RubyGems - gds-sso - Versions diffs - 6.0.0 → 7.0.0 - Mend

gds-sso 6.0.0 → 7.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

data/README.md +2 -1
data/app/controllers/api/user_controller.rb +1 -1
data/lib/gds-sso/user.rb +2 -2
data/lib/gds-sso/version.rb +1 -1
data/lib/gds-sso/warden_config.rb +1 -1
data/spec/controller/api_user_controller_spec.rb +2 -2
data/spec/internal/app/models/user.rb +1 -1
data/spec/internal/db/combustion_test.sqlite +0 -0
data/spec/internal/db/schema.rb +1 -1
data/spec/internal/log/test.log +2292 -0
data/test/user_test.rb +2 -2
metadata +6 -6

data/spec/internal/log/test.log CHANGED Viewed

@@ -8187,3 +8187,2295 @@ Authenticating with gds_bearer_token strategy
 ' WHERE "users"."id" = 11[0m
   [1m[35m (13.3ms)[0m  commit transaction
 Completed 200 OK in 91.9ms (Views: 0.2ms | ActiveRecord: 28.7ms)
+Connecting to database specified by database.yml
+  [1m[36m (1.0ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (16.6ms)[0m  DROP TABLE "users"
+  [1m[36m (13.5ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (1.9ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36499"]]
+  [1m[35m (49.4ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31029"]]
+  [1m[36m (17.1ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36499"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 7.5ms (Views: 6.8ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3895"]]
+  [1m[35m (18.4ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33240"]]
+  [1m[36m (13.9ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3895"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3895' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (12.5ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 25.9ms (ActiveRecord: 12.9ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3188"]]
+  [1m[36m (21.9ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35121"]]
+  [1m[35m (44.9ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3188"}
+Completed 403 Forbidden in 1.7ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39205"]]
+  [1m[36m (15.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35990"]]
+  [1m[35m (16.9ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3203"]]
+  [1m[35m (21.8ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31661"]]
+  [1m[36m (31.3ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3203"}
+  [1m[35mUser Load (0.4ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3203' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.3ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (15.1ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 31.9ms (ActiveRecord: 15.8ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 14:53:14 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.9ms (Views: 1.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:14 +0000
+Started GET "/auth/gds/callback?code=06726d4a0bc07792dccc837b0f84f328d9ada346e0fa7047ea7e936464c1fb6a&state=c0d66efb0e433e29d3c83da3d1ea09a48733d8600216406c" for 127.0.0.1 at 2013-11-04 14:53:15 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"06726d4a0bc07792dccc837b0f84f328d9ada346e0fa7047ea7e936464c1fb6a", "state"=>"c0d66efb0e433e29d3c83da3d1ea09a48733d8600216406c"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (14.6ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (12.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.1ms (ActiveRecord: 27.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Started GET "/auth/gds/callback?code=f148b65d7bdda006a9a6373f45924020b5c06b6168341b95d49fd41db6732687&state=8c560bb3107cdfec52a8ec9de907b26ffb8516e90b1c61a1" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f148b65d7bdda006a9a6373f45924020b5c06b6168341b95d49fd41db6732687", "state"=>"8c560bb3107cdfec52a8ec9de907b26ffb8516e90b1c61a1"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.4ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 18.5ms (ActiveRecord: 10.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Started GET "/auth/gds/callback?code=fbaeeaad7852416e960a0f8c41e71d00bd57f90db3ec4af5cb35018b20b593d1&state=845d7304f00743be31a1af26a2844f67d241e75b661d7b0e" for 127.0.0.1 at 2013-11-04 14:53:16 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"fbaeeaad7852416e960a0f8c41e71d00bd57f90db3ec4af5cb35018b20b593d1", "state"=>"845d7304f00743be31a1af26a2844f67d241e75b661d7b0e"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.3ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.7ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.4ms (ActiveRecord: 10.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Started GET "/auth/gds/callback?code=9f5486bee554a2ad173289d4f9e4a2ddaeb214099e96ddfdb9c8438461610abd&state=08d34c341460a4e1d61e7a9b16b9f17f9ef6729ae2decd92" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9f5486bee554a2ad173289d4f9e4a2ddaeb214099e96ddfdb9c8438461610abd", "state"=>"08d34c341460a4e1d61e7a9b16b9f17f9ef6729ae2decd92"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (7.6ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (5.2ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 21.0ms (ActiveRecord: 13.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.8ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Started GET "/auth/gds/callback?code=b720026a318f8e82780bea827ee9e4a9e1d0d89bc817bfa5af576225c5cc9efa&state=1623f52829d3d70cac12dcefc2f8634a2a1a1cd041c7cbb1" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b720026a318f8e82780bea827ee9e4a9e1d0d89bc817bfa5af576225c5cc9efa", "state"=>"1623f52829d3d70cac12dcefc2f8634a2a1a1cd041c7cbb1"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (6.3ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (32.2ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 46.5ms (ActiveRecord: 38.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.8ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:17 +0000
+Started GET "/auth/gds/callback?code=05a06a48cab9ea38f6d93ec9880743b7d00dacba1fbf076c2600abd5cd7ad87b&state=8bcbb55b93c32a724c26b534ec01a8e0c8dab0e365b46b1e" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"05a06a48cab9ea38f6d93ec9880743b7d00dacba1fbf076c2600abd5cd7ad87b", "state"=>"8bcbb55b93c32a724c26b534ec01a8e0c8dab0e365b46b1e"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (16.3ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (15.4ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 40.0ms (ActiveRecord: 32.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.6ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.7ms (Views: 1.9ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.5ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Started GET "/auth/gds/callback?code=c45cce8ffe57ffea85f13c6048d7ddc7f96c7bf0f535260b7078a5f82faf67cf&state=126877e1589904c7c219dc66edbc88c12a7237599e116fef" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"c45cce8ffe57ffea85f13c6048d7ddc7f96c7bf0f535260b7078a5f82faf67cf", "state"=>"126877e1589904c7c219dc66edbc88c12a7237599e116fef"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (38.3ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (10.4ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 56.1ms (ActiveRecord: 49.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:18 +0000
