gds-sso 13.5.1 → 13.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4c93fc375363a131501ac31c10e3d2cab78ac590
-  data.tar.gz: d8f3324a67ee849caa66851846350c4e57c8b60a
+  metadata.gz: 65a4fcbf1648eb48c5d242e5e215a962f480038d
+  data.tar.gz: f1ca91a7017fd9f8e6f42eadeec97de37aa55ff3
 SHA512:
-  metadata.gz: fb888c9c819f4500c815434abd6f9eb6e2ef0cf025148183936316e844ac7b197661efdb016e571e7be876088b6f92f9e276e7628f780e90d9c3c27e6af18497
-  data.tar.gz: 1aa7afaa32573236264b96d6cb9f83a2829c7bc632a2bb1324e570647aaf216c88303c42631a98acb0b15f288ffd27f91545deff7089fcc9c2dba493206c7e2d
+  metadata.gz: 1446bb1a2f1abc78e47930ed8aa252ebb3f498651afe2a45bd1fa09bfaca0acbae876a8a9b067af9ccfc2942c474a2687db91d9f16e9e3644cd3cd90c7201bb9
+  data.tar.gz: 95d9db08ac05f26e3f9235b7c56af5c17a5287b261063fc44cffd021d37abb477e83e845719b6d9a6c6eff0d9c36b5ace1d0861ef451a152839afa11250c9574

data/README.md

@@ -163,6 +163,20 @@ Once that's done, set an environment variable when you run your app. e.g.:
 GDS_SSO_STRATEGY=real bundle exec rails s
 ```
 
+### Extra permissions for api users
+
+By default the mock strategies will create a user with `signin` permission.
+
+If your application needs different or extra permissions for access, you can specify this by adding the following to your config:
+
+```ruby
+GDS::SSO.config do |config|
+  # other config here
+  config.additional_mock_permissions_required = ["array", "of", "permissions"]
+```
+
+The mock bearer token will then ensure that the dummy api user has the required permission.
+
 ### Testing in your application
 
 If your app is using `test-unit` or `minitest`, there is a linting test that can verify your `User` model is compatible with `GDS:SSO::User`:

data/lib/gds-sso/bearer_token.rb

@@ -56,9 +56,13 @@ module GDS
           dummy_api_user.email = "dummyapiuser@domain.com"
           dummy_api_user.uid = "#{rand(10000)}"
           dummy_api_user.name = "Dummy API user created by gds-sso"
-          dummy_api_user.permissions = ["signin"]
-          dummy_api_user.save!
         end
+
+        unless dummy_api_user.has_all_permissions?(GDS::SSO::Config.permissions_for_dummy_api_user)
+          dummy_api_user.permissions = GDS::SSO::Config.permissions_for_dummy_api_user
+        end
+
+        dummy_api_user.save!
         dummy_api_user
       end
     end

data/lib/gds-sso/config.rb

@@ -25,6 +25,12 @@ module GDS
 
       mattr_writer :api_only
 
+      mattr_accessor :additional_mock_permissions_required
+
+      def self.permissions_for_dummy_api_user
+        ["signin"].push(*additional_mock_permissions_required)
+      end
+
       def self.user_klass
         user_model.to_s.constantize
       end

data/lib/gds-sso/lint/user_spec.rb

@@ -28,6 +28,27 @@ RSpec.shared_examples "a gds-sso user class" do
     expect(subject).to respond_to(:remotely_signed_out?)
   end
 
+  describe "#has_all_permissions?" do
+    it "is false when there are no permissions" do
+      subject.update_attributes(permissions: nil)
+      required_permissions = ["signin"]
+      expect(subject.has_all_permissions?(required_permissions)).to be_falsy
+    end
+
+    it "is false when it does not have all required permissions" do
+      subject.update_attributes(permissions: ["signin"])
+      required_permissions = ["signin", "not_granted_permission_one", "not_granted_permission_two"]
+      expect(subject.has_all_permissions?(required_permissions)).to be false
+    end
+
+    it "is true when it has all required permissions" do
+      subject.update_attributes(permissions: ["signin", "internal_app"])
+      required_permissions = ["signin", "internal_app"]
+      expect(subject.has_all_permissions?(required_permissions)).to be true
+    end
+
+  end
+
   specify "the User class and GDS::SSO::User mixin work together" do
     auth_hash = {
       'uid' => '12345',

data/lib/gds-sso/user.rb

@@ -11,6 +11,14 @@ module GDS
         end
       end
 
+      def has_all_permissions?(required_permissions)
+        if permissions
+          required_permissions.all? do |required_permission|
+            permissions.include?(required_permission)
+          end
+        end
+      end
+
       def self.user_params_from_auth_hash(auth_hash)
         {
           'uid' => auth_hash['uid'],

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "13.5.1"
+    VERSION = "13.6.0"
   end
 end

data/spec/internal/log/test.log

@@ -1,81 +1,29 @@
-   (8.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (11.4ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+   (6.8ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (5.0ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
    (0.1ms)  select sqlite_version(*)
-   (5.4ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (7.8ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34983"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (8.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36880"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d34983"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d34983"]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 2]]
-   (6.3ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.6ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 2]]
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d334"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (7.2ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35232"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d334"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 12ms (Views: 11.5ms | ActiveRecord: 0.0ms)
+   (5.7ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "dummyapiuser@domain.com"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31860"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.7ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39363"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.3ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38845"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.8ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31699"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (3.9ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d38845"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38845"]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 8]]
-   (6.2ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.5ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 8]]
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35812"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.2ms)  commit transaction
+  SQL (0.4ms)  INSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)  [["email", "dummyapiuser@domain.com"], ["uid", "6869"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+   (9.8ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38211"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (7.2ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d35812"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:15:51 +0000
+  SQL (0.4ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 1]]
+   (4.9ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:05 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:05 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 583ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (19.3ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+   (7.6ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -84,226 +32,218 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (7.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
+   (6.5ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 340ms (Views: 3.5ms | ActiveRecord: 28.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:51 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 31ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed 200 OK in 220ms (Views: 19.2ms | ActiveRecord: 16.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 71ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed 200 OK in 129ms (Views: 0.5ms | ActiveRecord: 1.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 24ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed   in 51ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
-Started GET "/auth/gds/callback?code=403fb0d1ec97649af51d34a0885922c8cf07debe7344a56dc9aa84ee676cabc8&state=748a66d055257f50dd6e45a1ff8c850d158ba585519fedff" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
+Started GET "/auth/gds/callback?code=65c210224f2cc0e5f97baa1963eacb30556d2585d220da71804ff3ef2af033d4&state=9e2243f1b60a6447c2e807f293fb59fb54e7cf30e1daeb18" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"403fb0d1ec97649af51d34a0885922c8cf07debe7344a56dc9aa84ee676cabc8", "state"=>"748a66d055257f50dd6e45a1ff8c850d158ba585519fedff"}
+  Parameters: {"code"=>"65c210224f2cc0e5f97baa1963eacb30556d2585d220da71804ff3ef2af033d4", "state"=>"9e2243f1b60a6447c2e807f293fb59fb54e7cf30e1daeb18"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.3ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 12]]
-   (8.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 14ms (ActiveRecord: 8.8ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 2]]
+   (8.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17ms (ActiveRecord: 9.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Started GET "/auth/gds/callback?code=21ad57aeb6cbc4395aa34f175ab0f5fe4458d8ece2b7c8d4b9be155f086a475f&state=6e21c7bcb78b4b88679aef913b38e813bf4f3896e88d0a51" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Started GET "/auth/gds/callback?code=08b9446297e4e10e27f139d6e9509cb71689aa53ab3d84dc88c71e42340b7793&state=4d196b447420f5b1b4796ba876000f63e5f2e516fff1b19a" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"21ad57aeb6cbc4395aa34f175ab0f5fe4458d8ece2b7c8d4b9be155f086a475f", "state"=>"6e21c7bcb78b4b88679aef913b38e813bf4f3896e88d0a51"}
+  Parameters: {"code"=>"08b9446297e4e10e27f139d6e9509cb71689aa53ab3d84dc88c71e42340b7793", "state"=>"4d196b447420f5b1b4796ba876000f63e5f2e516fff1b19a"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Started GET "/auth/gds/callback?code=14038c8a0248bd24984494852a5fa349e995812d4406085eb51ccfccfc37d70a&state=7ff6ab7ad0eee8ec2ac4c9dcae08ad818cc7dd89d2b93646" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Started GET "/auth/gds/callback?code=54884d39203d875aa0833a58f2000c78c8d752cc7b0a782546164dcc22881a2e&state=173be65563cdd9b7451328bc104b925f0d66d5e2332c1dc6" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"14038c8a0248bd24984494852a5fa349e995812d4406085eb51ccfccfc37d70a", "state"=>"7ff6ab7ad0eee8ec2ac4c9dcae08ad818cc7dd89d2b93646"}
+  Parameters: {"code"=>"54884d39203d875aa0833a58f2000c78c8d752cc7b0a782546164dcc22881a2e", "state"=>"173be65563cdd9b7451328bc104b925f0d66d5e2332c1dc6"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=719d8909be67ddb269b27767dbd0749dab35455bbe20bcd26ce1cec25ddbbd5c&state=0728ab14e4d2bc82b566086d2888f124e2cc6dbad3c9852b" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=7bcf5c9c74154d09cb47b95ff6d6605a44fd93319b63da88921f808a4545c9ec&state=f91eaab3004d810ef14cebf48e326e612b1ae2863f0ca86b" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"719d8909be67ddb269b27767dbd0749dab35455bbe20bcd26ce1cec25ddbbd5c", "state"=>"0728ab14e4d2bc82b566086d2888f124e2cc6dbad3c9852b"}
+  Parameters: {"code"=>"7bcf5c9c74154d09cb47b95ff6d6605a44fd93319b63da88921f808a4545c9ec", "state"=>"f91eaab3004d810ef14cebf48e326e612b1ae2863f0ca86b"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.2ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 8ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=984e3293314d2b147a048b206054b4fd8de7d590793008b70fa9aad3f81bb076&state=201c99f2fcda23d198f358246cb15939ea7c82c572c00d0c" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=dbf128b0e88cf1c90d3451c37afe4e68d5602e5660ad410f044d7b119ff6958c&state=0d69ec9e284f40d94bcda0fcb9b5e1618b62a155185e663c" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"984e3293314d2b147a048b206054b4fd8de7d590793008b70fa9aad3f81bb076", "state"=>"201c99f2fcda23d198f358246cb15939ea7c82c572c00d0c"}
