gds-sso 8.0.0 → 9.0.0

data/lib/gds-sso/user.rb

@@ -3,7 +3,9 @@ require 'active_support/concern'
 module GDS
   module SSO
     module User
-      def included(base)
+      extend ActiveSupport::Concern
+
+      included do
         attr_accessible :uid, :email, :name, :permissions, :organisation_slug, as: :oauth
       end
 
@@ -31,8 +33,6 @@ module GDS
         self.update_attribute(:remotely_signed_out, true)
       end
 
-      extend ActiveSupport::Concern
-
       module ClassMethods
         def find_for_gds_oauth(auth_hash)
           if user = self.where(:uid => auth_hash["uid"]).first

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "8.0.0"
+    VERSION = "9.0.0"
   end
 end

data/spec/internal/log/test.log

@@ -10861,3 +10861,1151 @@ Authenticating with gds_bearer_token strategy
 ' WHERE "users"."id" = 11
    (4.2ms)  commit transaction
 Completed 200 OK in 40.8ms (Views: 0.2ms | ActiveRecord: 9.3ms)
+Connecting to database specified by database.yml
+   (1.0ms)  select sqlite_version(*)
+   (135.3ms)  DROP TABLE "users"
+   (21.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) 
+   (0.1ms)  begin transaction
+  SQL (2.5ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35537"]]
+   (14.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38826"]]
+   (12.9ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d35537"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (30.8ms)
+Completed 403 Forbidden in 38.0ms (Views: 37.2ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34546"]]
+   (71.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32927"]]
+   (51.5ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34546"}
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d34546' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.4ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+   (62.0ms)  commit transaction
+Completed 200 OK in 74.0ms (ActiveRecord: 62.7ms)
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34516"]]
+   (60.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38544"]]
+   (56.0ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34516"}
+Completed 403 Forbidden in 2.1ms (Views: 1.3ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39558"]]
+   (56.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31205"]]
+   (64.4ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.4ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39739"]]
+   (55.3ms)  commit transaction
+   (0.2ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35626"]]
+   (46.1ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d39739"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d39739' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (15.5ms)  commit transaction
+Completed 200 OK in 21.3ms (ActiveRecord: 16.0ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-27 13:19:59 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.3ms (Views: 1.9ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:00 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 3.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:00 +0000
+Started GET "/auth/gds/callback?code=0faaf06103f68d70c4b0403c8c53b430c612ad68fbc31cfeb2906900b542186d&state=86168730a2c081e66d3e9e9a9169d358b263e1eea0e2261f" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"0faaf06103f68d70c4b0403c8c53b430c612ad68fbc31cfeb2906900b542186d", "state"=>"86168730a2c081e66d3e9e9a9169d358b263e1eea0e2261f"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (12.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.0ms (ActiveRecord: 23.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Started GET "/auth/gds/callback?code=b7102610493a5ee1fd08f590148e7008f173f85360d0370ae964f67f3fccbbc5&state=3c3145edc77c0cd64aaaa521559be478587a5ad1f9962de3" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b7102610493a5ee1fd08f590148e7008f173f85360d0370ae964f67f3fccbbc5", "state"=>"3c3145edc77c0cd64aaaa521559be478587a5ad1f9962de3"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 30.5ms (ActiveRecord: 19.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.7ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:01 +0000