+Started GET "/auth/gds/callback?code=9860037820951412f75aeb7aca06a4eafb1c311234565e384d07882407b67ffa&state=1401a7586ab3dbf27d58f9c74b5b83032985ea4cf1e9cc8e" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9860037820951412f75aeb7aca06a4eafb1c311234565e384d07882407b67ffa", "state"=>"1401a7586ab3dbf27d58f9c74b5b83032985ea4cf1e9cc8e"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (12.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (22.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 43.0ms (ActiveRecord: 35.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:58:19 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 10:58:19 +0000
+Started GET "/auth/gds/callback?code=8feddcb054934cfbf8d2164c43a9320029aaef7dc4763573e41e43cf1f9a6758&state=43b29c93f0f71b31e80bd19fdb4227b1d1927ad5bde1b167" for 127.0.0.1 at 2013-11-05 10:58:19 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8feddcb054934cfbf8d2164c43a9320029aaef7dc4763573e41e43cf1f9a6758", "state"=>"43b29c93f0f71b31e80bd19fdb4227b1d1927ad5bde1b167"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (29.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (3.6ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 40.8ms (ActiveRecord: 33.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:58:19 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Started GET "/auth/gds/callback?code=fe26dae9665c2fee5f2729804bdbc2d118f00fd97d66a965b3522d52e76dbcd7&state=ff4cec5214be14b0250709cd3cd649308285a6c0c136b49e" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"fe26dae9665c2fee5f2729804bdbc2d118f00fd97d66a965b3522d52e76dbcd7", "state"=>"ff4cec5214be14b0250709cd3cd649308285a6c0c136b49e"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (12.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (36.3ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 57.8ms (ActiveRecord: 49.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:19 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 2.3ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:48:19 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:20 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.1ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:53:20 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (13.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (26.4ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 79.9ms (Views: 0.5ms | ActiveRecord: 40.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:53:20 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.3ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (12.6ms)[0m  commit transaction
+Completed 200 OK in 71.1ms (Views: 0.3ms | ActiveRecord: 27.4ms)
+Connecting to database specified by database.yml
+  [1m[36m (0.8ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (27.3ms)[0m  DROP TABLE "users"
+  [1m[36m (14.7ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (2.0ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3950"]]
+  [1m[35m (18.4ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39071"]]
+  [1m[36m (15.0ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3950"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (12.2ms)
+Completed 403 Forbidden in 17.9ms (Views: 17.2ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3848"]]
+  [1m[35m (37.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3682"]]
+  [1m[36m (26.2ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3848"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3848' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (18.4ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 27.3ms (ActiveRecord: 18.8ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38622"]]
+  [1m[36m (23.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34018"]]
+  [1m[35m (59.8ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38622"}
+Completed 403 Forbidden in 1.7ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35732"]]
+  [1m[36m (22.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39986"]]
+  [1m[35m (14.7ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.0ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32902"]]
+  [1m[35m (24.5ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38871"]]
+  [1m[36m (16.5ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32902"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d32902' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (63.3ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 67.7ms (ActiveRecord: 63.6ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 14:57:18 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.9ms (Views: 1.5ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:18 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:18 +0000
+Started GET "/auth/gds/callback?code=6523e9eefc06b21b57524f2e6b00fd0f7380afa648c50a84c2639fa023d41da7&state=f08907b2174d5f997abd1830f9956c56b78bcc0d17fef96a" for 127.0.0.1 at 2013-11-04 14:57:19 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"6523e9eefc06b21b57524f2e6b00fd0f7380afa648c50a84c2639fa023d41da7", "state"=>"f08907b2174d5f997abd1830f9956c56b78bcc0d17fef96a"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (14.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (22.9ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 44.3ms (ActiveRecord: 37.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:19 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:19 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:19 +0000
+Started GET "/auth/gds/callback?code=15ad67d3f290a61f7b518c78100143d6f232f6193ef47b7f088767bec062d434&state=e7562a405a239f21f3c322c931ea07082b5e5c5c0aa02da5" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"15ad67d3f290a61f7b518c78100143d6f232f6193ef47b7f088767bec062d434", "state"=>"e7562a405a239f21f3c322c931ea07082b5e5c5c0aa02da5"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (3.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (3.7ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.0ms (ActiveRecord: 8.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Started GET "/auth/gds/callback?code=543d3d1694e849a4e64634965ba893817ac02ece0f6d03ac100aad63ba83f0ac&state=f9ff9dc9e4a3227bce79cf5b2c4c5bdebc48fcfafc1fa26f" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"543d3d1694e849a4e64634965ba893817ac02ece0f6d03ac100aad63ba83f0ac", "state"=>"f9ff9dc9e4a3227bce79cf5b2c4c5bdebc48fcfafc1fa26f"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (27.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 39.1ms (ActiveRecord: 31.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.7ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Started GET "/auth/gds/callback?code=d3b327860a52c4e8f42c523bd20ebe0f7ac1f93d6a53a269b9dc7398b2be259d&state=b7de822d6a291141397f4b6ce10a0dd798c18a2c78cb3927" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d3b327860a52c4e8f42c523bd20ebe0f7ac1f93d6a53a269b9dc7398b2be259d", "state"=>"b7de822d6a291141397f4b6ce10a0dd798c18a2c78cb3927"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.4ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 18.2ms (ActiveRecord: 10.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.9ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:20 +0000