+  Parameters: {"code"=>"dbf128b0e88cf1c90d3451c37afe4e68d5602e5660ad410f044d7b119ff6958c", "state"=>"0d69ec9e284f40d94bcda0fcb9b5e1618b62a155185e663c"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#index as HTML
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=ac8d3b4e3d11487847e594d93277b140b0dd11d5689c5d8ebbcf0c4007703256&state=8d200a74c4c26e61a5674820ba2c00143132bce4a029f582" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=a4970d280569ba78d0c83800d21853f7115c325a33880f9815f44cd6576d12a1&state=74bfb029303fca3b79d5b8ffaded0a832c5fa818cb23ed6b" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ac8d3b4e3d11487847e594d93277b140b0dd11d5689c5d8ebbcf0c4007703256", "state"=>"8d200a74c4c26e61a5674820ba2c00143132bce4a029f582"}
+  Parameters: {"code"=>"a4970d280569ba78d0c83800d21853f7115c325a33880f9815f44cd6576d12a1", "state"=>"74bfb029303fca3b79d5b8ffaded0a832c5fa818cb23ed6b"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.2ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (8.4ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=a42cc66b7c08714a86aa1b0fd4fe829eed275b90dd80990fde259abd6fd389c3&state=b77e7afe03bb5fe0230fee7588a9e9fd817d535c13aaf82f" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
+Started GET "/auth/gds/callback?code=dfa9b80b8d6e5b8e542d0158fb3bcb3b54c91ba9f3b939eb7692e14deed29a82&state=53fa98b39f8c811018a7f1f1b0018643fb8caa6cb3cf12ae" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a42cc66b7c08714a86aa1b0fd4fe829eed275b90dd80990fde259abd6fd389c3", "state"=>"b77e7afe03bb5fe0230fee7588a9e9fd817d535c13aaf82f"}
+  Parameters: {"code"=>"dfa9b80b8d6e5b8e542d0158fb3bcb3b54c91ba9f3b939eb7692e14deed29a82", "state"=>"53fa98b39f8c811018a7f1f1b0018643fb8caa6cb3cf12ae"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (7.3ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=ea4be227e15fee05e27f9fe3445da8a37a8505855bfe6005fea4edeaa88e45ec&state=1bcab3b054b7680473e9ab5c24b567654cb6f69bdd7cdc4a" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
+Started GET "/auth/gds/callback?code=8c27064bbb90991fc55e8fe9a680b6618b62f28afba8d703a07639f9c48125b9&state=93cef03fda0d081d6810eaa7239a522b56e56b842b0ad20a" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ea4be227e15fee05e27f9fe3445da8a37a8505855bfe6005fea4edeaa88e45ec", "state"=>"1bcab3b054b7680473e9ab5c24b567654cb6f69bdd7cdc4a"}
+  Parameters: {"code"=>"8c27064bbb90991fc55e8fe9a680b6618b62f28afba8d703a07639f9c48125b9", "state"=>"93cef03fda0d081d6810eaa7239a522b56e56b842b0ad20a"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 16ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:20 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Started GET "/auth/gds/callback?code=3e8cf2dec1562f532d37e19ac4ae275d02573770e2e22010542dee49e01d1386&state=b5306cfd42b8e7d546344d54f80f31484c900d753e028142" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:20 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=3dcb9b256028bf4da62c53911c8d8b35685376ef45320942eaf247500d1fce52&state=47376d3faf4b3746053131991260b33874e5fa42ef899feb" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3e8cf2dec1562f532d37e19ac4ae275d02573770e2e22010542dee49e01d1386", "state"=>"b5306cfd42b8e7d546344d54f80f31484c900d753e028142"}
+  Parameters: {"code"=>"3dcb9b256028bf4da62c53911c8d8b35685376ef45320942eaf247500d1fce52", "state"=>"47376d3faf4b3746053131991260b33874e5fa42ef899feb"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
@@ -311,159 +251,221 @@ Authenticating with gds_sso strategy
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:20 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=d229a130e1aaea3d4242bfeda50599cbd201fbeb809478a7de56fc368a7c4dcd&state=cb92bde06d95b1f03c9d5874a6e821d7a1234c7f5deec91a" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=88c9b1c257952abd27a98131c1af9dd4b28ea84dd1a23a2d99ad3b84dc56b2ac&state=60ab5b1a2af4a62308f6879e994eea656cc3628fe542b013" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d229a130e1aaea3d4242bfeda50599cbd201fbeb809478a7de56fc368a7c4dcd", "state"=>"cb92bde06d95b1f03c9d5874a6e821d7a1234c7f5deec91a"}
+  Parameters: {"code"=>"88c9b1c257952abd27a98131c1af9dd4b28ea84dd1a23a2d99ad3b84dc56b2ac", "state"=>"60ab5b1a2af4a62308f6879e994eea656cc3628fe542b013"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 2]]
+   (9.1ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=abe7dbdab2e4f482d01a0bcbc29dd202fc1c474cc83e74c5b0eeca24e7ded0a7&state=f5f792e5354fb43000f91e015faea05b61ea865f91e2b60d" for 127.0.0.1 at 2018-01-23 17:16:05 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=190aa18b2f5f7046dda45e446bde5e8e1be0ac7c79d018ba7f5c5e722bf1a000&state=8134d556b3938fd77ff5425cb0e011a180418fa8b8929366" for 127.0.0.1 at 2018-02-08 12:34:21 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"abe7dbdab2e4f482d01a0bcbc29dd202fc1c474cc83e74c5b0eeca24e7ded0a7", "state"=>"f5f792e5354fb43000f91e015faea05b61ea865f91e2b60d"}
+  Parameters: {"code"=>"190aa18b2f5f7046dda45e446bde5e8e1be0ac7c79d018ba7f5c5e722bf1a000", "state"=>"8134d556b3938fd77ff5425cb0e011a180418fa8b8929366"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
+   (8.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:05 +0000
+Completed 302 Found in 17ms (ActiveRecord: 9.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:21 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:05 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-   (0.1ms)  DROP TABLE IF EXISTS "users"
-   (0.8ms)  SELECT sqlite_version(*)
-   (9.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (7.1ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:13.649652"], ["updated_at", "2018-01-23 17:16:13.649652"]]
-   (7.3ms)  commit transaction
-   (7.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (6.8ms)  commit transaction
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (6.9ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39460"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34554"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.9ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39460"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
+Completed 403 Forbidden in 19ms (Views: 18.3ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36563"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (6.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36416"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.1ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36563"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d36563"]]
+   (0.1ms)  begin transaction
+  SQL (0.5ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 6]]
+   (5.0ms)  commit transaction
+Completed 200 OK in 13ms (ActiveRecord: 5.8ms)
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 6]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31730"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.9ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31989"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.9ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31730"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d31730"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 8]]
+   (5.8ms)  commit transaction
+Completed 200 OK in 10ms (ActiveRecord: 6.3ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 8]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36110"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (6.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34771"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.0ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33124"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (6.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32382"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d33124"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
+   (0.2ms)  DROP TABLE IF EXISTS "users"
+   (2.6ms)  SELECT sqlite_version(*)
+   (7.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (7.0ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+  ActiveRecord::InternalMetadata Load (0.3ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:34:32.318384"], ["updated_at", "2018-02-08 12:34:32.318384"]]
+   (5.7ms)  commit transaction
+   (5.6ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  ActiveRecord::InternalMetadata Load (0.4ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37661"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33957"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
    (6.3ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33640"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.0ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d34705"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.3ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d37661"}
+  Parameters: {"uid"=>"a1s2d33957"}
   Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 10ms (Views: 9.5ms | ActiveRecord: 0.0ms)
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 14ms (Views: 13.4ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31445"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.6ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39964"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.6ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36546"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37065"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.1ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31445"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d31445"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-   (5.5ms)  commit transaction
-Completed 200 OK in 11ms (ActiveRecord: 5.9ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 4], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35667"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.3ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37841"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.0ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d35667"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d35667"], ["LIMIT", 1]]
+  Parameters: {"uid"=>"a1s2d39964"}
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d39964"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 6]]
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
    (5.3ms)  commit transaction
-Completed 200 OK in 8ms (ActiveRecord: 5.7ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 6], ["LIMIT", 1]]
+Completed 200 OK in 11ms (ActiveRecord: 5.8ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 3], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32079"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.8ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31005"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.3ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38719"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.4ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32809"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.4ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d32079"}
+  Parameters: {"uid"=>"a1s2d31005"}
   Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
   Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
 Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d3596"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.7ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32221"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.8ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31434"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38288"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.4ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31434"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d31434"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
+   (4.0ms)  commit transaction
+Completed 200 OK in 7ms (ActiveRecord: 4.4ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 7], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39300"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32754"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.1ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
   Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 12ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 30ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 42ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed   in 52ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (4.9ms)  commit transaction
-  User Load (0.8ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+   (6.6ms)  commit transaction
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -473,18 +475,18 @@ Processing by ExampleController#restricted as JSON
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (5.9ms)  commit transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 11]]
+   (5.3ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 98ms (Views: 1.7ms | ActiveRecord: 13.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (1.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 177ms (Views: 3.4ms | ActiveRecord: 14.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-  CACHE User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.8ms)  begin transaction
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
@@ -494,897 +496,995 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 78ms (Views: 0.7ms | ActiveRecord: 2.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 17ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed 200 OK in 139ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Started GET "/auth/gds/callback?code=91daf7112fcf8d0313f0a45c1bba7a15715b8ca70e0b780694248a9e2bde5f89&state=25eddc4fde2d37ad90157fbb959c73947dc2cf1e364d453e" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Started GET "/auth/gds/callback?code=1d4e530ad728f05fb9610e420abf4920c2e10a2c572422afbe6ebe4dbb8bd26b&state=2fa77d7e5569a6dd37c5e97ecdeed137e838b97b3ca59268" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"91daf7112fcf8d0313f0a45c1bba7a15715b8ca70e0b780694248a9e2bde5f89", "state"=>"25eddc4fde2d37ad90157fbb959c73947dc2cf1e364d453e"}
+  Parameters: {"code"=>"1d4e530ad728f05fb9610e420abf4920c2e10a2c572422afbe6ebe4dbb8bd26b", "state"=>"2fa77d7e5569a6dd37c5e97ecdeed137e838b97b3ca59268"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 12]]
-   (7.3ms)  commit transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 11]]
+   (6.3ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed 302 Found in 15ms (ActiveRecord: 7.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Started GET "/auth/gds/callback?code=0b04d8c48e5fd2478fb8b3af84309f559c1ad05d1b1c21a11b833ce1593c6e39&state=e96239537c0c2f74d1dc27e2afb4bae334eaacb43215638c" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0b04d8c48e5fd2478fb8b3af84309f559c1ad05d1b1c21a11b833ce1593c6e39", "state"=>"e96239537c0c2f74d1dc27e2afb4bae334eaacb43215638c"}
-Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=6c400a531253b352933fa50caceeedd633c1a374f09dd76a3105e407f0e4446c&state=765e268bd9ca801419b7e71627eabed18c4ce8aa5c238e8e" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6c400a531253b352933fa50caceeedd633c1a374f09dd76a3105e407f0e4446c", "state"=>"765e268bd9ca801419b7e71627eabed18c4ce8aa5c238e8e"}
-Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=03cb21cbed6480c2234f288bf81895fa754edaa6f48304ce92a28a156cc59e7b&state=195c2aef60ededea8d73dc1bea20607b63353f07897956b4" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=0f74076b646e2d722ca5e5e57756fb0ca120aeb23eb74e209550c9621dd30e84&state=926444cec95118f3c97a745f362e04c7e13f92b1fee29fe1" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"03cb21cbed6480c2234f288bf81895fa754edaa6f48304ce92a28a156cc59e7b", "state"=>"195c2aef60ededea8d73dc1bea20607b63353f07897956b4"}
+  Parameters: {"code"=>"0f74076b646e2d722ca5e5e57756fb0ca120aeb23eb74e209550c9621dd30e84", "state"=>"926444cec95118f3c97a745f362e04c7e13f92b1fee29fe1"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=30de01255a24d9dec3c93fadca99af449ed43e3949c83a6573c6ce1004a4fabe&state=a961609be14f7135eac870b4666dcb6201861f463104fc62" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=0a931600e113e0f0916d5759bdf9155e664840d5a6abfdf8638191ffc446b413&state=d736d515ff987bd90fd1b83045cfb2ae2bb86d76da2d8307" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"30de01255a24d9dec3c93fadca99af449ed43e3949c83a6573c6ce1004a4fabe", "state"=>"a961609be14f7135eac870b4666dcb6201861f463104fc62"}
+  Parameters: {"code"=>"0a931600e113e0f0916d5759bdf9155e664840d5a6abfdf8638191ffc446b413", "state"=>"d736d515ff987bd90fd1b83045cfb2ae2bb86d76da2d8307"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=5e58bbe491f1453c00b63f73929b9c6531f82b91ef0e78b1dc660add49949cae&state=b87c0dbadc989a86f5582926f0a94eebf6ea7bedcc2e53bd" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=b901872a1f093240a877cb3316be30b92d99d77db3198dd42b40c679758a6cee&state=1bdd936f2a7618eb2390833632a3d6421191c4e809c5b948" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5e58bbe491f1453c00b63f73929b9c6531f82b91ef0e78b1dc660add49949cae", "state"=>"b87c0dbadc989a86f5582926f0a94eebf6ea7bedcc2e53bd"}
+  Parameters: {"code"=>"b901872a1f093240a877cb3316be30b92d99d77db3198dd42b40c679758a6cee", "state"=>"1bdd936f2a7618eb2390833632a3d6421191c4e809c5b948"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Started GET "/auth/gds/callback?code=77dd6a06bbc303a6203f8f87605ab5550216feae3c53db93960f2c8a5448847c&state=0a2a8378d8b0427ed04653829c9005e0ed93009063b46bcf" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=4976153c13193f07010ae49224509456baa1f0bef0e5b46123a32f24fc60eeaa&state=58a02b65a85e0bfa6b66b933dddf3107389e106a3b8a6c9a" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4976153c13193f07010ae49224509456baa1f0bef0e5b46123a32f24fc60eeaa", "state"=>"58a02b65a85e0bfa6b66b933dddf3107389e106a3b8a6c9a"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=cef27d6bd299b129b8e391f9885438fa3fb8eb8a8706c05327ed00b792c9a9e3&state=21a2bd01233c5f374ab27c6fe7edc38ed95fb5573d15bb19" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"77dd6a06bbc303a6203f8f87605ab5550216feae3c53db93960f2c8a5448847c", "state"=>"0a2a8378d8b0427ed04653829c9005e0ed93009063b46bcf"}
+  Parameters: {"code"=>"cef27d6bd299b129b8e391f9885438fa3fb8eb8a8706c05327ed00b792c9a9e3", "state"=>"21a2bd01233c5f374ab27c6fe7edc38ed95fb5573d15bb19"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:35 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a998f94940f771e0e8e770236512a193763b529e98175513922a2b0bee22bd0b&state=3d00f54c2828456a0e02470c06fdcdf7d697ad6537fb85ca" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=733c566ec281b48841390fb5ce1a4367870c25e03716a8e9e72d262fcd0e69a1&state=6fea4856f5aaff154af8312dae04ac8ed36fb24293f49d0b" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a998f94940f771e0e8e770236512a193763b529e98175513922a2b0bee22bd0b", "state"=>"3d00f54c2828456a0e02470c06fdcdf7d697ad6537fb85ca"}
+  Parameters: {"code"=>"733c566ec281b48841390fb5ce1a4367870c25e03716a8e9e72d262fcd0e69a1", "state"=>"6fea4856f5aaff154af8312dae04ac8ed36fb24293f49d0b"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:36 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=e6b16c97c606e602c06aae707e5b94f217b33c6e2d3e883a8af27398f79668a3&state=42dcc37ebdbf81b486a19ccc8aa43a42417419ba00b188e0" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
+Started GET "/auth/gds/callback?code=6f6978c67e21a365bf30c9e64644c60995b4766ea9de384219d75403dd0ee549&state=c0a080b178d8f3cc4a1b379142a2668477d05d4f12c6a80c" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e6b16c97c606e602c06aae707e5b94f217b33c6e2d3e883a8af27398f79668a3", "state"=>"42dcc37ebdbf81b486a19ccc8aa43a42417419ba00b188e0"}
+  Parameters: {"code"=>"6f6978c67e21a365bf30c9e64644c60995b4766ea9de384219d75403dd0ee549", "state"=>"c0a080b178d8f3cc4a1b379142a2668477d05d4f12c6a80c"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 9ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Started GET "/auth/gds/callback?code=7e2345c293dffd0c7d0859f5cc909c55f8c3cdcc7c9176514d995ee773b9cb7d&state=41867359d8536ed1992ee2643b0308c38a95d150d8b324cf" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7e2345c293dffd0c7d0859f5cc909c55f8c3cdcc7c9176514d995ee773b9cb7d", "state"=>"41867359d8536ed1992ee2643b0308c38a95d150d8b324cf"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a98605620a3252b49f52d649c68b378e9e08d0c747776b1ae0385e6411078a9f&state=782377e72efdbe0c2b66c925440a3fc5eaf03e9a1f834ae6" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
+Started GET "/auth/gds/callback?code=e943059dd3c1bb27c3f8da43006cedcbf4da44a8251d4cd2ae6a5e416588efce&state=199d5e963fb2d0c67d8a338dde4d1e8d122c5e288585f928" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a98605620a3252b49f52d649c68b378e9e08d0c747776b1ae0385e6411078a9f", "state"=>"782377e72efdbe0c2b66c925440a3fc5eaf03e9a1f834ae6"}
+  Parameters: {"code"=>"e943059dd3c1bb27c3f8da43006cedcbf4da44a8251d4cd2ae6a5e416588efce", "state"=>"199d5e963fb2d0c67d8a338dde4d1e8d122c5e288585f928"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (7.8ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 11]]
+   (5.2ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a18d19dff286b1c94f19fe6899efa48d54cd7b0d86696af5158053a036d223fd&state=401b15a073056d265aae12704df93015d82a0094f29d6f8a" for 127.0.0.1 at 2018-01-23 17:16:17 +0000
+Completed   in 2ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
+Started GET "/auth/gds/callback?code=9df48c2400444f28c50d4caa59f8cd72e4b41d4822326547d1f9d37bf9686d8e&state=d3ee4db37f3b45c976d5599a33b06f031e7e1160c3847d46" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a18d19dff286b1c94f19fe6899efa48d54cd7b0d86696af5158053a036d223fd", "state"=>"401b15a073056d265aae12704df93015d82a0094f29d6f8a"}
+  Parameters: {"code"=>"9df48c2400444f28c50d4caa59f8cd72e4b41d4822326547d1f9d37bf9686d8e", "state"=>"d3ee4db37f3b45c976d5599a33b06f031e7e1160c3847d46"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (7.8ms)  commit transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 11]]
+   (10.7ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 14ms (ActiveRecord: 8.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:17 +0000
+Completed 302 Found in 20ms (ActiveRecord: 11.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-   (6.4ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (6.6ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Dummy API user created by gds-sso"], ["uid", "7439"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+   (6.3ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.2ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (5.5ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (8.6ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (6.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
    (0.1ms)  select sqlite_version(*)
-   (6.7ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+   (5.8ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (5.9ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (8.4ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3205"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.5ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3478"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.5ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d3205"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 13ms (Views: 12.9ms | ActiveRecord: 0.0ms)
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32498"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (5.7ms)  commit transaction
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35219"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.8ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36256"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d32498"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d32498"]]
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33293"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.5ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d35219"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35219"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 4]]
