RubyGems - gds-sso - Versions diffs - 13.5.1 → 13.6.0 - Mend

gds-sso 13.5.1 → 13.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

checksums.yaml +4 -4
data/README.md +14 -0
data/lib/gds-sso/bearer_token.rb +6 -2
data/lib/gds-sso/config.rb +6 -0
data/lib/gds-sso/lint/user_spec.rb +21 -0
data/lib/gds-sso/user.rb +8 -0
data/lib/gds-sso/version.rb +1 -1
data/spec/internal/db/combustion_test.sqlite +0 -0
data/spec/internal/log/test.log +1554 -1512
data/spec/unit/config_spec.rb +28 -0
data/spec/unit/mock_bearer_token_spec.rb +22 -0
metadata +23 -19

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4c93fc375363a131501ac31c10e3d2cab78ac590
-  data.tar.gz: d8f3324a67ee849caa66851846350c4e57c8b60a
+  metadata.gz: 65a4fcbf1648eb48c5d242e5e215a962f480038d
+  data.tar.gz: f1ca91a7017fd9f8e6f42eadeec97de37aa55ff3
 SHA512:
-  metadata.gz: fb888c9c819f4500c815434abd6f9eb6e2ef0cf025148183936316e844ac7b197661efdb016e571e7be876088b6f92f9e276e7628f780e90d9c3c27e6af18497
-  data.tar.gz: 1aa7afaa32573236264b96d6cb9f83a2829c7bc632a2bb1324e570647aaf216c88303c42631a98acb0b15f288ffd27f91545deff7089fcc9c2dba493206c7e2d
+  metadata.gz: 1446bb1a2f1abc78e47930ed8aa252ebb3f498651afe2a45bd1fa09bfaca0acbae876a8a9b067af9ccfc2942c474a2687db91d9f16e9e3644cd3cd90c7201bb9
+  data.tar.gz: 95d9db08ac05f26e3f9235b7c56af5c17a5287b261063fc44cffd021d37abb477e83e845719b6d9a6c6eff0d9c36b5ace1d0861ef451a152839afa11250c9574

data/README.md CHANGED Viewed

@@ -163,6 +163,20 @@ Once that's done, set an environment variable when you run your app. e.g.:
 GDS_SSO_STRATEGY=real bundle exec rails s
 ```
+### Extra permissions for api users
+By default the mock strategies will create a user with `signin` permission.
+If your application needs different or extra permissions for access, you can specify this by adding the following to your config:
+```ruby
+GDS::SSO.config do |config|
+  # other config here
+  config.additional_mock_permissions_required = ["array", "of", "permissions"]
+```
+The mock bearer token will then ensure that the dummy api user has the required permission.
 ### Testing in your application
 If your app is using `test-unit` or `minitest`, there is a linting test that can verify your `User` model is compatible with `GDS:SSO::User`:

data/lib/gds-sso/bearer_token.rb CHANGED Viewed

@@ -56,9 +56,13 @@ module GDS
           dummy_api_user.email = "dummyapiuser@domain.com"
           dummy_api_user.uid = "#{rand(10000)}"
           dummy_api_user.name = "Dummy API user created by gds-sso"
-          dummy_api_user.permissions = ["signin"]
-          dummy_api_user.save!
         end
+        unless dummy_api_user.has_all_permissions?(GDS::SSO::Config.permissions_for_dummy_api_user)
+          dummy_api_user.permissions = GDS::SSO::Config.permissions_for_dummy_api_user
+        end
+        dummy_api_user.save!
         dummy_api_user
       end
     end

data/lib/gds-sso/config.rb CHANGED Viewed

@@ -25,6 +25,12 @@ module GDS
       mattr_writer :api_only
+      mattr_accessor :additional_mock_permissions_required
+      def self.permissions_for_dummy_api_user
+        ["signin"].push(*additional_mock_permissions_required)
+      end
       def self.user_klass
         user_model.to_s.constantize
       end

data/lib/gds-sso/lint/user_spec.rb CHANGED Viewed

@@ -28,6 +28,27 @@ RSpec.shared_examples "a gds-sso user class" do
     expect(subject).to respond_to(:remotely_signed_out?)
   end
+  describe "#has_all_permissions?" do
+    it "is false when there are no permissions" do
+      subject.update_attributes(permissions: nil)
+      required_permissions = ["signin"]
+      expect(subject.has_all_permissions?(required_permissions)).to be_falsy
+    end
+    it "is false when it does not have all required permissions" do
+      subject.update_attributes(permissions: ["signin"])
+      required_permissions = ["signin", "not_granted_permission_one", "not_granted_permission_two"]
+      expect(subject.has_all_permissions?(required_permissions)).to be false
+    end
+    it "is true when it has all required permissions" do
+      subject.update_attributes(permissions: ["signin", "internal_app"])
+      required_permissions = ["signin", "internal_app"]
+      expect(subject.has_all_permissions?(required_permissions)).to be true
+    end
+  end
   specify "the User class and GDS::SSO::User mixin work together" do
     auth_hash = {
       'uid' => '12345',

data/lib/gds-sso/user.rb CHANGED Viewed

@@ -11,6 +11,14 @@ module GDS
         end
       end
+      def has_all_permissions?(required_permissions)
+        if permissions
+          required_permissions.all? do |required_permission|
+            permissions.include?(required_permission)
+          end
+        end
+      end
       def self.user_params_from_auth_hash(auth_hash)
         {
           'uid' => auth_hash['uid'],

data/lib/gds-sso/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "13.5.1"
+    VERSION = "13.6.0"
   end
 end

data/spec/internal/db/combustion_test.sqlite CHANGED Viewed

Binary file

data/spec/internal/log/test.log CHANGED Viewed

@@ -1,81 +1,29 @@
-  [1m[36m (8.7ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
-  [1m[35m (11.4ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
+  [1m[36m (6.8ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
+  [1m[35m (5.0ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
   [1m[36m (0.1ms)[0m  [1mselect sqlite_version(*)[0m
-  [1m[35m (5.4ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[36m (7.8ms)[0m  [1mcommit transaction[0m
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34983"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (8.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36880"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (4.2ms)[0m  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d34983"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d34983"]]
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 2]]
-  [1m[35m (6.3ms)[0m  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.6ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 2]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d334"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.2ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35232"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d334"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 12ms (Views: 11.5ms | ActiveRecord: 0.0ms)
+  [1m[35m (5.7ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  [1m[36mUser Load (0.4ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "dummyapiuser@domain.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31860"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.7ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39363"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (6.3ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38845"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (6.8ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31699"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (3.9ms)[0m  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d38845"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d38845"]]
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 8]]
-  [1m[35m (6.2ms)[0m  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.5ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 8]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d35812"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (4.2ms)[0m  commit transaction
+  [1m[36mSQL (0.4ms)[0m  [1mINSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["email", "dummyapiuser@domain.com"], ["uid", "6869"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (9.8ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38211"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (7.2ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d35812"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:15:51 +0000
+  [1m[35mSQL (0.4ms)[0m  UPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 1]]
+  [1m[36m (4.9ms)[0m  [1mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:05 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:05 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 583ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.4ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-  [1m[35m (19.3ms)[0m  commit transaction
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mSQL (0.4ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+  [1m[35m (7.6ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -84,226 +32,218 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (7.5ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 2]]
+  [1m[35m (6.5ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 340ms (Views: 3.5ms | ActiveRecord: 28.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:51 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 31ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed 200 OK in 220ms (Views: 19.2ms | ActiveRecord: 16.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as JSON
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.2ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 71ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed 200 OK in 129ms (Views: 0.5ms | ActiveRecord: 1.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 24ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
+Completed   in 51ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:15:52 +0000
-Started GET "/auth/gds/callback?code=403fb0d1ec97649af51d34a0885922c8cf07debe7344a56dc9aa84ee676cabc8&state=748a66d055257f50dd6e45a1ff8c850d158ba585519fedff" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:06 +0000
+Started GET "/auth/gds/callback?code=65c210224f2cc0e5f97baa1963eacb30556d2585d220da71804ff3ef2af033d4&state=9e2243f1b60a6447c2e807f293fb59fb54e7cf30e1daeb18" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"403fb0d1ec97649af51d34a0885922c8cf07debe7344a56dc9aa84ee676cabc8", "state"=>"748a66d055257f50dd6e45a1ff8c850d158ba585519fedff"}
+  Parameters: {"code"=>"65c210224f2cc0e5f97baa1963eacb30556d2585d220da71804ff3ef2af033d4", "state"=>"9e2243f1b60a6447c2e807f293fb59fb54e7cf30e1daeb18"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.3ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 12]]
-  [1m[35m (8.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 14ms (ActiveRecord: 8.8ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 2]]
+  [1m[35m (8.4ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17ms (ActiveRecord: 9.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Started GET "/auth/gds/callback?code=21ad57aeb6cbc4395aa34f175ab0f5fe4458d8ece2b7c8d4b9be155f086a475f&state=6e21c7bcb78b4b88679aef913b38e813bf4f3896e88d0a51" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Started GET "/auth/gds/callback?code=08b9446297e4e10e27f139d6e9509cb71689aa53ab3d84dc88c71e42340b7793&state=4d196b447420f5b1b4796ba876000f63e5f2e516fff1b19a" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"21ad57aeb6cbc4395aa34f175ab0f5fe4458d8ece2b7c8d4b9be155f086a475f", "state"=>"6e21c7bcb78b4b88679aef913b38e813bf4f3896e88d0a51"}
+  Parameters: {"code"=>"08b9446297e4e10e27f139d6e9509cb71689aa53ab3d84dc88c71e42340b7793", "state"=>"4d196b447420f5b1b4796ba876000f63e5f2e516fff1b19a"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:02 +0000
-Started GET "/auth/gds/callback?code=14038c8a0248bd24984494852a5fa349e995812d4406085eb51ccfccfc37d70a&state=7ff6ab7ad0eee8ec2ac4c9dcae08ad818cc7dd89d2b93646" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:17 +0000
+Started GET "/auth/gds/callback?code=54884d39203d875aa0833a58f2000c78c8d752cc7b0a782546164dcc22881a2e&state=173be65563cdd9b7451328bc104b925f0d66d5e2332c1dc6" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"14038c8a0248bd24984494852a5fa349e995812d4406085eb51ccfccfc37d70a", "state"=>"7ff6ab7ad0eee8ec2ac4c9dcae08ad818cc7dd89d2b93646"}
+  Parameters: {"code"=>"54884d39203d875aa0833a58f2000c78c8d752cc7b0a782546164dcc22881a2e", "state"=>"173be65563cdd9b7451328bc104b925f0d66d5e2332c1dc6"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=719d8909be67ddb269b27767dbd0749dab35455bbe20bcd26ce1cec25ddbbd5c&state=0728ab14e4d2bc82b566086d2888f124e2cc6dbad3c9852b" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=7bcf5c9c74154d09cb47b95ff6d6605a44fd93319b63da88921f808a4545c9ec&state=f91eaab3004d810ef14cebf48e326e612b1ae2863f0ca86b" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"719d8909be67ddb269b27767dbd0749dab35455bbe20bcd26ce1cec25ddbbd5c", "state"=>"0728ab14e4d2bc82b566086d2888f124e2cc6dbad3c9852b"}