+Started GET "/auth/gds/callback?code=0ef1b000ae067c654134ab31c03c27f7858e910cb347e9dfe7f8713585070b92&state=348b4cabd989365e379ed96f0f868e9f42c52f7c2493e3a7" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"0ef1b000ae067c654134ab31c03c27f7858e910cb347e9dfe7f8713585070b92", "state"=>"348b4cabd989365e379ed96f0f868e9f42c52f7c2493e3a7"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (17.4ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (9.7ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 35.1ms (ActiveRecord: 27.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.8ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Started GET "/auth/gds/callback?code=8125dcd72f186b7feb785978f6538585aae7987948453c8a3f4f7b32cb5529db&state=108ff3f3ae3e28e9046bee2786378e60cb7dea1585a7b2c8" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8125dcd72f186b7feb785978f6538585aae7987948453c8a3f4f7b32cb5529db", "state"=>"108ff3f3ae3e28e9046bee2786378e60cb7dea1585a7b2c8"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (23.4ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.3ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 41.5ms (ActiveRecord: 30.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.2ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.9ms (Views: 1.9ms | ActiveRecord: 0.2ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:21 +0000
+Started GET "/auth/gds/callback?code=e821b1b9ff9d08d9d77ef4aa29bc7c1186f4e11b4f9690c57fde46c2b2e6ac5c&state=5652b193a12f3c7141c8fcaef91ee803e9c4721cc643f8de" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"e821b1b9ff9d08d9d77ef4aa29bc7c1186f4e11b4f9690c57fde46c2b2e6ac5c", "state"=>"5652b193a12f3c7141c8fcaef91ee803e9c4721cc643f8de"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.5ms (ActiveRecord: 12.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Started GET "/auth/gds/callback?code=dab7f1966109f9030abc4c9f014283301612f8a61c846d763efa72b9d1949c83&state=3c265d92341a04132a51bcc3ca9b23e3f1e51da07fb18177" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dab7f1966109f9030abc4c9f014283301612f8a61c846d763efa72b9d1949c83", "state"=>"3c265d92341a04132a51bcc3ca9b23e3f1e51da07fb18177"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.7ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (13.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 36.3ms (ActiveRecord: 28.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 11:02:22 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 11:02:22 +0000
+Started GET "/auth/gds/callback?code=6bc1a6226923682ce79faecd0c7b605279c693cac4c8f7c8dc4eb8ee9a636562&state=61b08f4472418cbf0f04aa3961aa1a943de5e102639269b5" for 127.0.0.1 at 2013-11-05 11:02:22 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"6bc1a6226923682ce79faecd0c7b605279c693cac4c8f7c8dc4eb8ee9a636562", "state"=>"61b08f4472418cbf0f04aa3961aa1a943de5e102639269b5"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (8.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 29.8ms (ActiveRecord: 22.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 11:02:22 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:57:22 +0000
+Started GET "/auth/gds/callback?code=8644d4f33da02d60b3d6c01951d5aeadcd05a07f779f2332fee3bd4e9cae50e3&state=8dee45f043f6f8685fb6a7fe85791a702b8907d6ded9e63e" for 127.0.0.1 at 2013-11-04 14:57:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8644d4f33da02d60b3d6c01951d5aeadcd05a07f779f2332fee3bd4e9cae50e3", "state"=>"8dee45f043f6f8685fb6a7fe85791a702b8907d6ded9e63e"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (21.7ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 40.7ms (ActiveRecord: 32.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:23 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:52:23 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:23 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.1ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:57:23 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (12.6ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (13.9ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 64.2ms (Views: 0.2ms | ActiveRecord: 27.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:57:23 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (17.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.5ms)[0m  commit transaction
+Completed 200 OK in 87.8ms (Views: 0.2ms | ActiveRecord: 32.6ms)
+Connecting to database specified by database.yml
+  [1m[36m (0.8ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (43.1ms)[0m  DROP TABLE "users"
+  [1m[36m (21.7ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (2.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d326"]]
+  [1m[35m (18.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39034"]]
+  [1m[36m (16.4ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d326"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.7ms)
+Completed 403 Forbidden in 6.8ms (Views: 6.1ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33800"]]
+  [1m[35m (51.0ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32959"]]
+  [1m[36m (17.9ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33800"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d33800' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (18.2ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 37.2ms (ActiveRecord: 18.6ms)
+  [1m[35mUser Load (0.3ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31577"]]
+  [1m[36m (14.9ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3392"]]
+  [1m[35m (49.9ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31577"}
+Completed 403 Forbidden in 1.7ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3170"]]
+  [1m[36m (19.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35949"]]
+  [1m[35m (13.0ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32504"]]
+  [1m[35m (14.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37684"]]
+  [1m[36m (13.0ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32504"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d32504' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (45.1ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 49.5ms (ActiveRecord: 45.5ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-06 17:46:49 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.8ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:49 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:49 +0000