-   (7.7ms)  commit transaction
-Completed 200 OK in 11ms (ActiveRecord: 8.1ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 4]]
+  SQL (0.4ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 2]]
+   (5.5ms)  commit transaction
+Completed 200 OK in 13ms (ActiveRecord: 6.1ms)
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 2]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31373"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32016"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
    (5.6ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32429"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35282"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32016"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
+Completed 403 Forbidden in 27ms (Views: 26.8ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38304"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32811"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
    (6.9ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+  Parameters: {"uid"=>"a1s2d38304"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38304"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33259"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 6]]
    (6.2ms)  commit transaction
+Completed 200 OK in 10ms (ActiveRecord: 6.9ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 6]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3801"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.5ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34602"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.7ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d33259"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32770"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.7ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3801"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39976"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (14.2ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32379"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (7.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37304"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.5ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39976"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d39976"]]
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37249"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.3ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 1ms (ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "dummyapiuser@domain.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)  [["email", "dummyapiuser@domain.com"], ["uid", "7434"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+   (6.5ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
-   (5.2ms)  commit transaction
-Completed 200 OK in 9ms (ActiveRecord: 5.5ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 10]]
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+  SQL (0.3ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+   (6.1ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 29ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 13ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (7.2ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (7.0ms)  commit transaction
-  Rendered text template (0.0ms)
-Completed 200 OK in 92ms (Views: 3.5ms | ActiveRecord: 15.5ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+Completed   in 19ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Started GET "/auth/gds/callback?code=4739a11f483abcd8ebdf64170ad790eb8eeebc84098ce50108a8e7dd41479708&state=940a69fd2083600a978032d9255b9b2c91a4383c479d2c3f" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4739a11f483abcd8ebdf64170ad790eb8eeebc84098ce50108a8e7dd41479708", "state"=>"940a69fd2083600a978032d9255b9b2c91a4383c479d2c3f"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
+   (6.9ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (6.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 24ms (ActiveRecord: 14.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 78ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 11ms (Views: 5.8ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=b43e7720850448d58a0fbb16aac9abbba5555d3dc9ba571fbda9193081f96be3&state=e90e55268e547d927b1656d5c1f7994019f4106e97e80bf6" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Started GET "/auth/gds/callback?code=785d0b7a0fded9437df515778d1ecf901b9993da2beaf54e13a0fb8b6d65520c&state=875294be1e77af2e910108e3f3fab42d9d555dad808481fe" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b43e7720850448d58a0fbb16aac9abbba5555d3dc9ba571fbda9193081f96be3", "state"=>"e90e55268e547d927b1656d5c1f7994019f4106e97e80bf6"}
+  Parameters: {"code"=>"785d0b7a0fded9437df515778d1ecf901b9993da2beaf54e13a0fb8b6d65520c", "state"=>"875294be1e77af2e910108e3f3fab42d9d555dad808481fe"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 12]]
-   (6.4ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 11ms (ActiveRecord: 7.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=ad28c5b212a5014bde668312daed640902e06e87740bf9a670c455ddf0477f06&state=561135a89d12e6ef7b7dfa8068535ce6d3c2b1d016d05d9e" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=b1727727e652ae5815c0edc5159a888adf1bf4472df5b3ff84f152248770d34f&state=9075c5146f572de2503977f0c3921a095389f49e27da2c67" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ad28c5b212a5014bde668312daed640902e06e87740bf9a670c455ddf0477f06", "state"=>"561135a89d12e6ef7b7dfa8068535ce6d3c2b1d016d05d9e"}
+  Parameters: {"code"=>"b1727727e652ae5815c0edc5159a888adf1bf4472df5b3ff84f152248770d34f", "state"=>"9075c5146f572de2503977f0c3921a095389f49e27da2c67"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=b8c4461438a6303cb6035a09e95123bba1b6657ec8341f7570a58663d6054196&state=5b690f193aa68e0ebf417044e31701552852f065af2974df" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=85ff6441fd1098c23254cf7bae6e316dd99368d6f8a9ec5f4552492a4cfe435b&state=385878b9b638cd5e6db311e244bc6119b49d58da08a77648" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b8c4461438a6303cb6035a09e95123bba1b6657ec8341f7570a58663d6054196", "state"=>"5b690f193aa68e0ebf417044e31701552852f065af2974df"}
+  Parameters: {"code"=>"85ff6441fd1098c23254cf7bae6e316dd99368d6f8a9ec5f4552492a4cfe435b", "state"=>"385878b9b638cd5e6db311e244bc6119b49d58da08a77648"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.2ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 11ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=975e5f50712651ecbef9c61594d6754bdd527da25fd8be5631e207c984cb2ccc&state=1aac7d835f566e4fb96f4f33527a0279f5481ebd839014c0" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"975e5f50712651ecbef9c61594d6754bdd527da25fd8be5631e207c984cb2ccc", "state"=>"1aac7d835f566e4fb96f4f33527a0279f5481ebd839014c0"}
-Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Processing by ExampleController#index as HTML
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=202556d7dc2f8b9066383e72bbd74a55602cd697827d37c2e4fa62ad11ff1268&state=e71db924cb8cfbb0fa3ac7ebbd10377082e80ea49afa24a9" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=af1183090f7c86b04c2eb46f86d742fffebc164d242cf768dcb05be96ce09c3f&state=d6ec8faab9a27c43cb4fe93ccb6cc44c98367a91381ce36d" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"202556d7dc2f8b9066383e72bbd74a55602cd697827d37c2e4fa62ad11ff1268", "state"=>"e71db924cb8cfbb0fa3ac7ebbd10377082e80ea49afa24a9"}
+  Parameters: {"code"=>"af1183090f7c86b04c2eb46f86d742fffebc164d242cf768dcb05be96ce09c3f", "state"=>"d6ec8faab9a27c43cb4fe93ccb6cc44c98367a91381ce36d"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#index as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=e260ffadd922aee49408fdba01481a53923ffa2f8462f23cccf62cbb999f9782&state=107bfc7e38eae0d08dc54d74ff14b15a9c967a57af421cb5" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=9bdc3e80ba7e32a893a8794eace25f48c26a8d9f3de1b53a12c58e524c071943&state=bcb2ff281280fc94511636156e69852a5908a201334041b9" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e260ffadd922aee49408fdba01481a53923ffa2f8462f23cccf62cbb999f9782", "state"=>"107bfc7e38eae0d08dc54d74ff14b15a9c967a57af421cb5"}
+  Parameters: {"code"=>"9bdc3e80ba7e32a893a8794eace25f48c26a8d9f3de1b53a12c58e524c071943", "state"=>"bcb2ff281280fc94511636156e69852a5908a201334041b9"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (8.3ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+   (4.9ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=f1533c60944399f1391a136290e5bfac751d61e1fb98ca9a75a421a666fd5702&state=c80c433c2aa454a67d9228e89f3d981d1929d677fcdc69bf" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=445e139a698170bc331dea278fb7946f0836ae4c13fc1f8b7a1969ff995b1812&state=757eb97322ee40bf9b9ca670f411111c372391900bc5f538" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f1533c60944399f1391a136290e5bfac751d61e1fb98ca9a75a421a666fd5702", "state"=>"c80c433c2aa454a67d9228e89f3d981d1929d677fcdc69bf"}
+  Parameters: {"code"=>"445e139a698170bc331dea278fb7946f0836ae4c13fc1f8b7a1969ff995b1812", "state"=>"757eb97322ee40bf9b9ca670f411111c372391900bc5f538"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (5.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (7.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 10ms (ActiveRecord: 6.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 18ms (ActiveRecord: 7.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=ad908d82d833c29cec117f91462504cfed0a67cb9b7233fb0af9893ffc9ecd82&state=f6f9f89788416ca79638e59ea751a0bb916fa03d0819759b" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=d20f54aa80721efc5f8d0b3d0356940f375763fd44addc5f78646d62ee2b3edf&state=4078967dec1dd01dcf7910f84813af0671fa40d3c43abe07" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ad908d82d833c29cec117f91462504cfed0a67cb9b7233fb0af9893ffc9ecd82", "state"=>"f6f9f89788416ca79638e59ea751a0bb916fa03d0819759b"}
+  Parameters: {"code"=>"d20f54aa80721efc5f8d0b3d0356940f375763fd44addc5f78646d62ee2b3edf", "state"=>"4078967dec1dd01dcf7910f84813af0671fa40d3c43abe07"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:49 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:25 +0000
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:25 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=d54a02d6befb119141bb82cd97f557576a575fb38635d0c1ed794a97884b1771&state=27889d6abe3e8df526d95349b3ef8a426266d11d4e4c02a9" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Started GET "/auth/gds/callback?code=345be22bc7f3c8eb219d50db560dc0aa63177cf4cbc7bc81dfed10dd1be9d375&state=78b8b0e61a0097c42309286f29d57eb4861d48ed59dc9f82" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d54a02d6befb119141bb82cd97f557576a575fb38635d0c1ed794a97884b1771", "state"=>"27889d6abe3e8df526d95349b3ef8a426266d11d4e4c02a9"}
+  Parameters: {"code"=>"345be22bc7f3c8eb219d50db560dc0aa63177cf4cbc7bc81dfed10dd1be9d375", "state"=>"78b8b0e61a0097c42309286f29d57eb4861d48ed59dc9f82"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.3ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:25 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=87b601ba35d1440b3ccf9392f2a6555b7a3f58663c455ec63e88a26a8716fe2b&state=430e76f078d97eb50813ac831178dbf427f7ab05ace93fd0" for 127.0.0.1 at 2018-01-23 17:16:26 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Started GET "/auth/gds/callback?code=102433edeec079b6f80533cb3a99233a34fcfe760dab94605f5d4b02cafc3d98&state=ccbe1f5c927d6a6438a4047cc631333ddeeb5a9a08ab0955" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"87b601ba35d1440b3ccf9392f2a6555b7a3f58663c455ec63e88a26a8716fe2b", "state"=>"430e76f078d97eb50813ac831178dbf427f7ab05ace93fd0"}
+  Parameters: {"code"=>"102433edeec079b6f80533cb3a99233a34fcfe760dab94605f5d4b02cafc3d98", "state"=>"ccbe1f5c927d6a6438a4047cc631333ddeeb5a9a08ab0955"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:26 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