+  Parameters: {"code"=>"7bcf5c9c74154d09cb47b95ff6d6605a44fd93319b63da88921f808a4545c9ec", "state"=>"f91eaab3004d810ef14cebf48e326e612b1ae2863f0ca86b"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.3ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 8ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=984e3293314d2b147a048b206054b4fd8de7d590793008b70fa9aad3f81bb076&state=201c99f2fcda23d198f358246cb15939ea7c82c572c00d0c" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=dbf128b0e88cf1c90d3451c37afe4e68d5602e5660ad410f044d7b119ff6958c&state=0d69ec9e284f40d94bcda0fcb9b5e1618b62a155185e663c" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"984e3293314d2b147a048b206054b4fd8de7d590793008b70fa9aad3f81bb076", "state"=>"201c99f2fcda23d198f358246cb15939ea7c82c572c00d0c"}
+  Parameters: {"code"=>"dbf128b0e88cf1c90d3451c37afe4e68d5602e5660ad410f044d7b119ff6958c", "state"=>"0d69ec9e284f40d94bcda0fcb9b5e1618b62a155185e663c"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Processing by ExampleController#index as HTML
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=ac8d3b4e3d11487847e594d93277b140b0dd11d5689c5d8ebbcf0c4007703256&state=8d200a74c4c26e61a5674820ba2c00143132bce4a029f582" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:18 +0000
+Started GET "/auth/gds/callback?code=a4970d280569ba78d0c83800d21853f7115c325a33880f9815f44cd6576d12a1&state=74bfb029303fca3b79d5b8ffaded0a832c5fa818cb23ed6b" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ac8d3b4e3d11487847e594d93277b140b0dd11d5689c5d8ebbcf0c4007703256", "state"=>"8d200a74c4c26e61a5674820ba2c00143132bce4a029f582"}
+  Parameters: {"code"=>"a4970d280569ba78d0c83800d21853f7115c325a33880f9815f44cd6576d12a1", "state"=>"74bfb029303fca3b79d5b8ffaded0a832c5fa818cb23ed6b"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[36m (8.4ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:03 +0000
-Started GET "/auth/gds/callback?code=a42cc66b7c08714a86aa1b0fd4fe829eed275b90dd80990fde259abd6fd389c3&state=b77e7afe03bb5fe0230fee7588a9e9fd817d535c13aaf82f" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
+Started GET "/auth/gds/callback?code=dfa9b80b8d6e5b8e542d0158fb3bcb3b54c91ba9f3b939eb7692e14deed29a82&state=53fa98b39f8c811018a7f1f1b0018643fb8caa6cb3cf12ae" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a42cc66b7c08714a86aa1b0fd4fe829eed275b90dd80990fde259abd6fd389c3", "state"=>"b77e7afe03bb5fe0230fee7588a9e9fd817d535c13aaf82f"}
+  Parameters: {"code"=>"dfa9b80b8d6e5b8e542d0158fb3bcb3b54c91ba9f3b939eb7692e14deed29a82", "state"=>"53fa98b39f8c811018a7f1f1b0018643fb8caa6cb3cf12ae"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (7.3ms)[0m  commit transaction
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:19 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=ea4be227e15fee05e27f9fe3445da8a37a8505855bfe6005fea4edeaa88e45ec&state=1bcab3b054b7680473e9ab5c24b567654cb6f69bdd7cdc4a" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
+Started GET "/auth/gds/callback?code=8c27064bbb90991fc55e8fe9a680b6618b62f28afba8d703a07639f9c48125b9&state=93cef03fda0d081d6810eaa7239a522b56e56b842b0ad20a" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ea4be227e15fee05e27f9fe3445da8a37a8505855bfe6005fea4edeaa88e45ec", "state"=>"1bcab3b054b7680473e9ab5c24b567654cb6f69bdd7cdc4a"}
+  Parameters: {"code"=>"8c27064bbb90991fc55e8fe9a680b6618b62f28afba8d703a07639f9c48125b9", "state"=>"93cef03fda0d081d6810eaa7239a522b56e56b842b0ad20a"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.3ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 16ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:19 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:20 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Started GET "/auth/gds/callback?code=3e8cf2dec1562f532d37e19ac4ae275d02573770e2e22010542dee49e01d1386&state=b5306cfd42b8e7d546344d54f80f31484c900d753e028142" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:20 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=3dcb9b256028bf4da62c53911c8d8b35685376ef45320942eaf247500d1fce52&state=47376d3faf4b3746053131991260b33874e5fa42ef899feb" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3e8cf2dec1562f532d37e19ac4ae275d02573770e2e22010542dee49e01d1386", "state"=>"b5306cfd42b8e7d546344d54f80f31484c900d753e028142"}
+  Parameters: {"code"=>"3dcb9b256028bf4da62c53911c8d8b35685376ef45320942eaf247500d1fce52", "state"=>"47376d3faf4b3746053131991260b33874e5fa42ef899feb"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
@@ -311,159 +251,221 @@ Authenticating with gds_sso strategy
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:20 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=d229a130e1aaea3d4242bfeda50599cbd201fbeb809478a7de56fc368a7c4dcd&state=cb92bde06d95b1f03c9d5874a6e821d7a1234c7f5deec91a" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=88c9b1c257952abd27a98131c1af9dd4b28ea84dd1a23a2d99ad3b84dc56b2ac&state=60ab5b1a2af4a62308f6879e994eea656cc3628fe542b013" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d229a130e1aaea3d4242bfeda50599cbd201fbeb809478a7de56fc368a7c4dcd", "state"=>"cb92bde06d95b1f03c9d5874a6e821d7a1234c7f5deec91a"}
+  Parameters: {"code"=>"88c9b1c257952abd27a98131c1af9dd4b28ea84dd1a23a2d99ad3b84dc56b2ac", "state"=>"60ab5b1a2af4a62308f6879e994eea656cc3628fe542b013"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:04 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 2]]
+  [1m[35m (9.1ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
 Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:04 +0000
-Started GET "/auth/gds/callback?code=abe7dbdab2e4f482d01a0bcbc29dd202fc1c474cc83e74c5b0eeca24e7ded0a7&state=f5f792e5354fb43000f91e015faea05b61ea865f91e2b60d" for 127.0.0.1 at 2018-01-23 17:16:05 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:20 +0000
+Started GET "/auth/gds/callback?code=190aa18b2f5f7046dda45e446bde5e8e1be0ac7c79d018ba7f5c5e722bf1a000&state=8134d556b3938fd77ff5425cb0e011a180418fa8b8929366" for 127.0.0.1 at 2018-02-08 12:34:21 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"abe7dbdab2e4f482d01a0bcbc29dd202fc1c474cc83e74c5b0eeca24e7ded0a7", "state"=>"f5f792e5354fb43000f91e015faea05b61ea865f91e2b60d"}
+  Parameters: {"code"=>"190aa18b2f5f7046dda45e446bde5e8e1be0ac7c79d018ba7f5c5e722bf1a000", "state"=>"8134d556b3938fd77ff5425cb0e011a180418fa8b8929366"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
+  [1m[36m (8.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:05 +0000
+Completed 302 Found in 17ms (ActiveRecord: 9.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:21 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:05 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35m (0.1ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
-  [1m[35m (0.8ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
-  [1m[35m (9.7ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
-  [1m[35m (7.1ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:13.649652"], ["updated_at", "2018-01-23 17:16:13.649652"]]
-  [1m[35m (7.3ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (7.1ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (6.8ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[36m (6.9ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39460"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (5.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34554"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.9ms)[0m  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39460"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
+Completed 403 Forbidden in 19ms (Views: 18.3ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36563"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (6.5ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36416"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.1ms)[0m  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36563"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d36563"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.5ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 6]]
+  [1m[35m (5.0ms)[0m  commit transaction
+Completed 200 OK in 13ms (ActiveRecord: 5.8ms)
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 6]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31730"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.9ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31989"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (5.9ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31730"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d31730"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 8]]
+  [1m[36m (5.8ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 10ms (ActiveRecord: 6.3ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 8]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36110"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34771"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (6.0ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d33124"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.6ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32382"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (5.8ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d33124"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.2ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
+  [1m[35m (2.6ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
+  [1m[35m (7.7ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
+  [1m[35m (7.0ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.3ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:34:32.318384"], ["updated_at", "2018-02-08 12:34:32.318384"]]
+  [1m[35m (5.7ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (5.6ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.4ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d37661"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d33957"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
   [1m[35m (6.3ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d33640"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d34705"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.3ms)[0m  [1m[36mcommit transaction[0m
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d37661"}
+  Parameters: {"uid"=>"a1s2d33957"}
   Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 10ms (Views: 9.5ms | ActiveRecord: 0.0ms)
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 14ms (Views: 13.4ms | ActiveRecord: 0.0ms)
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31445"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39964"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36546"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d37065"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.1ms)[0m  [1m[36mcommit transaction[0m
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31445"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d31445"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-  [1m[35m (5.5ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 11ms (ActiveRecord: 5.9ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 4], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d35667"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.3ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d37841"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.0ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d35667"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d35667"], ["LIMIT", 1]]
+  Parameters: {"uid"=>"a1s2d39964"}
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d39964"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 6]]
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
   [1m[35m (5.3ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 8ms (ActiveRecord: 5.7ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 6], ["LIMIT", 1]]
+Completed 200 OK in 11ms (ActiveRecord: 5.8ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 3], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32079"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31005"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (4.3ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d38719"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32809"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.4ms)[0m  [1m[36mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d32079"}
+  Parameters: {"uid"=>"a1s2d31005"}
   Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
   Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
 Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d3596"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.7ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32221"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31434"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (4.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d38288"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (6.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31434"}
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d31434"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 7]]
+  [1m[35m (4.0ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 7ms (ActiveRecord: 4.4ms)