+Started GET "/auth/gds/callback?code=3144d74f111bf5981034b9dcee0d94a02c0bc2277cff644bb406b54269756ce5&state=73210209439dff30038aff64ff67f25436d70222cef4c708" for 127.0.0.1 at 2013-11-06 17:46:50 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"3144d74f111bf5981034b9dcee0d94a02c0bc2277cff644bb406b54269756ce5", "state"=>"73210209439dff30038aff64ff67f25436d70222cef4c708"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (14.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (45.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 66.8ms (ActiveRecord: 60.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:50 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:50 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:50 +0000
+Started GET "/auth/gds/callback?code=8e626979c90717068751e717ccc11ed0cd8213c352eb170428da39093e5ca20e&state=e54880e1e22c7b5f4879466f9faff35dbcb0633b0f11046d" for 127.0.0.1 at 2013-11-06 17:46:50 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8e626979c90717068751e717ccc11ed0cd8213c352eb170428da39093e5ca20e", "state"=>"e54880e1e22c7b5f4879466f9faff35dbcb0633b0f11046d"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.9ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.2ms (ActiveRecord: 25.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Started GET "/auth/gds/callback?code=7f75c9678822704190a50305fde10a70e4d5dbe11a25c3231f824934ad04f8d7&state=e1c14be217db6e4cb1dcc3c48ecc37ab80738a93d2b42a49" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7f75c9678822704190a50305fde10a70e4d5dbe11a25c3231f824934ad04f8d7", "state"=>"e1c14be217db6e4cb1dcc3c48ecc37ab80738a93d2b42a49"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (6.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.6ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 20.7ms (ActiveRecord: 13.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Started GET "/auth/gds/callback?code=ea7453d36c93aaec69cbe4599ae38f683f907868597e4d42e9a5f3f15b50b38a&state=07e30914377ae326f26b557b9590e4d3b6e5020dcff5a572" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ea7453d36c93aaec69cbe4599ae38f683f907868597e4d42e9a5f3f15b50b38a", "state"=>"07e30914377ae326f26b557b9590e4d3b6e5020dcff5a572"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (13.8ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (12.4ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 34.2ms (ActiveRecord: 26.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:51 +0000
+Started GET "/auth/gds/callback?code=4ebe2eb5d129b66775e23cb0944e5e9ce9b4f7a5b6858759da2c4cd2686bf057&state=f5aeef45797ecca1a7a68b11b483768c958ad05fc2be8834" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4ebe2eb5d129b66775e23cb0944e5e9ce9b4f7a5b6858759da2c4cd2686bf057", "state"=>"f5aeef45797ecca1a7a68b11b483768c958ad05fc2be8834"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (8.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 20.7ms (ActiveRecord: 13.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Started GET "/auth/gds/callback?code=a9e0cb8429ed2b5c8fc20593ae2b8d9b42356023cdbf30a6da3c72ab500c14b6&state=6ccac22d2bbadd5703d1fc0a28f353bba79a92bf3e9ea365" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"a9e0cb8429ed2b5c8fc20593ae2b8d9b42356023cdbf30a6da3c72ab500c14b6", "state"=>"6ccac22d2bbadd5703d1fc0a28f353bba79a92bf3e9ea365"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (6.1ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.9ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.3ms (ActiveRecord: 11.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (6.1ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.7ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Started GET "/auth/gds/callback?code=e10e68bda70950d8d26d21522e273add9ba549a6b0d8a0fd19bb24046653cad6&state=e7dfadafe9c96cfc6367850ca7d66d1c03d5d781b0b7d238" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"e10e68bda70950d8d26d21522e273add9ba549a6b0d8a0fd19bb24046653cad6", "state"=>"e7dfadafe9c96cfc6367850ca7d66d1c03d5d781b0b7d238"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (10.9ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 29.0ms (ActiveRecord: 22.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:52 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Started GET "/auth/gds/callback?code=f1b1f695738669cc168af6829dc2776cd08a3f092c62c879fb108d67f570f60a&state=9a39df313afe7e12ff5ff7598b3bf1d1e49975ba2bd185ae" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f1b1f695738669cc168af6829dc2776cd08a3f092c62c879fb108d67f570f60a", "state"=>"9a39df313afe7e12ff5ff7598b3bf1d1e49975ba2bd185ae"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (16.0ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (9.8ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.1ms (ActiveRecord: 26.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-07 13:51:53 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-07 13:51:53 +0000
+Started GET "/auth/gds/callback?code=35222d3a35cd2ccfa17bcbadc4f961ebef52ec7149ce0ced6d3332ea755f2396&state=d71d6c22a479ada2d30b3ae490fd8ca6c5e478d34d3bd644" for 127.0.0.1 at 2013-11-07 13:51:53 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"35222d3a35cd2ccfa17bcbadc4f961ebef52ec7149ce0ced6d3332ea755f2396", "state"=>"d71d6c22a479ada2d30b3ae490fd8ca6c5e478d34d3bd644"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.3ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (8.0ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 25.6ms (ActiveRecord: 18.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-07 13:51:53 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-06 17:46:53 +0000
+Started GET "/auth/gds/callback?code=7ac79b2d6c71cd05d1f4e0fc6660144c64c988a0a69464fa6d27ebe750a32b4c&state=5015a361126ec3f15aa0d59deb2fddd53529a5fb78ce2d61" for 127.0.0.1 at 2013-11-06 17:46:54 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7ac79b2d6c71cd05d1f4e0fc6660144c64c988a0a69464fa6d27ebe750a32b4c", "state"=>"5015a361126ec3f15aa0d59deb2fddd53529a5fb78ce2d61"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (42.0ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 64.8ms (ActiveRecord: 56.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:54 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-07 13:41:54 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:54 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 6.9ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-06 17:46:54 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (7.6ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (17.3ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 58.6ms (Views: 0.4ms | ActiveRecord: 25.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-06 17:46:54 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (16.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (11.2ms)[0m  commit transaction