-Started GET "/auth/gds/callback?code=2018ac4d5ceee1b26137609fd9c339af949dcb288845e2bdd5b276dbf0321d2f&state=b163dea3674ef5feb70b88a71185a5a4cfa3ab911e7eb825" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
+Started GET "/auth/gds/callback?code=ee1c93ab7d9de16f5b62325fcba1d3ef0cf137bbf621c531bca87b76d68b6d98&state=14b024ca931e2f383884cede11e8615857b1003b3675bb14" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2018ac4d5ceee1b26137609fd9c339af949dcb288845e2bdd5b276dbf0321d2f", "state"=>"b163dea3674ef5feb70b88a71185a5a4cfa3ab911e7eb825"}
+  Parameters: {"code"=>"ee1c93ab7d9de16f5b62325fcba1d3ef0cf137bbf621c531bca87b76d68b6d98", "state"=>"14b024ca931e2f383884cede11e8615857b1003b3675bb14"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed 302 Found in 9ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:50 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-   (0.1ms)  DROP TABLE IF EXISTS "users"
-   (0.9ms)  SELECT sqlite_version(*)
-   (8.0ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (8.3ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:31.586695"], ["updated_at", "2018-01-23 17:16:31.586695"]]
-   (8.6ms)  commit transaction
-   (17.0ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=17a42fba0db9edb71043d23222be66b12729b473e38d0eba0489fcbc4d155a89&state=24233b213f99d33722d9bee469977a232036881722922f4e" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"17a42fba0db9edb71043d23222be66b12729b473e38d0eba0489fcbc4d155a89", "state"=>"24233b213f99d33722d9bee469977a232036881722922f4e"}
-Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-   (10.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (6.5ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 38ms (ActiveRecord: 18.9ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 6ms (Views: 2.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=2a080321a878353fead65147fe47492be7bf440103035213c313b29cd27440f0&state=0a33c40eac3b37546674a109884d471362f840df31e9c4f4" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2a080321a878353fead65147fe47492be7bf440103035213c313b29cd27440f0", "state"=>"0a33c40eac3b37546674a109884d471362f840df31e9c4f4"}
-Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=c38a4bb46e6f6345f1c9b4c0d29ae8afcc1d05d70e19eedcdac6242a2bba082f&state=8bb488516848ec1c43e85a2f48eddfb1854db8f1fce7942d" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c38a4bb46e6f6345f1c9b4c0d29ae8afcc1d05d70e19eedcdac6242a2bba082f", "state"=>"8bb488516848ec1c43e85a2f48eddfb1854db8f1fce7942d"}
-Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 13]]
+   (6.5ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.4ms)  begin transaction
+   (0.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=73de6d7cb00e3af01bcd18b1ac6f452422be789ca5c8ba94e7fc57d2f406676e&state=9e9902a5b41cecea2e9796e3c4742e26dda9d24fad0eeefb" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"73de6d7cb00e3af01bcd18b1ac6f452422be789ca5c8ba94e7fc57d2f406676e", "state"=>"9e9902a5b41cecea2e9796e3c4742e26dda9d24fad0eeefb"}
+Completed 200 OK in 161ms (Views: 0.6ms | ActiveRecord: 9.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 50ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 26ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  Rendered text template (0.0ms)
+Completed 200 OK in 140ms (Views: 0.6ms | ActiveRecord: 1.5ms)
+   (0.2ms)  DROP TABLE IF EXISTS "users"
+   (2.2ms)  SELECT sqlite_version(*)
+   (6.3ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (5.7ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+  ActiveRecord::InternalMetadata Load (0.4ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:34:56.576582"], ["updated_at", "2018-02-08 12:34:56.576582"]]
+   (5.8ms)  commit transaction
+   (6.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  ActiveRecord::InternalMetadata Load (0.3ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Dummy API user created by gds-sso"], ["uid", "3861"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+   (6.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 1]]
+   (4.4ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (4.4ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34287"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (6.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36951"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34287"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 13ms (Views: 12.2ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31849"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38290"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.2ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d31849"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d31849"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 5]]
+   (4.4ms)  commit transaction
+Completed 200 OK in 8ms (ActiveRecord: 4.9ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 5], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32707"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (6.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36330"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32707"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35739"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3413"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35739"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d35739"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 9]]
+   (5.6ms)  commit transaction
+Completed 200 OK in 10ms (ActiveRecord: 6.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 9], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37118"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d39642"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 11ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Started GET "/auth/gds/callback?code=9af7243c1ac724bfeeda182a5f25fadd8d47c03ddbc96ac1899e3c4ae7d32a59&state=26d434db4ecc9a77e5ce47dfff041811d85dbd4f15088b89" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9af7243c1ac724bfeeda182a5f25fadd8d47c03ddbc96ac1899e3c4ae7d32a59", "state"=>"26d434db4ecc9a77e5ce47dfff041811d85dbd4f15088b89"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
+   (6.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (4.6ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 23ms (ActiveRecord: 12.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 6ms (Views: 2.3ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Started GET "/auth/gds/callback?code=ef7ecf0f3e00b6e3b3ec52ab51701d6666c98ca428744612cb6181822a970558&state=03c36bd4f2d3ce8838266eb3de8515c5850e45231f529f18" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ef7ecf0f3e00b6e3b3ec52ab51701d6666c98ca428744612cb6181822a970558", "state"=>"03c36bd4f2d3ce8838266eb3de8515c5850e45231f529f18"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=cf796aed477875c71ffb7fc64921620f91b12bb794165afac3ee69c83b52809b&state=cd5d7ece9a1bd24010805d148e353641f8c58cffda4ec127" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cf796aed477875c71ffb7fc64921620f91b12bb794165afac3ee69c83b52809b", "state"=>"cd5d7ece9a1bd24010805d148e353641f8c58cffda4ec127"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=06eb6ce45a8b70ba29e781a64dd2283da3946b92c754ce19325e56026f2b233e&state=25d9a2c9d384ee8a223185d5581554287be3acaf8c73cf0d" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"06eb6ce45a8b70ba29e781a64dd2283da3946b92c754ce19325e56026f2b233e", "state"=>"25d9a2c9d384ee8a223185d5581554287be3acaf8c73cf0d"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.2ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=bd9ba3b67355cc8208df1dec441e3acc80455dd91c7334dce1e1e6b30cc43bb2&state=b7dee273dc2301ca31ec943fac81efab8f506645a89a4a50" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=8c3abefcaba41b602083524884e7253fda99bd6cf6abd5a0290cc6f4d2d756be&state=5d73527d853731d05753dd87e86acfb9fe3356ff656224c5" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"bd9ba3b67355cc8208df1dec441e3acc80455dd91c7334dce1e1e6b30cc43bb2", "state"=>"b7dee273dc2301ca31ec943fac81efab8f506645a89a4a50"}
+  Parameters: {"code"=>"8c3abefcaba41b602083524884e7253fda99bd6cf6abd5a0290cc6f4d2d756be", "state"=>"5d73527d853731d05753dd87e86acfb9fe3356ff656224c5"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=5ae2793133376ba020e354f32dcb6e916a2d1bea7565fdb9967acd170d9dbd42&state=2f3482b86e454876ce678417d934f70afc2dea7c63d35e2d" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
+Started GET "/auth/gds/callback?code=9d78b2e636bda2d1da65cdd7ec4cd32e353a2b40ca1d3b1e50f58a0b03c03261&state=2756c214f6c38f31d25cf897a432ffbc04d5de5ff802751d" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5ae2793133376ba020e354f32dcb6e916a2d1bea7565fdb9967acd170d9dbd42", "state"=>"2f3482b86e454876ce678417d934f70afc2dea7c63d35e2d"}
+  Parameters: {"code"=>"9d78b2e636bda2d1da65cdd7ec4cd32e353a2b40ca1d3b1e50f58a0b03c03261", "state"=>"2756c214f6c38f31d25cf897a432ffbc04d5de5ff802751d"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 1]]
-   (7.1ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+  SQL (0.5ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+   (8.5ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=0eb80c3582b538ea33f48bbde7765b4a757c2c684288b0f365802f81ed10a94d&state=59a0890064a4f89f2217c34f38ecf633d7c93f498cb500a7" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed   in 4ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
+Started GET "/auth/gds/callback?code=8d75295dee950d4e27afb5fa3c74a74bd3d9b49e5ae678e0150299178346ab05&state=f0683ba6b322a00e1b8fa85d417a4d04d318e01c80beb86d" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0eb80c3582b538ea33f48bbde7765b4a757c2c684288b0f365802f81ed10a94d", "state"=>"59a0890064a4f89f2217c34f38ecf633d7c93f498cb500a7"}
+  Parameters: {"code"=>"8d75295dee950d4e27afb5fa3c74a74bd3d9b49e5ae678e0150299178346ab05", "state"=>"f0683ba6b322a00e1b8fa85d417a4d04d318e01c80beb86d"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (10.5ms)  commit transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (6.9ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 15ms (ActiveRecord: 11.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 16ms (ActiveRecord: 8.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=c1fdf98b5a864edaf59fcd1e56055ab03e91cea5019ff7937bd5795cee4226f9&state=3349bb3c25b824fad9b7f19c292158c2d651bd18c6d9e619" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=1cb565292a6e21dd952e56386530d3f8ce14acfcbca26d453cd1934514037dee&state=3651845c88c128768aaeeff81019c1c5a11c1f1ccd5e71b2" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c1fdf98b5a864edaf59fcd1e56055ab03e91cea5019ff7937bd5795cee4226f9", "state"=>"3349bb3c25b824fad9b7f19c292158c2d651bd18c6d9e619"}
+  Parameters: {"code"=>"1cb565292a6e21dd952e56386530d3f8ce14acfcbca26d453cd1934514037dee", "state"=>"3651845c88c128768aaeeff81019c1c5a11c1f1ccd5e71b2"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
-Started GET "/auth/gds/callback?code=123efcc87f2412daa5e1ec5b16d8e99f19608c8c2a060f9b9118e9e819a6ef10&state=cbe8977a609bbbb011cf6abc9b9b53cb0c5d6a14756d7be4" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
+Started GET "/auth/gds/callback?code=0e20b04eec25e1573d0d08b65a0ed3ae33ed0124df1978ea689eca17029c028b&state=7f34d518ad87ceafbeb42f5defb4c0d61be49aab536a21eb" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"123efcc87f2412daa5e1ec5b16d8e99f19608c8c2a060f9b9118e9e819a6ef10", "state"=>"cbe8977a609bbbb011cf6abc9b9b53cb0c5d6a14756d7be4"}
+  Parameters: {"code"=>"0e20b04eec25e1573d0d08b65a0ed3ae33ed0124df1978ea689eca17029c028b", "state"=>"7f34d518ad87ceafbeb42f5defb4c0d61be49aab536a21eb"}
 Authenticating with gds_sso strategy
-  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.2ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=611fe54437d99e9ef911f40f0eb6d88da725d6db15ab2839893ae823ec9fc1cf&state=bc388674129216ae86a40fda0bb2259b689b195cb130a47f" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=fd4be11484b5c5f77758ca697ed201dfa003a4fdfe5b3ce90c5cfc88587f8b01&state=1f0bb77e1b40c1bbbd2f85a383be0c97edc82d5e2e9e023f" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"611fe54437d99e9ef911f40f0eb6d88da725d6db15ab2839893ae823ec9fc1cf", "state"=>"bc388674129216ae86a40fda0bb2259b689b195cb130a47f"}