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 7], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39300"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (4.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32754"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.1ms)[0m  [1m[36mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
   Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 12ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 30ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 42ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as JSON
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed   in 52ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-  [1m[35m (4.9ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.8ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -473,18 +475,18 @@ Processing by ExampleController#restricted as JSON
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (5.9ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 11]]
+  [1m[35m (5.3ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 98ms (Views: 1.7ms | ActiveRecord: 13.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (1.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 177ms (Views: 3.4ms | ActiveRecord: 14.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Processing by ExampleController#restricted as JSON
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.8ms)[0m  [1m[36mbegin transaction[0m
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
@@ -494,897 +496,995 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 78ms (Views: 0.7ms | ActiveRecord: 2.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 17ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed 200 OK in 139ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Started GET "/auth/gds/callback?code=91daf7112fcf8d0313f0a45c1bba7a15715b8ca70e0b780694248a9e2bde5f89&state=25eddc4fde2d37ad90157fbb959c73947dc2cf1e364d453e" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:33 +0000
+Started GET "/auth/gds/callback?code=1d4e530ad728f05fb9610e420abf4920c2e10a2c572422afbe6ebe4dbb8bd26b&state=2fa77d7e5569a6dd37c5e97ecdeed137e838b97b3ca59268" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"91daf7112fcf8d0313f0a45c1bba7a15715b8ca70e0b780694248a9e2bde5f89", "state"=>"25eddc4fde2d37ad90157fbb959c73947dc2cf1e364d453e"}
+  Parameters: {"code"=>"1d4e530ad728f05fb9610e420abf4920c2e10a2c572422afbe6ebe4dbb8bd26b", "state"=>"2fa77d7e5569a6dd37c5e97ecdeed137e838b97b3ca59268"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 12]]
-  [1m[35m (7.3ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 11]]
+  [1m[35m (6.3ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
+Completed 302 Found in 15ms (ActiveRecord: 7.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Started GET "/auth/gds/callback?code=0b04d8c48e5fd2478fb8b3af84309f559c1ad05d1b1c21a11b833ce1593c6e39&state=e96239537c0c2f74d1dc27e2afb4bae334eaacb43215638c" for 127.0.0.1 at 2018-01-23 17:16:14 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0b04d8c48e5fd2478fb8b3af84309f559c1ad05d1b1c21a11b833ce1593c6e39", "state"=>"e96239537c0c2f74d1dc27e2afb4bae334eaacb43215638c"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=6c400a531253b352933fa50caceeedd633c1a374f09dd76a3105e407f0e4446c&state=765e268bd9ca801419b7e71627eabed18c4ce8aa5c238e8e" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6c400a531253b352933fa50caceeedd633c1a374f09dd76a3105e407f0e4446c", "state"=>"765e268bd9ca801419b7e71627eabed18c4ce8aa5c238e8e"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=03cb21cbed6480c2234f288bf81895fa754edaa6f48304ce92a28a156cc59e7b&state=195c2aef60ededea8d73dc1bea20607b63353f07897956b4" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=0f74076b646e2d722ca5e5e57756fb0ca120aeb23eb74e209550c9621dd30e84&state=926444cec95118f3c97a745f362e04c7e13f92b1fee29fe1" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"03cb21cbed6480c2234f288bf81895fa754edaa6f48304ce92a28a156cc59e7b", "state"=>"195c2aef60ededea8d73dc1bea20607b63353f07897956b4"}
+  Parameters: {"code"=>"0f74076b646e2d722ca5e5e57756fb0ca120aeb23eb74e209550c9621dd30e84", "state"=>"926444cec95118f3c97a745f362e04c7e13f92b1fee29fe1"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=30de01255a24d9dec3c93fadca99af449ed43e3949c83a6573c6ce1004a4fabe&state=a961609be14f7135eac870b4666dcb6201861f463104fc62" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=0a931600e113e0f0916d5759bdf9155e664840d5a6abfdf8638191ffc446b413&state=d736d515ff987bd90fd1b83045cfb2ae2bb86d76da2d8307" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"30de01255a24d9dec3c93fadca99af449ed43e3949c83a6573c6ce1004a4fabe", "state"=>"a961609be14f7135eac870b4666dcb6201861f463104fc62"}
+  Parameters: {"code"=>"0a931600e113e0f0916d5759bdf9155e664840d5a6abfdf8638191ffc446b413", "state"=>"d736d515ff987bd90fd1b83045cfb2ae2bb86d76da2d8307"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
-Started GET "/auth/gds/callback?code=5e58bbe491f1453c00b63f73929b9c6531f82b91ef0e78b1dc660add49949cae&state=b87c0dbadc989a86f5582926f0a94eebf6ea7bedcc2e53bd" for 127.0.0.1 at 2018-01-23 17:16:15 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:34 +0000
+Started GET "/auth/gds/callback?code=b901872a1f093240a877cb3316be30b92d99d77db3198dd42b40c679758a6cee&state=1bdd936f2a7618eb2390833632a3d6421191c4e809c5b948" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5e58bbe491f1453c00b63f73929b9c6531f82b91ef0e78b1dc660add49949cae", "state"=>"b87c0dbadc989a86f5582926f0a94eebf6ea7bedcc2e53bd"}
+  Parameters: {"code"=>"b901872a1f093240a877cb3316be30b92d99d77db3198dd42b40c679758a6cee", "state"=>"1bdd936f2a7618eb2390833632a3d6421191c4e809c5b948"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Started GET "/auth/gds/callback?code=77dd6a06bbc303a6203f8f87605ab5550216feae3c53db93960f2c8a5448847c&state=0a2a8378d8b0427ed04653829c9005e0ed93009063b46bcf" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=4976153c13193f07010ae49224509456baa1f0bef0e5b46123a32f24fc60eeaa&state=58a02b65a85e0bfa6b66b933dddf3107389e106a3b8a6c9a" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4976153c13193f07010ae49224509456baa1f0bef0e5b46123a32f24fc60eeaa", "state"=>"58a02b65a85e0bfa6b66b933dddf3107389e106a3b8a6c9a"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=cef27d6bd299b129b8e391f9885438fa3fb8eb8a8706c05327ed00b792c9a9e3&state=21a2bd01233c5f374ab27c6fe7edc38ed95fb5573d15bb19" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"77dd6a06bbc303a6203f8f87605ab5550216feae3c53db93960f2c8a5448847c", "state"=>"0a2a8378d8b0427ed04653829c9005e0ed93009063b46bcf"}
+  Parameters: {"code"=>"cef27d6bd299b129b8e391f9885438fa3fb8eb8a8706c05327ed00b792c9a9e3", "state"=>"21a2bd01233c5f374ab27c6fe7edc38ed95fb5573d15bb19"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:35 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a998f94940f771e0e8e770236512a193763b529e98175513922a2b0bee22bd0b&state=3d00f54c2828456a0e02470c06fdcdf7d697ad6537fb85ca" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:35 +0000
+Started GET "/auth/gds/callback?code=733c566ec281b48841390fb5ce1a4367870c25e03716a8e9e72d262fcd0e69a1&state=6fea4856f5aaff154af8312dae04ac8ed36fb24293f49d0b" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a998f94940f771e0e8e770236512a193763b529e98175513922a2b0bee22bd0b", "state"=>"3d00f54c2828456a0e02470c06fdcdf7d697ad6537fb85ca"}
+  Parameters: {"code"=>"733c566ec281b48841390fb5ce1a4367870c25e03716a8e9e72d262fcd0e69a1", "state"=>"6fea4856f5aaff154af8312dae04ac8ed36fb24293f49d0b"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:36 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=e6b16c97c606e602c06aae707e5b94f217b33c6e2d3e883a8af27398f79668a3&state=42dcc37ebdbf81b486a19ccc8aa43a42417419ba00b188e0" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
+Started GET "/auth/gds/callback?code=6f6978c67e21a365bf30c9e64644c60995b4766ea9de384219d75403dd0ee549&state=c0a080b178d8f3cc4a1b379142a2668477d05d4f12c6a80c" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e6b16c97c606e602c06aae707e5b94f217b33c6e2d3e883a8af27398f79668a3", "state"=>"42dcc37ebdbf81b486a19ccc8aa43a42417419ba00b188e0"}
+  Parameters: {"code"=>"6f6978c67e21a365bf30c9e64644c60995b4766ea9de384219d75403dd0ee549", "state"=>"c0a080b178d8f3cc4a1b379142a2668477d05d4f12c6a80c"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:16 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed   in 9ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Started GET "/auth/gds/callback?code=7e2345c293dffd0c7d0859f5cc909c55f8c3cdcc7c9176514d995ee773b9cb7d&state=41867359d8536ed1992ee2643b0308c38a95d150d8b324cf" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7e2345c293dffd0c7d0859f5cc909c55f8c3cdcc7c9176514d995ee773b9cb7d", "state"=>"41867359d8536ed1992ee2643b0308c38a95d150d8b324cf"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:36 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a98605620a3252b49f52d649c68b378e9e08d0c747776b1ae0385e6411078a9f&state=782377e72efdbe0c2b66c925440a3fc5eaf03e9a1f834ae6" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
+Started GET "/auth/gds/callback?code=e943059dd3c1bb27c3f8da43006cedcbf4da44a8251d4cd2ae6a5e416588efce&state=199d5e963fb2d0c67d8a338dde4d1e8d122c5e288585f928" for 127.0.0.1 at 2018-02-08 12:34:36 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a98605620a3252b49f52d649c68b378e9e08d0c747776b1ae0385e6411078a9f", "state"=>"782377e72efdbe0c2b66c925440a3fc5eaf03e9a1f834ae6"}
+  Parameters: {"code"=>"e943059dd3c1bb27c3f8da43006cedcbf4da44a8251d4cd2ae6a5e416588efce", "state"=>"199d5e963fb2d0c67d8a338dde4d1e8d122c5e288585f928"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[35m (7.8ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 11]]
+  [1m[35m (5.2ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:16 +0000
-Started GET "/auth/gds/callback?code=a18d19dff286b1c94f19fe6899efa48d54cd7b0d86696af5158053a036d223fd&state=401b15a073056d265aae12704df93015d82a0094f29d6f8a" for 127.0.0.1 at 2018-01-23 17:16:17 +0000
+Completed   in 2ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
+Started GET "/auth/gds/callback?code=9df48c2400444f28c50d4caa59f8cd72e4b41d4822326547d1f9d37bf9686d8e&state=d3ee4db37f3b45c976d5599a33b06f031e7e1160c3847d46" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a18d19dff286b1c94f19fe6899efa48d54cd7b0d86696af5158053a036d223fd", "state"=>"401b15a073056d265aae12704df93015d82a0094f29d6f8a"}
+  Parameters: {"code"=>"9df48c2400444f28c50d4caa59f8cd72e4b41d4822326547d1f9d37bf9686d8e", "state"=>"d3ee4db37f3b45c976d5599a33b06f031e7e1160c3847d46"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (7.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 11]]
+  [1m[35m (10.7ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 14ms (ActiveRecord: 8.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:17 +0000
+Completed 302 Found in 20ms (ActiveRecord: 11.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:37 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-  [1m[36m (6.4ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
-  [1m[35m (6.6ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Dummy API user created by gds-sso"], ["uid", "7439"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?[0m  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+  [1m[35m (6.3ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (5.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36m (8.6ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
+  [1m[35m (6.1ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
   [1m[36m (0.1ms)[0m  [1mselect sqlite_version(*)[0m
-  [1m[35m (6.7ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+  [1m[35m (5.8ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  [1m[36mUser Load (0.4ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
+  [1m[35mUser Load (0.3ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[36m (5.9ms)[0m  [1mcommit transaction[0m
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[36m (8.4ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3205"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (6.5ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d3478"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.5ms)[0m  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d3205"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 13ms (Views: 12.9ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32498"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (5.7ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35219"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (5.8ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36256"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.2ms)[0m  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d32498"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d32498"]]
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d33293"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.5ms)[0m  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d35219"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d35219"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 4]]