+Completed 200 OK in 82.6ms (Views: 0.3ms | ActiveRecord: 27.9ms)
+Connecting to database specified by database.yml
+  [1m[36m (0.8ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (23.5ms)[0m  DROP TABLE "users"
+  [1m[36m (13.3ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (2.0ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38230"]]
+  [1m[35m (26.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35602"]]
+  [1m[36m (27.9ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38230"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (13.1ms)
+Completed 403 Forbidden in 18.9ms (Views: 18.2ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3328"]]
+  [1m[35m (52.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37283"]]
+  [1m[36m (16.2ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3328"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3328' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (22.5ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 31.1ms (ActiveRecord: 22.9ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37431"]]
+  [1m[36m (19.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37412"]]
+  [1m[35m (12.5ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d37431"}
+Completed 403 Forbidden in 1.8ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36141"]]
+  [1m[36m (15.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35540"]]
+  [1m[35m (47.5ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d357"]]
+  [1m[35m (15.2ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3580"]]
+  [1m[36m (15.6ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d357"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d357' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (53.0ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 57.4ms (ActiveRecord: 53.4ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-08 14:47:06 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.8ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:06 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:06 +0000
+Started GET "/auth/gds/callback?code=d4511e53b9abd965f3595a247e507d54dd3fce55a984a9355b4d26cef31b2712&state=78c429951376e527b6978caf44ca97e17fa2fa55ec1abc77" for 127.0.0.1 at 2013-11-08 14:47:07 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d4511e53b9abd965f3595a247e507d54dd3fce55a984a9355b4d26cef31b2712", "state"=>"78c429951376e527b6978caf44ca97e17fa2fa55ec1abc77"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (35.9ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 57.3ms (ActiveRecord: 50.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:07 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Started GET "/auth/gds/callback?code=4b7ad14e0455c3da5f408120116b640e94d72c31ffe68e646f5ce8cc7d6405e6&state=393752b84fc58af21ac2d5db1d9c47faa072269d499669c2" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4b7ad14e0455c3da5f408120116b640e94d72c31ffe68e646f5ce8cc7d6405e6", "state"=>"393752b84fc58af21ac2d5db1d9c47faa072269d499669c2"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.4ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.3ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.2ms (ActiveRecord: 9.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Started GET "/auth/gds/callback?code=614cf71fa0731ff14d8845afb80207c5fb1853a7bb56da15e455d3aedcac4d6e&state=1cd84871ecc06fbe00682977252c39e94ab7c9dbe895f1a7" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"614cf71fa0731ff14d8845afb80207c5fb1853a7bb56da15e455d3aedcac4d6e", "state"=>"1cd84871ecc06fbe00682977252c39e94ab7c9dbe895f1a7"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (17.6ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (5.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 30.2ms (ActiveRecord: 23.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:08 +0000
+Started GET "/auth/gds/callback?code=36e9b0e5ad83d2031b66453db2162340df11709faab16b9f42a0e0314aa17a0a&state=41c80f6e0b9cd6e9390bdc0247f58f3f728823353810bd4b" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"36e9b0e5ad83d2031b66453db2162340df11709faab16b9f42a0e0314aa17a0a", "state"=>"41c80f6e0b9cd6e9390bdc0247f58f3f728823353810bd4b"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.8ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (3.4ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 17.4ms (ActiveRecord: 9.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Started GET "/auth/gds/callback?code=610ccfeebb25e1eb50e0d050ac1d89b798760d53134366fa47db76517a039a28&state=71fad6c7a516a79a2323ccddd9a7ee5a2299127171a88f45" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"610ccfeebb25e1eb50e0d050ac1d89b798760d53134366fa47db76517a039a28", "state"=>"71fad6c7a516a79a2323ccddd9a7ee5a2299127171a88f45"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (15.6ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 37.7ms (ActiveRecord: 30.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Started GET "/auth/gds/callback?code=3018b9c29dff911c3391b72a9440202c5ca28fe734633364ecda51e74d467c50&state=24539d85d63c7ca7bcc64fce3769779a247fc031a4ae6a04" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"3018b9c29dff911c3391b72a9440202c5ca28fe734633364ecda51e74d467c50", "state"=>"24539d85d63c7ca7bcc64fce3769779a247fc031a4ae6a04"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (16.0ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.9ms (ActiveRecord: 27.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:09 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.6ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.8ms (Views: 1.9ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.5ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Started GET "/auth/gds/callback?code=11262864dac7b5748763fa7bfa1bb3392a6559dcf4c48621d633f7af27530df4&state=162f3bb99bb82007f86536f4091ffdd10251dc74bb98a854" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"11262864dac7b5748763fa7bfa1bb3392a6559dcf4c48621d633f7af27530df4", "state"=>"162f3bb99bb82007f86536f4091ffdd10251dc74bb98a854"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (13.3ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (11.0ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 31.8ms (ActiveRecord: 24.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Started GET "/auth/gds/callback?code=dddeddc33498f17d2535d8503c383a85d60647e80d1a7d16a4e2dc157224d545&state=5c9346b3cec8b8ab243afa4cf46ef6f300cbbfc733e8c7c8" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dddeddc33498f17d2535d8503c383a85d60647e80d1a7d16a4e2dc157224d545", "state"=>"5c9346b3cec8b8ab243afa4cf46ef6f300cbbfc733e8c7c8"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (13.2ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 31.5ms (ActiveRecord: 23.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:10 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 10:52:10 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-09 10:52:10 +0000