+  Parameters: {"code"=>"fd4be11484b5c5f77758ca697ed201dfa003a4fdfe5b3ce90c5cfc88587f8b01", "state"=>"1f0bb77e1b40c1bbbd2f85a383be0c97edc82d5e2e9e023f"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:00 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.9ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=12cd97d03fa4a8af87cb27aee46071db01ea6660ef561c46956e2bd1e86d1d64&state=ce170ec55c3c39bd341a58bcca295dd7ec4b3b6c4e5a1bcc" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=84d6dd0567baf355853b3293a09241568f2afed1ded51bc2f110dfed92454548&state=49c3760f413ce5079b460207ea298b94f6fc73475094cb12" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"12cd97d03fa4a8af87cb27aee46071db01ea6660ef561c46956e2bd1e86d1d64", "state"=>"ce170ec55c3c39bd341a58bcca295dd7ec4b3b6c4e5a1bcc"}
+  Parameters: {"code"=>"84d6dd0567baf355853b3293a09241568f2afed1ded51bc2f110dfed92454548", "state"=>"49c3760f413ce5079b460207ea298b94f6fc73475094cb12"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.2ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 9ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:35 +0000
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:01 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 54ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:01 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by ExampleController#restricted as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.3ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 1]]
-   (7.8ms)  commit transaction
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed   in 30ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.7ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 13]]
+   (6.5ms)  commit transaction
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -1395,10 +1495,13 @@ Processing by ExampleController#restricted as JSON
    (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 109ms (Views: 0.3ms | ActiveRecord: 9.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 131ms (Views: 0.6ms | ActiveRecord: 8.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 47ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -1412,438 +1515,363 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 86ms (Views: 0.3ms | ActiveRecord: 1.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 14ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (6.8ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36378"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.8ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3113"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d36378"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 11ms (Views: 9.7ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38646"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (7.6ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36943"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.6ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38646"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d38646"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 5]]
-   (8.4ms)  commit transaction
-Completed 200 OK in 12ms (ActiveRecord: 8.8ms)
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 5], ["LIMIT", 1]]
-   (0.6ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39704"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (7.9ms)  commit transaction
-   (0.2ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d39238"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.5ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32434"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.3ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32843"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.3ms)  commit transaction
+Completed 200 OK in 130ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+   (9.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (6.6ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+   (0.2ms)  select sqlite_version(*)
+   (6.1ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+   (0.2ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38779"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (7.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31167"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.0ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32434"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d32434"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
-   (6.7ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 7.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 9], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31342"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (7.5ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32479"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (9.4ms)  commit transaction
+  Parameters: {"uid"=>"a1s2d38779"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.4ms)
+Completed 403 Forbidden in 27ms (Views: 26.4ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36167"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38152"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.7ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31342"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 2ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-   (7.6ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (7.7ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
-   (0.1ms)  select sqlite_version(*)
-   (7.3ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  Parameters: {"uid"=>"a1s2d36167"}
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d36167"]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
+   (6.1ms)  commit transaction
+Completed 200 OK in 26ms (ActiveRecord: 7.0ms)
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39125"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.7ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32225"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.9ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34488"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.9ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3868"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.2ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 7ms (ActiveRecord: 0.3ms)
+  Parameters: {"uid"=>"a1s2d39125"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38732"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (7.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39399"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (7.1ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33167"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.9ms)  commit transaction
+   (0.2ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31544"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.2ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38732"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38732"]]
+  Parameters: {"uid"=>"a1s2d33167"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d33167"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 3]]
-   (6.6ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.9ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
+   (6.5ms)  commit transaction
+Completed 200 OK in 11ms (ActiveRecord: 7.1ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 7]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38945"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.4ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36820"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (4.9ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33233"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32742"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.7ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38945"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 13ms (Views: 12.4ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31359"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (7.6ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31852"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (9.7ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31359"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d31359"]]
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 7]]
-   (9.7ms)  commit transaction
-Completed 200 OK in 14ms (ActiveRecord: 10.0ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 7]]
+  SQL (0.4ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (5.5ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32067"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (6.2ms)  commit transaction
+   (0.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "dummyapiuser@domain.com"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36149"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.2ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32067"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (8.1ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  SQL (0.4ms)  INSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)  [["email", "dummyapiuser@domain.com"], ["uid", "4995"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+   (7.3ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+  SQL (0.3ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+   (5.9ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 8ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Started GET "/auth/gds/callback?code=6106d79a79b74b6ce966fc681eadc9cf6183d8cafaac9e1d9aa03ea7c6e6be12&state=f153a3d2c341f99dc776933bbc53eca91287c695d2cc6239" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=922fadee30090cbdcebda4d1db90e6501dcf38d45cd64253d613ad57c50768f6&state=1bd747ab2b82ee6a79ee5eb8e2bffea45c341903e92b0798" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6106d79a79b74b6ce966fc681eadc9cf6183d8cafaac9e1d9aa03ea7c6e6be12", "state"=>"f153a3d2c341f99dc776933bbc53eca91287c695d2cc6239"}
+  Parameters: {"code"=>"922fadee30090cbdcebda4d1db90e6501dcf38d45cd64253d613ad57c50768f6", "state"=>"1bd747ab2b82ee6a79ee5eb8e2bffea45c341903e92b0798"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
-   (7.5ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (6.3ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+   (0.2ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
+   (6.9ms)  commit transaction
+   (0.2ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (6.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 20ms (ActiveRecord: 14.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 302 Found in 25ms (ActiveRecord: 14.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 6ms (Views: 3.8ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 200 OK in 8ms (Views: 6.1ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Started GET "/auth/gds/callback?code=537ea2c55975819c6dcf755928345c86fc3ebf88017260f4d915da9bb0e01f74&state=cd553d8d2c035594abc2d5790a4c8ad05d5ca54d333801a8" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=3cc116f044a0f1a5b73daa3fc2010923fd5cd407da471079c46b5ddfc16947cd&state=ce604ba4fd4c8f5492c81fb1a8793a206e70ead154bd5daf" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"537ea2c55975819c6dcf755928345c86fc3ebf88017260f4d915da9bb0e01f74", "state"=>"cd553d8d2c035594abc2d5790a4c8ad05d5ca54d333801a8"}
+  Parameters: {"code"=>"3cc116f044a0f1a5b73daa3fc2010923fd5cd407da471079c46b5ddfc16947cd", "state"=>"ce604ba4fd4c8f5492c81fb1a8793a206e70ead154bd5daf"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Processing by ExampleController#index as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=75762056352bf45881acad93cf87b40584548efe92ca742d40eea5796e7f95d1&state=60274fa363afb7ea3c4e855de18380b22dd6564878783054" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=9e92cc0e05edcf84fa2fbfce736bf7826cbaa5c08387a20255f5ca7c170ec762&state=be34c97b502d163149879b9e84035490fd74561d5904d1a2" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"75762056352bf45881acad93cf87b40584548efe92ca742d40eea5796e7f95d1", "state"=>"60274fa363afb7ea3c4e855de18380b22dd6564878783054"}