-  [1m[35m (7.7ms)[0m  commit transaction
-Completed 200 OK in 11ms (ActiveRecord: 8.1ms)
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 4]]
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 2]]
+  [1m[35m (5.5ms)[0m  commit transaction
+Completed 200 OK in 13ms (ActiveRecord: 6.1ms)
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 2]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31373"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32016"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
   [1m[35m (5.6ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32429"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35282"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (4.4ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32016"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
+Completed 403 Forbidden in 27ms (Views: 26.8ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d38304"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.5ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32811"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
   [1m[36m (6.9ms)[0m  [1mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+  Parameters: {"uid"=>"a1s2d38304"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38304"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33259"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35mSQL (0.3ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 6]]
   [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 10ms (ActiveRecord: 6.9ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 6]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3801"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (5.5ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34602"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.7ms)[0m  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d33259"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+  [1m[36mSQL (0.4ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32770"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (6.7ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3801"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39976"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (14.2ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32379"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (7.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d37304"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.5ms)[0m  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39976"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d39976"]]
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d37249"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.3ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
+Completed 200 OK in 1ms (ActiveRecord: 0.2ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "dummyapiuser@domain.com"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)  [["email", "dummyapiuser@domain.com"], ["uid", "7434"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (6.5ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
-  [1m[35m (5.2ms)[0m  commit transaction
-Completed 200 OK in 9ms (ActiveRecord: 5.5ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 10]]
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?[0m  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+  [1m[35m (6.1ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 29ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 13ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#restricted as JSON
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-  [1m[35m (7.2ms)[0m  commit transaction
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (7.0ms)[0m  commit transaction
-  Rendered text template (0.0ms)
-Completed 200 OK in 92ms (Views: 3.5ms | ActiveRecord: 15.5ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+Completed   in 19ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Started GET "/auth/gds/callback?code=4739a11f483abcd8ebdf64170ad790eb8eeebc84098ce50108a8e7dd41479708&state=940a69fd2083600a978032d9255b9b2c91a4383c479d2c3f" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4739a11f483abcd8ebdf64170ad790eb8eeebc84098ce50108a8e7dd41479708", "state"=>"940a69fd2083600a978032d9255b9b2c91a4383c479d2c3f"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (6.9ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (6.0ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 24ms (ActiveRecord: 14.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 78ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 11ms (Views: 5.8ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=b43e7720850448d58a0fbb16aac9abbba5555d3dc9ba571fbda9193081f96be3&state=e90e55268e547d927b1656d5c1f7994019f4106e97e80bf6" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:46 +0000
+Started GET "/auth/gds/callback?code=785d0b7a0fded9437df515778d1ecf901b9993da2beaf54e13a0fb8b6d65520c&state=875294be1e77af2e910108e3f3fab42d9d555dad808481fe" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b43e7720850448d58a0fbb16aac9abbba5555d3dc9ba571fbda9193081f96be3", "state"=>"e90e55268e547d927b1656d5c1f7994019f4106e97e80bf6"}
+  Parameters: {"code"=>"785d0b7a0fded9437df515778d1ecf901b9993da2beaf54e13a0fb8b6d65520c", "state"=>"875294be1e77af2e910108e3f3fab42d9d555dad808481fe"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 12]]
-  [1m[35m (6.4ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 11ms (ActiveRecord: 7.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=ad28c5b212a5014bde668312daed640902e06e87740bf9a670c455ddf0477f06&state=561135a89d12e6ef7b7dfa8068535ce6d3c2b1d016d05d9e" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=b1727727e652ae5815c0edc5159a888adf1bf4472df5b3ff84f152248770d34f&state=9075c5146f572de2503977f0c3921a095389f49e27da2c67" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ad28c5b212a5014bde668312daed640902e06e87740bf9a670c455ddf0477f06", "state"=>"561135a89d12e6ef7b7dfa8068535ce6d3c2b1d016d05d9e"}
+  Parameters: {"code"=>"b1727727e652ae5815c0edc5159a888adf1bf4472df5b3ff84f152248770d34f", "state"=>"9075c5146f572de2503977f0c3921a095389f49e27da2c67"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:23 +0000
-Started GET "/auth/gds/callback?code=b8c4461438a6303cb6035a09e95123bba1b6657ec8341f7570a58663d6054196&state=5b690f193aa68e0ebf417044e31701552852f065af2974df" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=85ff6441fd1098c23254cf7bae6e316dd99368d6f8a9ec5f4552492a4cfe435b&state=385878b9b638cd5e6db311e244bc6119b49d58da08a77648" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b8c4461438a6303cb6035a09e95123bba1b6657ec8341f7570a58663d6054196", "state"=>"5b690f193aa68e0ebf417044e31701552852f065af2974df"}
+  Parameters: {"code"=>"85ff6441fd1098c23254cf7bae6e316dd99368d6f8a9ec5f4552492a4cfe435b", "state"=>"385878b9b638cd5e6db311e244bc6119b49d58da08a77648"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 11ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=975e5f50712651ecbef9c61594d6754bdd527da25fd8be5631e207c984cb2ccc&state=1aac7d835f566e4fb96f4f33527a0279f5481ebd839014c0" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"975e5f50712651ecbef9c61594d6754bdd527da25fd8be5631e207c984cb2ccc", "state"=>"1aac7d835f566e4fb96f4f33527a0279f5481ebd839014c0"}
-Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Processing by ExampleController#index as HTML
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=202556d7dc2f8b9066383e72bbd74a55602cd697827d37c2e4fa62ad11ff1268&state=e71db924cb8cfbb0fa3ac7ebbd10377082e80ea49afa24a9" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:47 +0000
+Started GET "/auth/gds/callback?code=af1183090f7c86b04c2eb46f86d742fffebc164d242cf768dcb05be96ce09c3f&state=d6ec8faab9a27c43cb4fe93ccb6cc44c98367a91381ce36d" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"202556d7dc2f8b9066383e72bbd74a55602cd697827d37c2e4fa62ad11ff1268", "state"=>"e71db924cb8cfbb0fa3ac7ebbd10377082e80ea49afa24a9"}
+  Parameters: {"code"=>"af1183090f7c86b04c2eb46f86d742fffebc164d242cf768dcb05be96ce09c3f", "state"=>"d6ec8faab9a27c43cb4fe93ccb6cc44c98367a91381ce36d"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Processing by ExampleController#index as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=e260ffadd922aee49408fdba01481a53923ffa2f8462f23cccf62cbb999f9782&state=107bfc7e38eae0d08dc54d74ff14b15a9c967a57af421cb5" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=9bdc3e80ba7e32a893a8794eace25f48c26a8d9f3de1b53a12c58e524c071943&state=bcb2ff281280fc94511636156e69852a5908a201334041b9" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e260ffadd922aee49408fdba01481a53923ffa2f8462f23cccf62cbb999f9782", "state"=>"107bfc7e38eae0d08dc54d74ff14b15a9c967a57af421cb5"}
+  Parameters: {"code"=>"9bdc3e80ba7e32a893a8794eace25f48c26a8d9f3de1b53a12c58e524c071943", "state"=>"bcb2ff281280fc94511636156e69852a5908a201334041b9"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[36m (8.3ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
+  [1m[35mSQL (0.3ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+  [1m[36m (4.9ms)[0m  [1mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:24 +0000
-Started GET "/auth/gds/callback?code=f1533c60944399f1391a136290e5bfac751d61e1fb98ca9a75a421a666fd5702&state=c80c433c2aa454a67d9228e89f3d981d1929d677fcdc69bf" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=445e139a698170bc331dea278fb7946f0836ae4c13fc1f8b7a1969ff995b1812&state=757eb97322ee40bf9b9ca670f411111c372391900bc5f538" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f1533c60944399f1391a136290e5bfac751d61e1fb98ca9a75a421a666fd5702", "state"=>"c80c433c2aa454a67d9228e89f3d981d1929d677fcdc69bf"}
+  Parameters: {"code"=>"445e139a698170bc331dea278fb7946f0836ae4c13fc1f8b7a1969ff995b1812", "state"=>"757eb97322ee40bf9b9ca670f411111c372391900bc5f538"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (5.5ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (7.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 10ms (ActiveRecord: 6.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 18ms (ActiveRecord: 7.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=ad908d82d833c29cec117f91462504cfed0a67cb9b7233fb0af9893ffc9ecd82&state=f6f9f89788416ca79638e59ea751a0bb916fa03d0819759b" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:48 +0000
+Started GET "/auth/gds/callback?code=d20f54aa80721efc5f8d0b3d0356940f375763fd44addc5f78646d62ee2b3edf&state=4078967dec1dd01dcf7910f84813af0671fa40d3c43abe07" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ad908d82d833c29cec117f91462504cfed0a67cb9b7233fb0af9893ffc9ecd82", "state"=>"f6f9f89788416ca79638e59ea751a0bb916fa03d0819759b"}
+  Parameters: {"code"=>"d20f54aa80721efc5f8d0b3d0356940f375763fd44addc5f78646d62ee2b3edf", "state"=>"4078967dec1dd01dcf7910f84813af0671fa40d3c43abe07"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:29:49 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:25 +0000
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:25 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=d54a02d6befb119141bb82cd97f557576a575fb38635d0c1ed794a97884b1771&state=27889d6abe3e8df526d95349b3ef8a426266d11d4e4c02a9" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Started GET "/auth/gds/callback?code=345be22bc7f3c8eb219d50db560dc0aa63177cf4cbc7bc81dfed10dd1be9d375&state=78b8b0e61a0097c42309286f29d57eb4861d48ed59dc9f82" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d54a02d6befb119141bb82cd97f557576a575fb38635d0c1ed794a97884b1771", "state"=>"27889d6abe3e8df526d95349b3ef8a426266d11d4e4c02a9"}
+  Parameters: {"code"=>"345be22bc7f3c8eb219d50db560dc0aa63177cf4cbc7bc81dfed10dd1be9d375", "state"=>"78b8b0e61a0097c42309286f29d57eb4861d48ed59dc9f82"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.3ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:25 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:25 +0000
-Started GET "/auth/gds/callback?code=87b601ba35d1440b3ccf9392f2a6555b7a3f58663c455ec63e88a26a8716fe2b&state=430e76f078d97eb50813ac831178dbf427f7ab05ace93fd0" for 127.0.0.1 at 2018-01-23 17:16:26 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
+Started GET "/auth/gds/callback?code=102433edeec079b6f80533cb3a99233a34fcfe760dab94605f5d4b02cafc3d98&state=ccbe1f5c927d6a6438a4047cc631333ddeeb5a9a08ab0955" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"87b601ba35d1440b3ccf9392f2a6555b7a3f58663c455ec63e88a26a8716fe2b", "state"=>"430e76f078d97eb50813ac831178dbf427f7ab05ace93fd0"}
+  Parameters: {"code"=>"102433edeec079b6f80533cb3a99233a34fcfe760dab94605f5d4b02cafc3d98", "state"=>"ccbe1f5c927d6a6438a4047cc631333ddeeb5a9a08ab0955"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:26 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:49 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
-Started GET "/auth/gds/callback?code=2018ac4d5ceee1b26137609fd9c339af949dcb288845e2bdd5b276dbf0321d2f&state=b163dea3674ef5feb70b88a71185a5a4cfa3ab911e7eb825" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