+Started GET "/auth/gds/callback?code=7777f0245ed85c93eeaec2239c0f7d4269f3a51c686702455796e59a31e08bee&state=47c5e7bd7aef3fe9dc1310974b8e05f14c6e37474f2d0ad4" for 127.0.0.1 at 2013-11-09 10:52:10 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7777f0245ed85c93eeaec2239c0f7d4269f3a51c686702455796e59a31e08bee", "state"=>"47c5e7bd7aef3fe9dc1310974b8e05f14c6e37474f2d0ad4"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (31.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (9.6ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 48.5ms (ActiveRecord: 41.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 10:52:11 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Started GET "/auth/gds/callback?code=937ba0d676e1d64a2ab8917afbf21668c6ba8609eae1119285f8bec3bfdb0bf5&state=eb2dff280e8ce23260562a506ae04af5d22164b0ccc01b12" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"937ba0d676e1d64a2ab8917afbf21668c6ba8609eae1119285f8bec3bfdb0bf5", "state"=>"eb2dff280e8ce23260562a506ae04af5d22164b0ccc01b12"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (11.9ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (11.7ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.3ms (ActiveRecord: 24.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 10:42:11 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 11.6ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (11.5ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.5ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 55.5ms (Views: 0.2ms | ActiveRecord: 18.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 14:47:11 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (5.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.1ms)[0m  commit transaction
+Completed 200 OK in 63.0ms (Views: 0.2ms | ActiveRecord: 10.4ms)
+Connecting to database specified by database.yml
+  [1m[36m (0.9ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (17.3ms)[0m  DROP TABLE "users"
+  [1m[36m (14.1ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (2.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38035"]]
+  [1m[35m (47.8ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31250"]]
+  [1m[36m (10.0ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38035"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 9.0ms (Views: 8.3ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32362"]]
+  [1m[35m (36.0ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37496"]]
+  [1m[36m (13.0ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32362"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d32362' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (14.2ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 22.7ms (ActiveRecord: 14.6ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35967"]]
+  [1m[36m (60.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38552"]]
+  [1m[35m (18.4ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35967"}
+Completed 403 Forbidden in 1.7ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38024"]]
+  [1m[36m (19.5ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37858"]]
+  [1m[35m (14.7ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.2ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d317"]]
+  [1m[35m (48.3ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31792"]]
+  [1m[36m (27.9ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d317"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d317' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (16.7ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 21.7ms (ActiveRecord: 17.2ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-08 15:01:21 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:21 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:21 +0000
+Started GET "/auth/gds/callback?code=bef86a39b09b0998ac8c8b2d31bea4c7a9830c5e2009a9b7cb801ac19436f7c6&state=d6b1f002da22f88aa0f51e25c2995705f2a2aad3629e156c" for 127.0.0.1 at 2013-11-08 15:01:22 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"bef86a39b09b0998ac8c8b2d31bea4c7a9830c5e2009a9b7cb801ac19436f7c6", "state"=>"d6b1f002da22f88aa0f51e25c2995705f2a2aad3629e156c"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (47.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (9.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 63.6ms (ActiveRecord: 57.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:22 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Started GET "/auth/gds/callback?code=30478aca56e02750ac6b743c0afc7761734800c512f1416dc39b66a39677df9f&state=d98d9fc90c7029ebcfe3b03834fea279721136dec30cc065" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"30478aca56e02750ac6b743c0afc7761734800c512f1416dc39b66a39677df9f", "state"=>"d98d9fc90c7029ebcfe3b03834fea279721136dec30cc065"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (9.8ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.6ms (ActiveRecord: 25.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Started GET "/auth/gds/callback?code=dbb6952b4512dc6d678e15e6bf41d64bb6f17d57c7289d1e36b95933ee8f4057&state=87509ffa738bd65b1f823372e8f2ebe7a4980eb69bcc375d" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dbb6952b4512dc6d678e15e6bf41d64bb6f17d57c7289d1e36b95933ee8f4057", "state"=>"87509ffa738bd65b1f823372e8f2ebe7a4980eb69bcc375d"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.4ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (3.4ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.3ms (ActiveRecord: 9.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:23 +0000
+Started GET "/auth/gds/callback?code=d99b30e79b5feab446bdeb3d52da096b24598dd7f1f36082c85f9408458771af&state=440b860600ba1872fd19bd1e61e262fc12219f4e9d16963f" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d99b30e79b5feab446bdeb3d52da096b24598dd7f1f36082c85f9408458771af", "state"=>"440b860600ba1872fd19bd1e61e262fc12219f4e9d16963f"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.9ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (3.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 16.1ms (ActiveRecord: 8.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Started GET "/auth/gds/callback?code=ad0e4943dcb83533de6bd7ce753eadb5e8541fb8f0b3feaac339204bb180f557&state=c1fb6e74a4e5e3ff96833cd091d44691a021a5d5ae878d8f" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ad0e4943dcb83533de6bd7ce753eadb5e8541fb8f0b3feaac339204bb180f557", "state"=>"c1fb6e74a4e5e3ff96833cd091d44691a021a5d5ae878d8f"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (8.0ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 21.6ms (ActiveRecord: 14.