+  Parameters: {"code"=>"9e92cc0e05edcf84fa2fbfce736bf7826cbaa5c08387a20255f5ca7c170ec762", "state"=>"be34c97b502d163149879b9e84035490fd74561d5904d1a2"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=9f2b674c802fb034c682048ed6fbcde2488bcdbc3ec8168298118af59d6e044e&state=7f43402cf964163c666a8cae676b451ebdf47254573162fa" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=678dfb75630433aacb9bc9eb92d7d42478df658a8272f7f7d410f153b256d5bd&state=ea15ee062a93e39372d8e1e5468fa45abbbd028830c39aae" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"9f2b674c802fb034c682048ed6fbcde2488bcdbc3ec8168298118af59d6e044e", "state"=>"7f43402cf964163c666a8cae676b451ebdf47254573162fa"}
+  Parameters: {"code"=>"678dfb75630433aacb9bc9eb92d7d42478df658a8272f7f7d410f153b256d5bd", "state"=>"ea15ee062a93e39372d8e1e5468fa45abbbd028830c39aae"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=ed46f97d99c5ad6f300cdda521b8c1f64e0c44dfd7db2322da18a68f034837eb&state=2fde8b89ee229191745897442c29fd955af24b299d3353b4" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=9f18d90444de6194014b4aadc03307939b4f41372cbe3e27e180a07ad891d2f2&state=1c1397b30ccbbc9d8eae9b0ceeac969c802271b4d5bed10d" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ed46f97d99c5ad6f300cdda521b8c1f64e0c44dfd7db2322da18a68f034837eb", "state"=>"2fde8b89ee229191745897442c29fd955af24b299d3353b4"}
+  Parameters: {"code"=>"9f18d90444de6194014b4aadc03307939b4f41372cbe3e27e180a07ad891d2f2", "state"=>"1c1397b30ccbbc9d8eae9b0ceeac969c802271b4d5bed10d"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.1ms)
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=1176766ab4954ad6859e4dd74e8451b2e7ff2c24f7bf2a9f4195cfca1a04887d&state=22615fea0ce095a9335bdd74c0ff84b4962a30de5fbf53ab" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=cbf7bbeef9b1e602db3d2867cbebb35827a5679a49e5914adc28a94f806b9d4d&state=10608cad5cd2c8c0d6c0e74f8bebd848e66a1c611727f430" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1176766ab4954ad6859e4dd74e8451b2e7ff2c24f7bf2a9f4195cfca1a04887d", "state"=>"22615fea0ce095a9335bdd74c0ff84b4962a30de5fbf53ab"}
+  Parameters: {"code"=>"cbf7bbeef9b1e602db3d2867cbebb35827a5679a49e5914adc28a94f806b9d4d", "state"=>"10608cad5cd2c8c0d6c0e74f8bebd848e66a1c611727f430"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+   (6.6ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=8d1bde939b83603fedd3af07e0c33fdfbb6e8865854eea34291da532773df4a0&state=1593a7cf9b1b98e2bd7c669230a893b4823f8fb2de2646b7" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed   in 2ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=f39e57f5ec4fb1e28cde28599e288c92d097da75b49d14c68f84b797e0896cd8&state=e370235bfce5e63ef45ea4b056484aa44cf8397c4aa898bb" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"8d1bde939b83603fedd3af07e0c33fdfbb6e8865854eea34291da532773df4a0", "state"=>"1593a7cf9b1b98e2bd7c669230a893b4823f8fb2de2646b7"}
+  Parameters: {"code"=>"f39e57f5ec4fb1e28cde28599e288c92d097da75b49d14c68f84b797e0896cd8", "state"=>"e370235bfce5e63ef45ea4b056484aa44cf8397c4aa898bb"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (20.7ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 28ms (ActiveRecord: 21.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
-Started GET "/auth/gds/callback?code=12140e420d4d908b4b64d228583445680dcf7909e2197b9b736172bb7701797f&state=c235ca078b03dc2b41f2801367dfd1b9677716ed9a774544" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=5c7add1bb87111e8229f3b0af67cd1744ab750f21abcc3aa0bfb2c1e60ba7100&state=3d02f060cb789adf9b948dd34fbfbf211566b712889d5a27" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"12140e420d4d908b4b64d228583445680dcf7909e2197b9b736172bb7701797f", "state"=>"c235ca078b03dc2b41f2801367dfd1b9677716ed9a774544"}
+  Parameters: {"code"=>"5c7add1bb87111e8229f3b0af67cd1744ab750f21abcc3aa0bfb2c1e60ba7100", "state"=>"3d02f060cb789adf9b948dd34fbfbf211566b712889d5a27"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:12 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:12 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=16ac32f84623ed4f68818264eb2ef44114b1a87676cd2cb44b4741e573f8fa23&state=c9d60f158b3ee597fe06ff96fe18a421f81d0a52b4ed67f3" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=d9af6b7311360a4d09e6beffa720f23dd1abf696bd543eb54bfdfe3aa3aa29f3&state=054693995d098c042a0409a7df5bc738ad39dd74305c8878" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"16ac32f84623ed4f68818264eb2ef44114b1a87676cd2cb44b4741e573f8fa23", "state"=>"c9d60f158b3ee597fe06ff96fe18a421f81d0a52b4ed67f3"}
+  Parameters: {"code"=>"d9af6b7311360a4d09e6beffa720f23dd1abf696bd543eb54bfdfe3aa3aa29f3", "state"=>"054693995d098c042a0409a7df5bc738ad39dd74305c8878"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:13 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=90d741d593cffcaa80b0bc5b5d2de50e4dc5acaeadf41743a1b8084f44897c32&state=f5fb0f62b214bd9b9e90f506e366e3edb85d635d540d93e3" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
+Started GET "/auth/gds/callback?code=554f6372219e0526f841246a888938fdb280266920c5713688387e100ee8c2e3&state=4867f16b47e36e99d7ce17ec09c5d8ed1e72348e3aab9771" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"90d741d593cffcaa80b0bc5b5d2de50e4dc5acaeadf41743a1b8084f44897c32", "state"=>"f5fb0f62b214bd9b9e90f506e366e3edb85d635d540d93e3"}
+  Parameters: {"code"=>"554f6372219e0526f841246a888938fdb280266920c5713688387e100ee8c2e3", "state"=>"4867f16b47e36e99d7ce17ec09c5d8ed1e72348e3aab9771"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (10.6ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=afc5d8ec921423e82ded653ce384613f07962359d1d331d654a8c735a83b3ba3&state=2eda5b67171a2e64f78f886ab25a9877673ac8101e911645" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
+Started GET "/auth/gds/callback?code=887524eabd650c84d480a9b860d0264a5e0a40e1dc6b080d7ea38290a2f8d815&state=c73bc03a1883b7a940b6c85b30a328b649653918d8aea5f5" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"afc5d8ec921423e82ded653ce384613f07962359d1d331d654a8c735a83b3ba3", "state"=>"2eda5b67171a2e64f78f886ab25a9877673ac8101e911645"}
+  Parameters: {"code"=>"887524eabd650c84d480a9b860d0264a5e0a40e1dc6b080d7ea38290a2f8d815", "state"=>"c73bc03a1883b7a940b6c85b30a328b649653918d8aea5f5"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (7.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
-   (7.7ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+Completed   in 51ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.2ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 13]]
+   (6.3ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 80ms (Views: 0.4ms | ActiveRecord: 8.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 129ms (Views: 0.6ms | ActiveRecord: 8.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 13ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -1851,385 +1879,399 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 93ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 116ms (Views: 0.4ms | ActiveRecord: 1.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:14 +0000
 Processing by ExampleController#restricted as JSON
 Completed   in 24ms (ActiveRecord: 0.0ms)
-   (0.1ms)  DROP TABLE IF EXISTS "users"
-   (0.8ms)  SELECT sqlite_version(*)
-   (6.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (8.7ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+   (0.2ms)  DROP TABLE IF EXISTS "users"
+   (1.7ms)  SELECT sqlite_version(*)
+   (8.2ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (7.8ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+  ActiveRecord::InternalMetadata Load (0.4ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:49.799868"], ["updated_at", "2018-01-23 17:16:49.799868"]]
-   (4.2ms)  commit transaction
-   (6.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
-  ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  SQL (0.4ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:35:20.397485"], ["updated_at", "2018-02-08 12:35:20.397485"]]
+   (6.4ms)  commit transaction
+   (6.3ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  ActiveRecord::InternalMetadata Load (0.3ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", "environment"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38555"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (6.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d34557"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38555"}
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d38555"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 1]]
+   (5.6ms)  commit transaction
+Completed 200 OK in 11ms (ActiveRecord: 6.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 1], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37911"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (5.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32835"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.6ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d37911"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 12ms (Views: 11.2ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32101"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (7.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31994"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (8.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32101"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36631"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (6.9ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d35426"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.9ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d36631"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d36631"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
+   (7.2ms)  commit transaction
+Completed 200 OK in 11ms (ActiveRecord: 7.7ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 7], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38855"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (8.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d35784"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.9ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (6.7ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#index as HTML
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 2.8ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (9.5ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Dummy API user created by gds-sso"], ["uid", "2096"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+   (7.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+   (8.5ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=a9ce83eca750a3acb886bd980109a7460030ba4ae34811860a6af12dc56d1fee&state=631641b49f5c4cc84f372f0c2d278a1ffe52846f9a5720b2" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a9ce83eca750a3acb886bd980109a7460030ba4ae34811860a6af12dc56d1fee", "state"=>"631641b49f5c4cc84f372f0c2d278a1ffe52846f9a5720b2"}
-Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed   in 14ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.2ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+   (7.5ms)  commit transaction
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-   (5.3ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
-   (4.2ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 16ms (ActiveRecord: 10.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+   (0.1ms)  commit transaction
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (5.6ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=d030ff31e907ea07c245d2f883f3473e09d2585af84690b451ffb8a971e3229d&state=637cebcfea31685c91f69fc6a5f6fd5d5412fa6bfd0778ec" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d030ff31e907ea07c245d2f883f3473e09d2585af84690b451ffb8a971e3229d", "state"=>"637cebcfea31685c91f69fc6a5f6fd5d5412fa6bfd0778ec"}