+Started GET "/auth/gds/callback?code=ee1c93ab7d9de16f5b62325fcba1d3ef0cf137bbf621c531bca87b76d68b6d98&state=14b024ca931e2f383884cede11e8615857b1003b3675bb14" for 127.0.0.1 at 2018-02-09 08:39:49 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2018ac4d5ceee1b26137609fd9c339af949dcb288845e2bdd5b276dbf0321d2f", "state"=>"b163dea3674ef5feb70b88a71185a5a4cfa3ab911e7eb825"}
+  Parameters: {"code"=>"ee1c93ab7d9de16f5b62325fcba1d3ef0cf137bbf621c531bca87b76d68b6d98", "state"=>"14b024ca931e2f383884cede11e8615857b1003b3675bb14"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:26 +0000
+Completed 302 Found in 9ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:39:50 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35m (0.1ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
-  [1m[35m (0.9ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
-  [1m[35m (8.0ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
-  [1m[35m (8.3ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:31.586695"], ["updated_at", "2018-01-23 17:16:31.586695"]]
-  [1m[35m (8.6ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (17.0ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=17a42fba0db9edb71043d23222be66b12729b473e38d0eba0489fcbc4d155a89&state=24233b213f99d33722d9bee469977a232036881722922f4e" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"17a42fba0db9edb71043d23222be66b12729b473e38d0eba0489fcbc4d155a89", "state"=>"24233b213f99d33722d9bee469977a232036881722922f4e"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (10.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 1]]
-  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 38ms (ActiveRecord: 18.9ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
+  [1m[35mUser Load (0.6ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 6ms (Views: 2.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=2a080321a878353fead65147fe47492be7bf440103035213c313b29cd27440f0&state=0a33c40eac3b37546674a109884d471362f840df31e9c4f4" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2a080321a878353fead65147fe47492be7bf440103035213c313b29cd27440f0", "state"=>"0a33c40eac3b37546674a109884d471362f840df31e9c4f4"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=c38a4bb46e6f6345f1c9b4c0d29ae8afcc1d05d70e19eedcdac6242a2bba082f&state=8bb488516848ec1c43e85a2f48eddfb1854db8f1fce7942d" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c38a4bb46e6f6345f1c9b4c0d29ae8afcc1d05d70e19eedcdac6242a2bba082f", "state"=>"8bb488516848ec1c43e85a2f48eddfb1854db8f1fce7942d"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.2ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 13]]
+  [1m[35m (6.5ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.4ms)[0m  begin transaction
+  [1m[36m (0.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:32 +0000
-Started GET "/auth/gds/callback?code=73de6d7cb00e3af01bcd18b1ac6f452422be789ca5c8ba94e7fc57d2f406676e&state=9e9902a5b41cecea2e9796e3c4742e26dda9d24fad0eeefb" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"73de6d7cb00e3af01bcd18b1ac6f452422be789ca5c8ba94e7fc57d2f406676e", "state"=>"9e9902a5b41cecea2e9796e3c4742e26dda9d24fad0eeefb"}
+Completed 200 OK in 161ms (Views: 0.6ms | ActiveRecord: 9.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 50ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 26ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:50 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  Rendered text template (0.0ms)
+Completed 200 OK in 140ms (Views: 0.6ms | ActiveRecord: 1.5ms)
+  [1m[35m (0.2ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
+  [1m[35m (2.2ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
+  [1m[35m (6.3ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
+  [1m[35m (5.7ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.4ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:34:56.576582"], ["updated_at", "2018-02-08 12:34:56.576582"]]
+  [1m[35m (5.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (6.1ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.3ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Dummy API user created by gds-sso"], ["uid", "3861"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?[0m  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 1]]
+  [1m[35m (4.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (4.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d34287"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36951"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34287"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 13ms (Views: 12.2ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31849"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d38290"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.2ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d31849"}
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d31849"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 5]]
+  [1m[35m (4.4ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 8ms (ActiveRecord: 4.9ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 5], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32707"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36330"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32707"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d35739"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.7ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d3413"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.2ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35739"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d35739"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 9]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 10ms (ActiveRecord: 6.2ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 9], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d37118"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.7ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d39642"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.8ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 11ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Started GET "/auth/gds/callback?code=9af7243c1ac724bfeeda182a5f25fadd8d47c03ddbc96ac1899e3c4ae7d32a59&state=26d434db4ecc9a77e5ce47dfff041811d85dbd4f15088b89" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9af7243c1ac724bfeeda182a5f25fadd8d47c03ddbc96ac1899e3c4ae7d32a59", "state"=>"26d434db4ecc9a77e5ce47dfff041811d85dbd4f15088b89"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (4.6ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 23ms (ActiveRecord: 12.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 6ms (Views: 2.3ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:57 +0000
+Started GET "/auth/gds/callback?code=ef7ecf0f3e00b6e3b3ec52ab51701d6666c98ca428744612cb6181822a970558&state=03c36bd4f2d3ce8838266eb3de8515c5850e45231f529f18" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ef7ecf0f3e00b6e3b3ec52ab51701d6666c98ca428744612cb6181822a970558", "state"=>"03c36bd4f2d3ce8838266eb3de8515c5850e45231f529f18"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=cf796aed477875c71ffb7fc64921620f91b12bb794165afac3ee69c83b52809b&state=cd5d7ece9a1bd24010805d148e353641f8c58cffda4ec127" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cf796aed477875c71ffb7fc64921620f91b12bb794165afac3ee69c83b52809b", "state"=>"cd5d7ece9a1bd24010805d148e353641f8c58cffda4ec127"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=06eb6ce45a8b70ba29e781a64dd2283da3946b92c754ce19325e56026f2b233e&state=25d9a2c9d384ee8a223185d5581554287be3acaf8c73cf0d" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"06eb6ce45a8b70ba29e781a64dd2283da3946b92c754ce19325e56026f2b233e", "state"=>"25d9a2c9d384ee8a223185d5581554287be3acaf8c73cf0d"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=bd9ba3b67355cc8208df1dec441e3acc80455dd91c7334dce1e1e6b30cc43bb2&state=b7dee273dc2301ca31ec943fac81efab8f506645a89a4a50" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:58 +0000
+Started GET "/auth/gds/callback?code=8c3abefcaba41b602083524884e7253fda99bd6cf6abd5a0290cc6f4d2d756be&state=5d73527d853731d05753dd87e86acfb9fe3356ff656224c5" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"bd9ba3b67355cc8208df1dec441e3acc80455dd91c7334dce1e1e6b30cc43bb2", "state"=>"b7dee273dc2301ca31ec943fac81efab8f506645a89a4a50"}
+  Parameters: {"code"=>"8c3abefcaba41b602083524884e7253fda99bd6cf6abd5a0290cc6f4d2d756be", "state"=>"5d73527d853731d05753dd87e86acfb9fe3356ff656224c5"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=5ae2793133376ba020e354f32dcb6e916a2d1bea7565fdb9967acd170d9dbd42&state=2f3482b86e454876ce678417d934f70afc2dea7c63d35e2d" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
+Started GET "/auth/gds/callback?code=9d78b2e636bda2d1da65cdd7ec4cd32e353a2b40ca1d3b1e50f58a0b03c03261&state=2756c214f6c38f31d25cf897a432ffbc04d5de5ff802751d" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5ae2793133376ba020e354f32dcb6e916a2d1bea7565fdb9967acd170d9dbd42", "state"=>"2f3482b86e454876ce678417d934f70afc2dea7c63d35e2d"}
+  Parameters: {"code"=>"9d78b2e636bda2d1da65cdd7ec4cd32e353a2b40ca1d3b1e50f58a0b03c03261", "state"=>"2756c214f6c38f31d25cf897a432ffbc04d5de5ff802751d"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 1]]
-  [1m[35m (7.1ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+  [1m[35mSQL (0.5ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 13]]
+  [1m[35m (8.5ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
-Started GET "/auth/gds/callback?code=0eb80c3582b538ea33f48bbde7765b4a757c2c684288b0f365802f81ed10a94d&state=59a0890064a4f89f2217c34f38ecf633d7c93f498cb500a7" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed   in 4ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
+Started GET "/auth/gds/callback?code=8d75295dee950d4e27afb5fa3c74a74bd3d9b49e5ae678e0150299178346ab05&state=f0683ba6b322a00e1b8fa85d417a4d04d318e01c80beb86d" for 127.0.0.1 at 2018-02-08 12:34:59 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0eb80c3582b538ea33f48bbde7765b4a757c2c684288b0f365802f81ed10a94d", "state"=>"59a0890064a4f89f2217c34f38ecf633d7c93f498cb500a7"}
+  Parameters: {"code"=>"8d75295dee950d4e27afb5fa3c74a74bd3d9b49e5ae678e0150299178346ab05", "state"=>"f0683ba6b322a00e1b8fa85d417a4d04d318e01c80beb86d"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 1]]
-  [1m[35m (10.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (6.9ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 15ms (ActiveRecord: 11.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:33 +0000
+Completed 302 Found in 16ms (ActiveRecord: 8.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=c1fdf98b5a864edaf59fcd1e56055ab03e91cea5019ff7937bd5795cee4226f9&state=3349bb3c25b824fad9b7f19c292158c2d651bd18c6d9e619" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=1cb565292a6e21dd952e56386530d3f8ce14acfcbca26d453cd1934514037dee&state=3651845c88c128768aaeeff81019c1c5a11c1f1ccd5e71b2" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c1fdf98b5a864edaf59fcd1e56055ab03e91cea5019ff7937bd5795cee4226f9", "state"=>"3349bb3c25b824fad9b7f19c292158c2d651bd18c6d9e619"}
+  Parameters: {"code"=>"1cb565292a6e21dd952e56386530d3f8ce14acfcbca26d453cd1934514037dee", "state"=>"3651845c88c128768aaeeff81019c1c5a11c1f1ccd5e71b2"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
-Started GET "/auth/gds/callback?code=123efcc87f2412daa5e1ec5b16d8e99f19608c8c2a060f9b9118e9e819a6ef10&state=cbe8977a609bbbb011cf6abc9b9b53cb0c5d6a14756d7be4" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
+Started GET "/auth/gds/callback?code=0e20b04eec25e1573d0d08b65a0ed3ae33ed0124df1978ea689eca17029c028b&state=7f34d518ad87ceafbeb42f5defb4c0d61be49aab536a21eb" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"123efcc87f2412daa5e1ec5b16d8e99f19608c8c2a060f9b9118e9e819a6ef10", "state"=>"cbe8977a609bbbb011cf6abc9b9b53cb0c5d6a14756d7be4"}
+  Parameters: {"code"=>"0e20b04eec25e1573d0d08b65a0ed3ae33ed0124df1978ea689eca17029c028b", "state"=>"7f34d518ad87ceafbeb42f5defb4c0d61be49aab536a21eb"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:00 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 4ms (Views: 0.7ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=611fe54437d99e9ef911f40f0eb6d88da725d6db15ab2839893ae823ec9fc1cf&state=bc388674129216ae86a40fda0bb2259b689b195cb130a47f" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=fd4be11484b5c5f77758ca697ed201dfa003a4fdfe5b3ce90c5cfc88587f8b01&state=1f0bb77e1b40c1bbbd2f85a383be0c97edc82d5e2e9e023f" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"611fe54437d99e9ef911f40f0eb6d88da725d6db15ab2839893ae823ec9fc1cf", "state"=>"bc388674129216ae86a40fda0bb2259b689b195cb130a47f"}
+  Parameters: {"code"=>"fd4be11484b5c5f77758ca697ed201dfa003a4fdfe5b3ce90c5cfc88587f8b01", "state"=>"1f0bb77e1b40c1bbbd2f85a383be0c97edc82d5e2e9e023f"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
