings
- display the front page of my installation (main.do)
- listing categories of a blog

 

-----Message d'origine-----
De : Eric.Bardouxsanofipasteur.com [mailto:Eric.Bardouxsanofipasteur.com]
Envoyé : jeudi 22 juin 2006 09:58
À : roller-userincubator.apache.org
Objet : Issue with Oracle

 
Hi all,

I try to install Roller with Oracle 9.2 for database.
Installation/start -> ok
First registration -> ok
Then i try to make some change in the global administration
(enabling upload, comments,...) When i save, it says
"ok", but when the page is refreshed, all the
checkboxes are empty (only text fields are saved).
No exception in logs...

Any idea?

Eric
------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********

------------------------------------------------------------
-------------------------------
"Cette communication (y compris les pieces jointes)
est reservee a l'usage exclusif du destinataire (des
destinataires) et peut contenir des informations
privilegiees, confidentielles, exemptees de divulgation
selon la loi ou protegees par les droits d'auteur. Si vous
n'etes pas un destinataire, toute utilisation, divulgation,
distribution, reproduction, examen ou copie (totale ou
partielle) est non-autorisee et peut etre illegale. Tout
message electronique est susceptible d'alteration et son
integrite ne peut etre assuree. Sanofi Pasteur decline toute
responsabilite au titre de ce message s'il a ete modifie ou
falsifie. Si vous n'etes pas destinataire de ce message,
merci de le detruire immediatement et d'avertir
l'expediteur de l'erreur de distribution et de la
destruction du message. Merci.
This transmission (including any attachments) is intended
solely for the use of the addressee(s) and may contain
confidential information including trade secrets which are
privileged, confidential, exempt from disclosure under
applicable law and/or subject to copyright. If you are not
an intended recipient, any use, disclosure, distribution,
reproduction, review or copying (either whole or partial) is
unauthorized and may be unlawful. E-mails are susceptible to
alteration and their integrity cannot be guaranteed.Sanofi
Pasteur shall not be liable for this e-mail if modified or
falsified. If you are not the intended recipient of this
e-mail, please delete it immediately from your system and
notify the sender of the wrong delivery and the mail
deletion. Thank you."
************************************************************
**********