-Authenticating with gds_sso strategy
+Completed 200 OK in 151ms (Views: 1.7ms | ActiveRecord: 16.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
   User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.2ms)  commit transaction
+  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 200 OK in 116ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 21ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 43ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=8317ae69e828dac16c0aa7a8a19e18e6e1914ce3320e1b463c71dc37e3b26b03&state=fb7236519484b53a53e0cca046b58a32413538aaec613a58" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Started GET "/auth/gds/callback?code=259edae08f10a888a26e125af0bd12f1ceb5057e99faa943d8a577594cb22610&state=fd7d0e8341af861e44f62f51da9ec8a5a69b5717517fe96d" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"8317ae69e828dac16c0aa7a8a19e18e6e1914ce3320e1b463c71dc37e3b26b03", "state"=>"fb7236519484b53a53e0cca046b58a32413538aaec613a58"}
+  Parameters: {"code"=>"259edae08f10a888a26e125af0bd12f1ceb5057e99faa943d8a577594cb22610", "state"=>"fd7d0e8341af861e44f62f51da9ec8a5a69b5717517fe96d"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+  SQL (0.4ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 13]]
+   (6.6ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 302 Found in 15ms (ActiveRecord: 7.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=d2d3651c07e4c501c7fa73f24ebeb494024174f199ef51ac56c3a345725f663a&state=e0fc93d6db0a7f169dec35d354fe994531ca8b9ca4d1965b" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=bed5d512f30db125d17758a67c70589a99a2e01ec8674941937927dac81933e3&state=367a3ffcbfc0123809a4100b1be49b9d22b0df59db67e57b" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d2d3651c07e4c501c7fa73f24ebeb494024174f199ef51ac56c3a345725f663a", "state"=>"e0fc93d6db0a7f169dec35d354fe994531ca8b9ca4d1965b"}
+  Parameters: {"code"=>"bed5d512f30db125d17758a67c70589a99a2e01ec8674941937927dac81933e3", "state"=>"367a3ffcbfc0123809a4100b1be49b9d22b0df59db67e57b"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=369c086cb730b105a20645be2666f4c210a5bf392f9fe49c358f219875fca26a&state=9091de2512356f92ef1d6317200c0b7f0865005152d11825" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=6e5453ddbe9c3610a82f87ac4d3d600de3f08c3815f06aa531d049dc6ffa1e91&state=5b3c261beee72fdb06239c386875e23256b8220523e6d328" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"369c086cb730b105a20645be2666f4c210a5bf392f9fe49c358f219875fca26a", "state"=>"9091de2512356f92ef1d6317200c0b7f0865005152d11825"}
+  Parameters: {"code"=>"6e5453ddbe9c3610a82f87ac4d3d600de3f08c3815f06aa531d049dc6ffa1e91", "state"=>"5b3c261beee72fdb06239c386875e23256b8220523e6d328"}
 Authenticating with gds_sso strategy
-  User Load (0.9ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 6ms (ActiveRecord: 1.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=967d35ddd16ab6835e05e15507d4b3de38df3192fc9d4dbaaff38a0a854a8e2d&state=c03637a006789a2fa9cf52aeae57e39236406c68ddc5d010" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=ca189ca72544b9a66632faff3894b193b24b89b1b9d5486e3c353308b10ec59b&state=e5f74303e88e6836c08c4ad8145bb258930b50b1e31e5c4f" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"967d35ddd16ab6835e05e15507d4b3de38df3192fc9d4dbaaff38a0a854a8e2d", "state"=>"c03637a006789a2fa9cf52aeae57e39236406c68ddc5d010"}
+  Parameters: {"code"=>"ca189ca72544b9a66632faff3894b193b24b89b1b9d5486e3c353308b10ec59b", "state"=>"e5f74303e88e6836c08c4ad8145bb258930b50b1e31e5c4f"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:51 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:51 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=19ec16425236a08a3f6864245e6f1a46f6dcefbdbc582932553c5dc8deddf32a&state=8b8fbe1cc8c344e535a10791e6ffe541be6b3d0ee1e86538" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=400cb676ebbe2591173e6e35c76ba52d1b8a209e44e629db0f8ac6b80cdedcf8&state=0f969f7a954a897e10db14aac7dbbb096f62ac5887cb0979" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"19ec16425236a08a3f6864245e6f1a46f6dcefbdbc582932553c5dc8deddf32a", "state"=>"8b8fbe1cc8c344e535a10791e6ffe541be6b3d0ee1e86538"}
+  Parameters: {"code"=>"400cb676ebbe2591173e6e35c76ba52d1b8a209e44e629db0f8ac6b80cdedcf8", "state"=>"0f969f7a954a897e10db14aac7dbbb096f62ac5887cb0979"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.3ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:51 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=cad5f13d761480b34e9224a8d82a4321350858467384b95df90e52b065b8ca59&state=e8ca0265470ac7f618850aa1a978d2ce526183aa73f05af5" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cad5f13d761480b34e9224a8d82a4321350858467384b95df90e52b065b8ca59", "state"=>"e8ca0265470ac7f618850aa1a978d2ce526183aa73f05af5"}
+Authenticating with gds_sso strategy
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.7ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.2ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 200 OK in 5ms (Views: 0.5ms | ActiveRecord: 0.7ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+   (8.2ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=297989a2ae99bb0eedc98eaaf32e038d0106646ca1d313101343ca9a7dd95b45&state=40718a3fec89954747b948a1f20ffd3eb59137aaa0dd098c" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 2ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=4d6fe8e1808970fdf7a5f0500749915e01f6cf3a2a956c8515d0b9121570b4f3&state=ae5a72220d0a71607d54c7e29f2df4c708d3c3d3e14d9c3e" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"297989a2ae99bb0eedc98eaaf32e038d0106646ca1d313101343ca9a7dd95b45", "state"=>"40718a3fec89954747b948a1f20ffd3eb59137aaa0dd098c"}
+  Parameters: {"code"=>"4d6fe8e1808970fdf7a5f0500749915e01f6cf3a2a956c8515d0b9121570b4f3", "state"=>"ae5a72220d0a71607d54c7e29f2df4c708d3c3d3e14d9c3e"}
 Authenticating with gds_sso strategy
   User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 13]]
+   (6.5ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 14ms (ActiveRecord: 7.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
-Started GET "/auth/gds/callback?code=54377010f1a9c07a15d4423dd035d0c1c5c321cf7d61a0297accb5fc4d79c593&state=a62d8da933475177c35f7d4a2db72612b9ef4d78b3498df8" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=5f7c066490e4caa68d0a52033453072d064c14e777b06f8a2f161e47a2f0105e&state=3a08fe5362b8eebb42719da8373934729415df0da666a2d4" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"54377010f1a9c07a15d4423dd035d0c1c5c321cf7d61a0297accb5fc4d79c593", "state"=>"a62d8da933475177c35f7d4a2db72612b9ef4d78b3498df8"}
+  Parameters: {"code"=>"5f7c066490e4caa68d0a52033453072d064c14e777b06f8a2f161e47a2f0105e", "state"=>"3a08fe5362b8eebb42719da8373934729415df0da666a2d4"}
 Authenticating with gds_sso strategy
   User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.2ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=adbddef8e27bcdb699d4e7da6151954aab434834ee9a31e9f488b25a6889fdbe&state=d829ac64295a4ec3ae1a8829e62b4e631a6702438523fe4e" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
+Started GET "/auth/gds/callback?code=ac6f1c431d4166e5553b1ef58651995276560e93a9013e0eb6731136a56b7f5c&state=68dbf137439dcf120ad9a65867e74bf10fa7ff120c00b2ba" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"adbddef8e27bcdb699d4e7da6151954aab434834ee9a31e9f488b25a6889fdbe", "state"=>"d829ac64295a4ec3ae1a8829e62b4e631a6702438523fe4e"}
+  Parameters: {"code"=>"ac6f1c431d4166e5553b1ef58651995276560e93a9013e0eb6731136a56b7f5c", "state"=>"68dbf137439dcf120ad9a65867e74bf10fa7ff120c00b2ba"}
 Authenticating with gds_sso strategy
-  User Load (1.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.2ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 1.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.8ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.1ms)
-Completed 200 OK in 8ms (Views: 1.3ms | ActiveRecord: 0.8ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.6ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 2]]
-   (7.1ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=4156d050f22f9369523ef5c16050fe4010c77b30a5e6705de17cdd6862d644ca&state=9d23eeb323692c3ab4744a7cd99c4a2056bd77dfad6fcffd" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=945580dad7da4b1a340f3032b838042b86947c400bc7a5ccf6e6bf0feccfbf25&state=322ddc743d54791baf5c3c8b31da6eaa55d337d579a8c3af" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"4156d050f22f9369523ef5c16050fe4010c77b30a5e6705de17cdd6862d644ca", "state"=>"9d23eeb323692c3ab4744a7cd99c4a2056bd77dfad6fcffd"}
+  Parameters: {"code"=>"945580dad7da4b1a340f3032b838042b86947c400bc7a5ccf6e6bf0feccfbf25", "state"=>"322ddc743d54791baf5c3c8b31da6eaa55d337d579a8c3af"}
 Authenticating with gds_sso strategy
-  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.5ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.6ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
-   (9.2ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 18ms (ActiveRecord: 10.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 36ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:53 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 2]]
-   (6.6ms)  commit transaction
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:24 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 112ms (Views: 0.3ms | ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:53 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=7aa6dc10642ec0a5a82aee1454d676ca106d20c6736dabc043c4d97fb0bf45e7&state=7ac6752753943390bc49aee8ee3c18989d98a72ce31f4f15" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7aa6dc10642ec0a5a82aee1454d676ca106d20c6736dabc043c4d97fb0bf45e7", "state"=>"7ac6752753943390bc49aee8ee3c18989d98a72ce31f4f15"}
+Authenticating with gds_sso strategy
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-  CACHE User Load (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:25 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 77ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35183"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (8.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3850"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.1ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31284"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.4ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d379"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.3ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d31284"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
-Completed 403 Forbidden in 9ms (Views: 8.8ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d3661"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.5ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31303"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.8ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d3661"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d3661"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.4ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
-   (7.0ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 7.6ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 7], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d395"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36582"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.8ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d395"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d3568"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (6.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31082"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.0ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d3568"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d3568"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 11]]
-   (6.1ms)  commit transaction
-Completed 200 OK in 9ms (ActiveRecord: 6.4ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 11], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:25 +0000