+Completed 200 OK in 3ms (Views: 0.7ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:00 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:34 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 4ms (Views: 0.9ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
-Started GET "/auth/gds/callback?code=12cd97d03fa4a8af87cb27aee46071db01ea6660ef561c46956e2bd1e86d1d64&state=ce170ec55c3c39bd341a58bcca295dd7ec4b3b6c4e5a1bcc" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:00 +0000
+Started GET "/auth/gds/callback?code=84d6dd0567baf355853b3293a09241568f2afed1ded51bc2f110dfed92454548&state=49c3760f413ce5079b460207ea298b94f6fc73475094cb12" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"12cd97d03fa4a8af87cb27aee46071db01ea6660ef561c46956e2bd1e86d1d64", "state"=>"ce170ec55c3c39bd341a58bcca295dd7ec4b3b6c4e5a1bcc"}
+  Parameters: {"code"=>"84d6dd0567baf355853b3293a09241568f2afed1ded51bc2f110dfed92454548", "state"=>"49c3760f413ce5079b460207ea298b94f6fc73475094cb12"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.2ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:34 +0000
+Completed 302 Found in 9ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:35 +0000
+Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:01 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 54ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:01 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
 Processing by ExampleController#restricted as JSON
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.3ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 1]]
-  [1m[35m (7.8ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed   in 30ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[36mUser Load (0.7ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 13]]
+  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -1395,10 +1495,13 @@ Processing by ExampleController#restricted as JSON
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 109ms (Views: 0.3ms | ActiveRecord: 9.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 131ms (Views: 0.6ms | ActiveRecord: 8.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 47ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:01 +0000
+Processing by ExampleController#restricted as JSON
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -1412,438 +1515,363 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 86ms (Views: 0.3ms | ActiveRecord: 1.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 14ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:35 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (6.8ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d36378"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.8ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d3113"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.2ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d36378"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 11ms (Views: 9.7ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38646"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.6ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36943"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38646"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d38646"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 5]]
-  [1m[35m (8.4ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 12ms (ActiveRecord: 8.8ms)
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 5], ["LIMIT", 1]]
-  [1m[35m (0.6ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39704"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.9ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d39238"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32434"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.3ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32843"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.3ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 130ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+  [1m[36m (9.7ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
+  [1m[35m (6.6ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
+  [1m[36m (0.2ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (6.1ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38779"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (7.3ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31167"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.0ms)[0m  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32434"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d32434"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
-  [1m[35m (6.7ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 10ms (ActiveRecord: 7.1ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 9], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31342"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.5ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32479"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (9.4ms)[0m  [1m[36mcommit transaction[0m
+  Parameters: {"uid"=>"a1s2d38779"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.4ms)
+Completed 403 Forbidden in 27ms (Views: 26.4ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36167"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (5.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d38152"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.7ms)[0m  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31342"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 2ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-  [1m[36m (7.6ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
-  [1m[35m (7.7ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
-  [1m[36m (0.1ms)[0m  [1mselect sqlite_version(*)[0m
-  [1m[35m (7.3ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  Parameters: {"uid"=>"a1s2d36167"}
+  [1m[36mUser Load (0.4ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d36167"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
+  [1m[35m (6.1ms)[0m  commit transaction
+Completed 200 OK in 26ms (ActiveRecord: 7.0ms)
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 3]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d39125"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.7ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32225"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (6.9ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34488"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.9ms)[0m  commit transaction
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3868"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
-Completed 200 OK in 7ms (ActiveRecord: 0.3ms)
+  Parameters: {"uid"=>"a1s2d39125"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d38732"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39399"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (7.1ms)[0m  [1mcommit transaction[0m
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d33167"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.9ms)[0m  commit transaction
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31544"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38732"}
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38732"]]
+  Parameters: {"uid"=>"a1s2d33167"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d33167"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 3]]
-  [1m[36m (6.6ms)[0m  [1mcommit transaction[0m
-Completed 200 OK in 10ms (ActiveRecord: 6.9ms)
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[35mSQL (0.3ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
+  [1m[36m (6.5ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 11ms (ActiveRecord: 7.1ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 7]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38945"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (6.4ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36820"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (4.9ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d33233"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.2ms)[0m  commit transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32742"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.7ms)[0m  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38945"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 13ms (Views: 12.4ms | ActiveRecord: 0.0ms)
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31359"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (7.6ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d31852"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (9.7ms)[0m  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d31359"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d31359"]]
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  [1m[36mUser Load (0.3ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "user@example.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 7]]
-  [1m[35m (9.7ms)[0m  commit transaction
-Completed 200 OK in 14ms (ActiveRecord: 10.0ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 7]]
+  [1m[36mSQL (0.4ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (5.5ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32067"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.2ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "dummyapiuser@domain.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36149"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (6.2ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32067"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "user@example.com"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (8.1ms)[0m  commit transaction
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "users" ("email", "uid", "name", "permissions") VALUES (?, ?, ?, ?)  [["email", "dummyapiuser@domain.com"], ["uid", "4995"], ["name", "Dummy API user created by gds-sso"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (7.3ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?[0m  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+  [1m[35m (5.9ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 8ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Started GET "/auth/gds/callback?code=6106d79a79b74b6ce966fc681eadc9cf6183d8cafaac9e1d9aa03ea7c6e6be12&state=f153a3d2c341f99dc776933bbc53eca91287c695d2cc6239" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=922fadee30090cbdcebda4d1db90e6501dcf38d45cd64253d613ad57c50768f6&state=1bd747ab2b82ee6a79ee5eb8e2bffea45c341903e92b0798" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6106d79a79b74b6ce966fc681eadc9cf6183d8cafaac9e1d9aa03ea7c6e6be12", "state"=>"f153a3d2c341f99dc776933bbc53eca91287c695d2cc6239"}
+  Parameters: {"code"=>"922fadee30090cbdcebda4d1db90e6501dcf38d45cd64253d613ad57c50768f6", "state"=>"1bd747ab2b82ee6a79ee5eb8e2bffea45c341903e92b0798"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (7.5ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[36m (6.3ms)[0m  [1mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+  [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (6.9ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.2ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (6.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 20ms (ActiveRecord: 14.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 302 Found in 25ms (ActiveRecord: 14.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.4ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 6ms (Views: 3.8ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 200 OK in 8ms (Views: 6.1ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Started GET "/auth/gds/callback?code=537ea2c55975819c6dcf755928345c86fc3ebf88017260f4d915da9bb0e01f74&state=cd553d8d2c035594abc2d5790a4c8ad05d5ca54d333801a8" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=3cc116f044a0f1a5b73daa3fc2010923fd5cd407da471079c46b5ddfc16947cd&state=ce604ba4fd4c8f5492c81fb1a8793a206e70ead154bd5daf" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"537ea2c55975819c6dcf755928345c86fc3ebf88017260f4d915da9bb0e01f74", "state"=>"cd553d8d2c035594abc2d5790a4c8ad05d5ca54d333801a8"}
+  Parameters: {"code"=>"3cc116f044a0f1a5b73daa3fc2010923fd5cd407da471079c46b5ddfc16947cd", "state"=>"ce604ba4fd4c8f5492c81fb1a8793a206e70ead154bd5daf"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
+Completed 302 Found in 8ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:41 +0000
-Processing by ExampleController#index as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=75762056352bf45881acad93cf87b40584548efe92ca742d40eea5796e7f95d1&state=60274fa363afb7ea3c4e855de18380b22dd6564878783054" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:10 +0000
+Started GET "/auth/gds/callback?code=9e92cc0e05edcf84fa2fbfce736bf7826cbaa5c08387a20255f5ca7c170ec762&state=be34c97b502d163149879b9e84035490fd74561d5904d1a2" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"75762056352bf45881acad93cf87b40584548efe92ca742d40eea5796e7f95d1", "state"=>"60274fa363afb7ea3c4e855de18380b22dd6564878783054"}