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Started GET "/auth/gds/callback?code=d2c5c2a6aacd0a736b2248e9355f4455b664f884911fd07fd3acf8b75e3c446c&state=1b546fb384dc7f0bd4eb7be1b17ee0c83842bc852f46fd31" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d2c5c2a6aacd0a736b2248e9355f4455b664f884911fd07fd3acf8b75e3c446c", "state"=>"1b546fb384dc7f0bd4eb7be1b17ee0c83842bc852f46fd31"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (6.8ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (6.3ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 21.5ms (ActiveRecord: 13.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (4.2ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.7ms (Views: 1.9ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-08 15:01:24 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Started GET "/auth/gds/callback?code=94f0057c367d3c242c67eb40f67770f23b18de3f9ae8782023ffbf527802db8e&state=278080b1b7100342f586e07f2211323b2059a3e3073ded42" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"94f0057c367d3c242c67eb40f67770f23b18de3f9ae8782023ffbf527802db8e", "state"=>"278080b1b7100342f586e07f2211323b2059a3e3073ded42"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (11.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (29.1ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 47.8ms (ActiveRecord: 40.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Started GET "/auth/gds/callback?code=6bd96c038b7a4b3da7de36dc97fabcf73811277e7ffb2ba71b9361a065e56806&state=2aa83e648b56336a9951a2b3d7f381987bfe4925c98ee94f" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"6bd96c038b7a4b3da7de36dc97fabcf73811277e7ffb2ba71b9361a065e56806", "state"=>"2aa83e648b56336a9951a2b3d7f381987bfe4925c98ee94f"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (49.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (10.8ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 68.8ms (ActiveRecord: 60.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:25 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 11:06:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-09 11:06:25 +0000
+Started GET "/auth/gds/callback?code=ea4fd4e60ce54b9f456a11a5d209618c58e2800eb4d1dead071923188819bbd4&state=905f434431c0548a3f6b9913de56ab9ec0852fe32d82d2dc" for 127.0.0.1 at 2013-11-09 11:06:25 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ea4fd4e60ce54b9f456a11a5d209618c58e2800eb4d1dead071923188819bbd4", "state"=>"905f434431c0548a3f6b9913de56ab9ec0852fe32d82d2dc"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (9.0ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (9.4ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 25.9ms (ActiveRecord: 19.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 11:06:25 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Started GET "/auth/gds/callback?code=40276fb1d0d0ef231f866bbcbc79bdc8204fe9134ed182d8041586413eb461e3&state=b0aecdac0e4b9475f8f682eae7a8964810bb38fc5a127a37" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"40276fb1d0d0ef231f866bbcbc79bdc8204fe9134ed182d8041586413eb461e3", "state"=>"b0aecdac0e4b9475f8f682eae7a8964810bb38fc5a127a37"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (5.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (3.3ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.1ms (ActiveRecord: 9.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 10:56:26 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 6.9ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.0ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (11.4ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 70.0ms (Views: 0.2ms | ActiveRecord: 25.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:01:26 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (10.9ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (10.8ms)[0m  commit transaction
+Completed 200 OK in 61.1ms (Views: 0.2ms | ActiveRecord: 22.2ms)
+Connecting to database specified by database.yml
+  [1m[36m (0.8ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (37.7ms)[0m  DROP TABLE "users"
+  [1m[36m (16.8ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) [0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (2.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31283"]]
+  [1m[35m (17.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34722"]]
+  [1m[36m (10.9ms)[0m  [1mcommit transaction[0m
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d31283"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.7ms)
+Completed 403 Forbidden in 6.3ms (Views: 5.6ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39153"]]
+  [1m[35m (37.9ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35638"]]
+  [1m[36m (17.6ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39153"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d39153' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+  [1m[36m (18.9ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 47.8ms (ActiveRecord: 19.3ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34567"]]
+  [1m[36m (17.0ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35651"]]
+  [1m[35m (32.1ms)[0m  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34567"}
+Completed 403 Forbidden in 1.7ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36922"]]
+  [1m[36m (20.4ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32073"]]
+  [1m[35m (42.1ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1[0m
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35898"]]
+  [1m[35m (16.3ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33825"]]
+  [1m[36m (11.3ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35898"}
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d35898' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+  [1m[36m (8.3ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 12.6ms (ActiveRecord: 8.7ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-08 15:02:41 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:41 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:41 +0000