+  Parameters: {"code"=>"9e92cc0e05edcf84fa2fbfce736bf7826cbaa5c08387a20255f5ca7c170ec762", "state"=>"be34c97b502d163149879b9e84035490fd74561d5904d1a2"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=9f2b674c802fb034c682048ed6fbcde2488bcdbc3ec8168298118af59d6e044e&state=7f43402cf964163c666a8cae676b451ebdf47254573162fa" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=678dfb75630433aacb9bc9eb92d7d42478df658a8272f7f7d410f153b256d5bd&state=ea15ee062a93e39372d8e1e5468fa45abbbd028830c39aae" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"9f2b674c802fb034c682048ed6fbcde2488bcdbc3ec8168298118af59d6e044e", "state"=>"7f43402cf964163c666a8cae676b451ebdf47254573162fa"}
+  Parameters: {"code"=>"678dfb75630433aacb9bc9eb92d7d42478df658a8272f7f7d410f153b256d5bd", "state"=>"ea15ee062a93e39372d8e1e5468fa45abbbd028830c39aae"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=ed46f97d99c5ad6f300cdda521b8c1f64e0c44dfd7db2322da18a68f034837eb&state=2fde8b89ee229191745897442c29fd955af24b299d3353b4" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=9f18d90444de6194014b4aadc03307939b4f41372cbe3e27e180a07ad891d2f2&state=1c1397b30ccbbc9d8eae9b0ceeac969c802271b4d5bed10d" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ed46f97d99c5ad6f300cdda521b8c1f64e0c44dfd7db2322da18a68f034837eb", "state"=>"2fde8b89ee229191745897442c29fd955af24b299d3353b4"}
+  Parameters: {"code"=>"9f18d90444de6194014b4aadc03307939b4f41372cbe3e27e180a07ad891d2f2", "state"=>"1c1397b30ccbbc9d8eae9b0ceeac969c802271b4d5bed10d"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.1ms)
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=1176766ab4954ad6859e4dd74e8451b2e7ff2c24f7bf2a9f4195cfca1a04887d&state=22615fea0ce095a9335bdd74c0ff84b4962a30de5fbf53ab" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:11 +0000
+Started GET "/auth/gds/callback?code=cbf7bbeef9b1e602db3d2867cbebb35827a5679a49e5914adc28a94f806b9d4d&state=10608cad5cd2c8c0d6c0e74f8bebd848e66a1c611727f430" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1176766ab4954ad6859e4dd74e8451b2e7ff2c24f7bf2a9f4195cfca1a04887d", "state"=>"22615fea0ce095a9335bdd74c0ff84b4962a30de5fbf53ab"}
+  Parameters: {"code"=>"cbf7bbeef9b1e602db3d2867cbebb35827a5679a49e5914adc28a94f806b9d4d", "state"=>"10608cad5cd2c8c0d6c0e74f8bebd848e66a1c611727f430"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:42 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 13]]
+  [1m[36m (6.6ms)[0m  [1mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:42 +0000
-Started GET "/auth/gds/callback?code=8d1bde939b83603fedd3af07e0c33fdfbb6e8865854eea34291da532773df4a0&state=1593a7cf9b1b98e2bd7c669230a893b4823f8fb2de2646b7" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed   in 2ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=f39e57f5ec4fb1e28cde28599e288c92d097da75b49d14c68f84b797e0896cd8&state=e370235bfce5e63ef45ea4b056484aa44cf8397c4aa898bb" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"8d1bde939b83603fedd3af07e0c33fdfbb6e8865854eea34291da532773df4a0", "state"=>"1593a7cf9b1b98e2bd7c669230a893b4823f8fb2de2646b7"}
+  Parameters: {"code"=>"f39e57f5ec4fb1e28cde28599e288c92d097da75b49d14c68f84b797e0896cd8", "state"=>"e370235bfce5e63ef45ea4b056484aa44cf8397c4aa898bb"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (20.7ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 28ms (ActiveRecord: 21.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
-Started GET "/auth/gds/callback?code=12140e420d4d908b4b64d228583445680dcf7909e2197b9b736172bb7701797f&state=c235ca078b03dc2b41f2801367dfd1b9677716ed9a774544" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=5c7add1bb87111e8229f3b0af67cd1744ab750f21abcc3aa0bfb2c1e60ba7100&state=3d02f060cb789adf9b948dd34fbfbf211566b712889d5a27" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"12140e420d4d908b4b64d228583445680dcf7909e2197b9b736172bb7701797f", "state"=>"c235ca078b03dc2b41f2801367dfd1b9677716ed9a774544"}
+  Parameters: {"code"=>"5c7add1bb87111e8229f3b0af67cd1744ab750f21abcc3aa0bfb2c1e60ba7100", "state"=>"3d02f060cb789adf9b948dd34fbfbf211566b712889d5a27"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:12 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:12 +0000
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=16ac32f84623ed4f68818264eb2ef44114b1a87676cd2cb44b4741e573f8fa23&state=c9d60f158b3ee597fe06ff96fe18a421f81d0a52b4ed67f3" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:12 +0000
+Started GET "/auth/gds/callback?code=d9af6b7311360a4d09e6beffa720f23dd1abf696bd543eb54bfdfe3aa3aa29f3&state=054693995d098c042a0409a7df5bc738ad39dd74305c8878" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"16ac32f84623ed4f68818264eb2ef44114b1a87676cd2cb44b4741e573f8fa23", "state"=>"c9d60f158b3ee597fe06ff96fe18a421f81d0a52b4ed67f3"}
+  Parameters: {"code"=>"d9af6b7311360a4d09e6beffa720f23dd1abf696bd543eb54bfdfe3aa3aa29f3", "state"=>"054693995d098c042a0409a7df5bc738ad39dd74305c8878"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:13 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:43 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=90d741d593cffcaa80b0bc5b5d2de50e4dc5acaeadf41743a1b8084f44897c32&state=f5fb0f62b214bd9b9e90f506e366e3edb85d635d540d93e3" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
+Started GET "/auth/gds/callback?code=554f6372219e0526f841246a888938fdb280266920c5713688387e100ee8c2e3&state=4867f16b47e36e99d7ce17ec09c5d8ed1e72348e3aab9771" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"90d741d593cffcaa80b0bc5b5d2de50e4dc5acaeadf41743a1b8084f44897c32", "state"=>"f5fb0f62b214bd9b9e90f506e366e3edb85d635d540d93e3"}
+  Parameters: {"code"=>"554f6372219e0526f841246a888938fdb280266920c5713688387e100ee8c2e3", "state"=>"4867f16b47e36e99d7ce17ec09c5d8ed1e72348e3aab9771"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[36m (10.6ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:43 +0000
-Started GET "/auth/gds/callback?code=afc5d8ec921423e82ded653ce384613f07962359d1d331d654a8c735a83b3ba3&state=2eda5b67171a2e64f78f886ab25a9877673ac8101e911645" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
+Started GET "/auth/gds/callback?code=887524eabd650c84d480a9b860d0264a5e0a40e1dc6b080d7ea38290a2f8d815&state=c73bc03a1883b7a940b6c85b30a328b649653918d8aea5f5" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"afc5d8ec921423e82ded653ce384613f07962359d1d331d654a8c735a83b3ba3", "state"=>"2eda5b67171a2e64f78f886ab25a9877673ac8101e911645"}
+  Parameters: {"code"=>"887524eabd650c84d480a9b860d0264a5e0a40e1dc6b080d7ea38290a2f8d815", "state"=>"c73bc03a1883b7a940b6c85b30a328b649653918d8aea5f5"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  begin transaction
-  [1m[36mSQL (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (7.0ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 7.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:13 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as JSON
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.4ms)[0m  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
-  [1m[36m (7.7ms)[0m  [1mcommit transaction[0m
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+Completed   in 51ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.2ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 13]]
+  [1m[35m (6.3ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   Rendered text template (0.0ms)
-Completed 200 OK in 80ms (Views: 0.4ms | ActiveRecord: 8.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 129ms (Views: 0.6ms | ActiveRecord: 8.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:13 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 13ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.0ms)[0m  [1mcommit transaction[0m
-  [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
@@ -1851,385 +1879,399 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   Rendered text template (0.0ms)
-Completed 200 OK in 93ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:44 +0000
+Completed 200 OK in 116ms (Views: 0.4ms | ActiveRecord: 1.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:14 +0000
 Processing by ExampleController#restricted as JSON
 Completed   in 24ms (ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
-  [1m[35m (0.8ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
-  [1m[35m (6.7ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
-  [1m[35m (8.7ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+  [1m[35m (0.2ms)[0m  [1m[35mDROP TABLE IF EXISTS "users"[0m
+  [1m[35m (1.7ms)[0m  [1m[34mSELECT sqlite_version(*)[0m
+  [1m[35m (8.2ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
+  [1m[35m (7.8ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.4ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-01-23 17:16:49.799868"], ["updated_at", "2018-01-23 17:16:49.799868"]]
-  [1m[35m (4.2ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (6.1ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.1ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", "2018-02-08 12:35:20.397485"], ["updated_at", "2018-02-08 12:35:20.397485"]]
+  [1m[35m (6.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (6.3ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.3ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", "environment"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38555"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d34557"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38555"}
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d38555"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 1]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 11ms (ActiveRecord: 6.2ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 1], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d37911"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (5.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32835"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d37911"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 12ms (Views: 11.2ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32101"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (7.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31994"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (8.8ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32101"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d36631"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (6.9ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d35426"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (4.9ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d36631"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d36631"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 7]]
+  [1m[35m (7.2ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 11ms (ActiveRecord: 7.7ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 7], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38855"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (8.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d35784"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.9ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.2ms)
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (6.7ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 6ms (ActiveRecord: 0.0ms)
-Started GET "/" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#index as HTML
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 2.8ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (9.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "dummyapiuser@domain.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Dummy API user created by gds-sso"], ["uid", "2096"], ["email", "dummyapiuser@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (7.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "permissions" = ? WHERE "users"."id" = ?[0m  [["permissions", "---\n- signin\n- extra_permission\n"], ["id", 12]]
+  [1m[35m (8.5ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=a9ce83eca750a3acb886bd980109a7460030ba4ae34811860a6af12dc56d1fee&state=631641b49f5c4cc84f372f0c2d278a1ffe52846f9a5720b2" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a9ce83eca750a3acb886bd980109a7460030ba4ae34811860a6af12dc56d1fee", "state"=>"631641b49f5c4cc84f372f0c2d278a1ffe52846f9a5720b2"}
-Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+Completed   in 14ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[35m (0.2ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+  [1m[35m (7.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (5.3ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 2]]
-  [1m[35m (4.2ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 16ms (ActiveRecord: 10.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (5.6ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=d030ff31e907ea07c245d2f883f3473e09d2585af84690b451ffb8a971e3229d&state=637cebcfea31685c91f69fc6a5f6fd5d5412fa6bfd0778ec" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d030ff31e907ea07c245d2f883f3473e09d2585af84690b451ffb8a971e3229d", "state"=>"637cebcfea31685c91f69fc6a5f6fd5d5412fa6bfd0778ec"}