+Started GET "/auth/gds/callback?code=1f15bab7459e5266f1631dd56cb797d19ffb7f39fb208d6e5fc307e82d73da02&state=051c120b8039dc740b5e8362c6971514ab9faec4ef97d765" for 127.0.0.1 at 2013-11-08 15:02:42 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"1f15bab7459e5266f1631dd56cb797d19ffb7f39fb208d6e5fc307e82d73da02", "state"=>"051c120b8039dc740b5e8362c6971514ab9faec4ef97d765"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)[0m  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+  [1m[35m (14.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (32.7ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 54.5ms (ActiveRecord: 48.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:42 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Started GET "/auth/gds/callback?code=dd3db402e9ab7ae7815822077965e419c0fdf62a954acf781c4b8643b7f9eabe&state=e9deeedfb741a7c17c158ad118d9cda95b4110b2ce266cb6" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dd3db402e9ab7ae7815822077965e419c0fdf62a954acf781c4b8643b7f9eabe", "state"=>"e9deeedfb741a7c17c158ad118d9cda95b4110b2ce266cb6"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (31.5ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (13.4ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 53.0ms (ActiveRecord: 45.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Started GET "/auth/gds/callback?code=327eaa7790a9b208216bf2519d85c13f42dc71305402f0a13fc2be2e09e8d56c&state=4714a2b35f3b1481cc7274fbdd5ac5d73a4c5b85e0133d22" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"327eaa7790a9b208216bf2519d85c13f42dc71305402f0a13fc2be2e09e8d56c", "state"=>"4714a2b35f3b1481cc7274fbdd5ac5d73a4c5b85e0133d22"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (9.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (4.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 21.7ms (ActiveRecord: 13.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:43 +0000
+Started GET "/auth/gds/callback?code=404da1bf910fa7c838547c386139a7c25281491089bd87fbca64729e4a95f54a&state=e9602bc6256396e03cf5afb38bb3849ef728407de2890a2e" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"404da1bf910fa7c838547c386139a7c25281491089bd87fbca64729e4a95f54a", "state"=>"e9602bc6256396e03cf5afb38bb3849ef728407de2890a2e"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (20.5ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (13.2ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 41.7ms (ActiveRecord: 34.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.9ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Started GET "/auth/gds/callback?code=2b710235af52d25f3967040ab08c3f3ccb3f4762b444a0b99d2ec46fd874271b&state=a95408ed3e33f548280066d979ef8c0f23781dcb6459fd62" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2b710235af52d25f3967040ab08c3f3ccb3f4762b444a0b99d2ec46fd874271b", "state"=>"a95408ed3e33f548280066d979ef8c0f23781dcb6459fd62"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (9.3ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (7.5ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 24.7ms (ActiveRecord: 17.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.8ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Started GET "/auth/gds/callback?code=4e80b394e7d82a0f0eb6c73d7094fc61d0f47e2359720f81ad3f66eb39b7b7f8&state=2aea5dad89f223eec5195924a904865d4fa5150140660a74" for 127.0.0.1 at 2013-11-08 15:02:44 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4e80b394e7d82a0f0eb6c73d7094fc61d0f47e2359720f81ad3f66eb39b7b7f8", "state"=>"2aea5dad89f223eec5195924a904865d4fa5150140660a74"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (23.2ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (13.0ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 44.1ms (ActiveRecord: 36.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (12.3ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.6ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Started GET "/auth/gds/callback?code=1a57cb546ccdad7aa04689a6bb3a6de966d3efa64f37bcbe778dbc6f5fcb0734&state=e6ded0e740602f55d1873db2db40e81074c6e3f91ead341a" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"1a57cb546ccdad7aa04689a6bb3a6de966d3efa64f37bcbe778dbc6f5fcb0734", "state"=>"e6ded0e740602f55d1873db2db40e81074c6e3f91ead341a"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (14.6ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (11.7ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.8ms (ActiveRecord: 26.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Started GET "/auth/gds/callback?code=b625d658705eecd075b56afec46f5590656138db8a381a9bd846bed189ad8ad2&state=87203e24e342df13610bafdb56805b97f7d4486eb0430fdd" for 127.0.0.1 at 2013-11-08 15:02:45 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b625d658705eecd075b56afec46f5590656138db8a381a9bd846bed189ad8ad2", "state"=>"87203e24e342df13610bafdb56805b97f7d4486eb0430fdd"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (66.5ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (56.8ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 131.6ms (ActiveRecord: 123.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:46 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 11:07:46 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-09 11:07:46 +0000
+Started GET "/auth/gds/callback?code=f05a46d8c299f4ef3805ced576f6a99f7a299840a3e05969fd04097439cc0fe4&state=001047c5812986e315961437d22b6cf2bbc43b0211873952" for 127.0.0.1 at 2013-11-09 11:07:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f05a46d8c299f4ef3805ced576f6a99f7a299840a3e05969fd04097439cc0fe4", "state"=>"001047c5812986e315961437d22b6cf2bbc43b0211873952"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.2ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (58.7ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (51.5ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 117.8ms (ActiveRecord: 110.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 11:07:46 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:46 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-08 15:02:46 +0000
+Started GET "/auth/gds/callback?code=d5c34ecf9181c70ec56312dddd27ea0734989b8dcde8304f3dfb4803a29f4b78&state=e37813311ff3b59220be09b94b63436c9ca508bb00b5f241" for 127.0.0.1 at 2013-11-08 15:02:47 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d5c34ecf9181c70ec56312dddd27ea0734989b8dcde8304f3dfb4803a29f4b78", "state"=>"e37813311ff3b59220be09b94b63436c9ca508bb00b5f241"}
+Authenticating with gds_sso strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (20.2ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (14.0ms)[0m  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 42.8ms (ActiveRecord: 34.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:47 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-09 10:57:47 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[35mUser Load (0.1ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:47 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 6.8ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-08 15:02:47 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.2ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (8.5ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (7.7ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 51.7ms (Views: 0.2ms | ActiveRecord: 16.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-08 15:02:47 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  [1m[35mUser Load (0.2ms)[0m  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+  [1m[36m (8.5ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.0ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mUPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11[0m
+  [1m[35m (5.4ms)[0m  commit transaction
+Completed 200 OK in 59.7ms (Views: 0.2ms | ActiveRecord: 14.3ms)