-Authenticating with gds_sso strategy
+Completed 200 OK in 151ms (Views: 1.7ms | ActiveRecord: 16.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
   [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 200 OK in 116ms (Views: 0.6ms | ActiveRecord: 1.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 21ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 43ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=8317ae69e828dac16c0aa7a8a19e18e6e1914ce3320e1b463c71dc37e3b26b03&state=fb7236519484b53a53e0cca046b58a32413538aaec613a58" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
+Started GET "/auth/gds/callback?code=259edae08f10a888a26e125af0bd12f1ceb5057e99faa943d8a577594cb22610&state=fd7d0e8341af861e44f62f51da9ec8a5a69b5717517fe96d" for 127.0.0.1 at 2018-02-08 12:35:21 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"8317ae69e828dac16c0aa7a8a19e18e6e1914ce3320e1b463c71dc37e3b26b03", "state"=>"fb7236519484b53a53e0cca046b58a32413538aaec613a58"}
+  Parameters: {"code"=>"259edae08f10a888a26e125af0bd12f1ceb5057e99faa943d8a577594cb22610", "state"=>"fd7d0e8341af861e44f62f51da9ec8a5a69b5717517fe96d"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 13]]
+  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 302 Found in 15ms (ActiveRecord: 7.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
+Completed 200 OK in 3ms (Views: 0.6ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:50 +0000
-Started GET "/auth/gds/callback?code=d2d3651c07e4c501c7fa73f24ebeb494024174f199ef51ac56c3a345725f663a&state=e0fc93d6db0a7f169dec35d354fe994531ca8b9ca4d1965b" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=bed5d512f30db125d17758a67c70589a99a2e01ec8674941937927dac81933e3&state=367a3ffcbfc0123809a4100b1be49b9d22b0df59db67e57b" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d2d3651c07e4c501c7fa73f24ebeb494024174f199ef51ac56c3a345725f663a", "state"=>"e0fc93d6db0a7f169dec35d354fe994531ca8b9ca4d1965b"}
+  Parameters: {"code"=>"bed5d512f30db125d17758a67c70589a99a2e01ec8674941937927dac81933e3", "state"=>"367a3ffcbfc0123809a4100b1be49b9d22b0df59db67e57b"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 7ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 4ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=369c086cb730b105a20645be2666f4c210a5bf392f9fe49c358f219875fca26a&state=9091de2512356f92ef1d6317200c0b7f0865005152d11825" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=6e5453ddbe9c3610a82f87ac4d3d600de3f08c3815f06aa531d049dc6ffa1e91&state=5b3c261beee72fdb06239c386875e23256b8220523e6d328" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"369c086cb730b105a20645be2666f4c210a5bf392f9fe49c358f219875fca26a", "state"=>"9091de2512356f92ef1d6317200c0b7f0865005152d11825"}
+  Parameters: {"code"=>"6e5453ddbe9c3610a82f87ac4d3d600de3f08c3815f06aa531d049dc6ffa1e91", "state"=>"5b3c261beee72fdb06239c386875e23256b8220523e6d328"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.9ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 6ms (ActiveRecord: 1.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=967d35ddd16ab6835e05e15507d4b3de38df3192fc9d4dbaaff38a0a854a8e2d&state=c03637a006789a2fa9cf52aeae57e39236406c68ddc5d010" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
+Started GET "/auth/gds/callback?code=ca189ca72544b9a66632faff3894b193b24b89b1b9d5486e3c353308b10ec59b&state=e5f74303e88e6836c08c4ad8145bb258930b50b1e31e5c4f" for 127.0.0.1 at 2018-02-08 12:35:22 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"967d35ddd16ab6835e05e15507d4b3de38df3192fc9d4dbaaff38a0a854a8e2d", "state"=>"c03637a006789a2fa9cf52aeae57e39236406c68ddc5d010"}
+  Parameters: {"code"=>"ca189ca72544b9a66632faff3894b193b24b89b1b9d5486e3c353308b10ec59b", "state"=>"e5f74303e88e6836c08c4ad8145bb258930b50b1e31e5c4f"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:51 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:51 +0000
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
-Started GET "/auth/gds/callback?code=19ec16425236a08a3f6864245e6f1a46f6dcefbdbc582932553c5dc8deddf32a&state=8b8fbe1cc8c344e535a10791e6ffe541be6b3d0ee1e86538" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=400cb676ebbe2591173e6e35c76ba52d1b8a209e44e629db0f8ac6b80cdedcf8&state=0f969f7a954a897e10db14aac7dbbb096f62ac5887cb0979" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"19ec16425236a08a3f6864245e6f1a46f6dcefbdbc582932553c5dc8deddf32a", "state"=>"8b8fbe1cc8c344e535a10791e6ffe541be6b3d0ee1e86538"}
+  Parameters: {"code"=>"400cb676ebbe2591173e6e35c76ba52d1b8a209e44e629db0f8ac6b80cdedcf8", "state"=>"0f969f7a954a897e10db14aac7dbbb096f62ac5887cb0979"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.3ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:11:51 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=cad5f13d761480b34e9224a8d82a4321350858467384b95df90e52b065b8ca59&state=e8ca0265470ac7f618850aa1a978d2ce526183aa73f05af5" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cad5f13d761480b34e9224a8d82a4321350858467384b95df90e52b065b8ca59", "state"=>"e8ca0265470ac7f618850aa1a978d2ce526183aa73f05af5"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.7ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.2ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 200 OK in 5ms (Views: 0.5ms | ActiveRecord: 0.7ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 13]]
+  [1m[35m (8.2ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=297989a2ae99bb0eedc98eaaf32e038d0106646ca1d313101343ca9a7dd95b45&state=40718a3fec89954747b948a1f20ffd3eb59137aaa0dd098c" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 2ms (ActiveRecord: 0.4ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
+Started GET "/auth/gds/callback?code=4d6fe8e1808970fdf7a5f0500749915e01f6cf3a2a956c8515d0b9121570b4f3&state=ae5a72220d0a71607d54c7e29f2df4c708d3c3d3e14d9c3e" for 127.0.0.1 at 2018-02-08 12:35:23 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"297989a2ae99bb0eedc98eaaf32e038d0106646ca1d313101343ca9a7dd95b45", "state"=>"40718a3fec89954747b948a1f20ffd3eb59137aaa0dd098c"}
+  Parameters: {"code"=>"4d6fe8e1808970fdf7a5f0500749915e01f6cf3a2a956c8515d0b9121570b4f3", "state"=>"ae5a72220d0a71607d54c7e29f2df4c708d3c3d3e14d9c3e"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 13]]
+  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 14ms (ActiveRecord: 7.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
-Started GET "/auth/gds/callback?code=54377010f1a9c07a15d4423dd035d0c1c5c321cf7d61a0297accb5fc4d79c593&state=a62d8da933475177c35f7d4a2db72612b9ef4d78b3498df8" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=5f7c066490e4caa68d0a52033453072d064c14e777b06f8a2f161e47a2f0105e&state=3a08fe5362b8eebb42719da8373934729415df0da666a2d4" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"54377010f1a9c07a15d4423dd035d0c1c5c321cf7d61a0297accb5fc4d79c593", "state"=>"a62d8da933475177c35f7d4a2db72612b9ef4d78b3498df8"}
+  Parameters: {"code"=>"5f7c066490e4caa68d0a52033453072d064c14e777b06f8a2f161e47a2f0105e", "state"=>"3a08fe5362b8eebb42719da8373934729415df0da666a2d4"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-24 13:21:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=adbddef8e27bcdb699d4e7da6151954aab434834ee9a31e9f488b25a6889fdbe&state=d829ac64295a4ec3ae1a8829e62b4e631a6702438523fe4e" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
+Started GET "/auth/gds/callback?code=ac6f1c431d4166e5553b1ef58651995276560e93a9013e0eb6731136a56b7f5c&state=68dbf137439dcf120ad9a65867e74bf10fa7ff120c00b2ba" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"adbddef8e27bcdb699d4e7da6151954aab434834ee9a31e9f488b25a6889fdbe", "state"=>"d829ac64295a4ec3ae1a8829e62b4e631a6702438523fe4e"}
+  Parameters: {"code"=>"ac6f1c431d4166e5553b1ef58651995276560e93a9013e0eb6731136a56b7f5c", "state"=>"68dbf137439dcf120ad9a65867e74bf10fa7ff120c00b2ba"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (1.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.2ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 1.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:24 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.8ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.1ms)
-Completed 200 OK in 8ms (Views: 1.3ms | ActiveRecord: 0.8ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.6ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 2]]
-  [1m[35m (7.1ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Started GET "/auth/gds/callback?code=4156d050f22f9369523ef5c16050fe4010c77b30a5e6705de17cdd6862d644ca&state=9d23eeb323692c3ab4744a7cd99c4a2056bd77dfad6fcffd" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=945580dad7da4b1a340f3032b838042b86947c400bc7a5ccf6e6bf0feccfbf25&state=322ddc743d54791baf5c3c8b31da6eaa55d337d579a8c3af" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"4156d050f22f9369523ef5c16050fe4010c77b30a5e6705de17cdd6862d644ca", "state"=>"9d23eeb323692c3ab4744a7cd99c4a2056bd77dfad6fcffd"}
+  Parameters: {"code"=>"945580dad7da4b1a340f3032b838042b86947c400bc7a5ccf6e6bf0feccfbf25", "state"=>"322ddc743d54791baf5c3c8b31da6eaa55d337d579a8c3af"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.5ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.6ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 2]]
-  [1m[35m (9.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 18ms (ActiveRecord: 10.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 36ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:52 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2018-01-23 17:16:53 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 2]]
-  [1m[35m (6.6ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:30:24 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 112ms (Views: 0.3ms | ActiveRecord: 7.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2018-01-23 17:16:53 +0000
-Processing by ExampleController#restricted as JSON
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Started GET "/auth/gds/callback?code=7aa6dc10642ec0a5a82aee1454d676ca106d20c6736dabc043c4d97fb0bf45e7&state=7ac6752753943390bc49aee8ee3c18989d98a72ce31f4f15" for 127.0.0.1 at 2018-02-08 12:35:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7aa6dc10642ec0a5a82aee1454d676ca106d20c6736dabc043c4d97fb0bf45e7", "state"=>"7ac6752753943390bc49aee8ee3c18989d98a72ce31f4f15"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE User Load (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-08 12:35:25 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 77ms (Views: 0.3ms | ActiveRecord: 0.8ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d35183"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (8.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d3850"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.1ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31284"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.4ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d379"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.3ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d31284"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.5ms)
-Completed 403 Forbidden in 9ms (Views: 8.8ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d3661"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.5ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31303"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.8ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d3661"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d3661"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.4ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 7]]
-  [1m[35m (7.0ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 10ms (ActiveRecord: 7.6ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 7], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d395"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (5.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36582"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (5.8ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d395"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d3568"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (6.0ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31082"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (6.0ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d3568"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d3568"], ["LIMIT", 1]]
-  [1m[35m (0.0ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 11]]
-  [1m[35m (6.1ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 9ms (ActiveRecord: 6.4ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 11], ["LIMIT", 1]]
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2018-02-09 08:40:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2018-02-09 08:40:25 +0000