+Started GET "/auth/gds/callback?code=9be02d605f27bf08c30e7744ca4934a8df68ba7feab4ebb9c191d67d5caf2377&state=72dfb4485a3cb4b32555c01a11edad2ce8a9d3960fcbd62b" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9be02d605f27bf08c30e7744ca4934a8df68ba7feab4ebb9c191d67d5caf2377", "state"=>"72dfb4485a3cb4b32555c01a11edad2ce8a9d3960fcbd62b"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 27.8ms (ActiveRecord: 16.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 1.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Started GET "/auth/gds/callback?code=14899f8d39f48834c704638819d7b05fa596dbd47ef735cde012273d6cc0e0b5&state=9a40970ad9e3f4eb4e0969d4d7ab7d2ab4ed63fcf66f15fb" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"14899f8d39f48834c704638819d7b05fa596dbd47ef735cde012273d6cc0e0b5", "state"=>"9a40970ad9e3f4eb4e0969d4d7ab7d2ab4ed63fcf66f15fb"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.8ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (6.8ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 27.7ms (ActiveRecord: 16.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.8ms (Views: 0.5ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Started GET "/auth/gds/callback?code=5b289077fe9506b9293880b72c8c53fa0fc216b91353640a40ad4d098ecbf681&state=aa3b0950e5d77ffa456a7b54ac186ab4e9751e313e30d54a" for 127.0.0.1 at 2013-11-27 13:20:02 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5b289077fe9506b9293880b72c8c53fa0fc216b91353640a40ad4d098ecbf681", "state"=>"aa3b0950e5d77ffa456a7b54ac186ab4e9751e313e30d54a"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.6ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 24.5ms (ActiveRecord: 14.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 4.0ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Started GET "/auth/gds/callback?code=a353f9901d10c91e891e9ecee2e6e49a1c8bbf57b277cca0d86f1b5f07370c16&state=136e8a53058ad2e63d80ab133c1fab2fd638a531b542aa02" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"a353f9901d10c91e891e9ecee2e6e49a1c8bbf57b277cca0d86f1b5f07370c16", "state"=>"136e8a53058ad2e63d80ab133c1fab2fd638a531b542aa02"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.0ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 37.2ms (ActiveRecord: 25.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.8ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 3.8ms (Views: 2.5ms | ActiveRecord: 0.2ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.6ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Started GET "/auth/gds/callback?code=76b221c33bc6d7a195ea9a99abcc8db0083cab34d5183cca759451e9a962d8e3&state=76d248bbd4290680e9ca2c441281fc5c597ee79efa297eb7" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"76b221c33bc6d7a195ea9a99abcc8db0083cab34d5183cca759451e9a962d8e3", "state"=>"76d248bbd4290680e9ca2c441281fc5c597ee79efa297eb7"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.6ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.0ms (ActiveRecord: 23.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:03 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.4ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Started GET "/auth/gds/callback?code=b00a40bbd16b622516c8e2a1e6c9b51400374f0c05d1df6550c53c363f2d8eb9&state=650caf5c0e6740eb58727f0133b4e1abfa74c5f80e8b9abf" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b00a40bbd16b622516c8e2a1e6c9b51400374f0c05d1df6550c53c363f2d8eb9", "state"=>"650caf5c0e6740eb58727f0133b4e1abfa74c5f80e8b9abf"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (15.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 37.7ms (ActiveRecord: 26.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.4ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 09:25:04 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 09:25:04 +0000
+Started GET "/auth/gds/callback?code=b0768c49330754c97a726056564a7d094faf350ce73961420a6d8ad7160ecd57&state=cb659a8d272bbb595a782f05529ccdbfeff54e12f1afb614" for 127.0.0.1 at 2013-11-28 09:25:04 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b0768c49330754c97a726056564a7d094faf350ce73961420a6d8ad7160ecd57", "state"=>"cb659a8d272bbb595a782f05529ccdbfeff54e12f1afb614"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.3ms (ActiveRecord: 24.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 09:25:04 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Started GET "/auth/gds/callback?code=c581093aa613a0fcf820216acb5b91c05f1efc07a00456f0eee9dd0a0698a146&state=71d6e3688352eac858b565cb541d72e8b79feae22e8fe7e6" for 127.0.0.1 at 2013-11-27 13:20:04 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"c581093aa613a0fcf820216acb5b91c05f1efc07a00456f0eee9dd0a0698a146", "state"=>"71d6e3688352eac858b565cb541d72e8b79feae22e8fe7e6"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.7ms (ActiveRecord: 23.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:05 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 09:15:05 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:05 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 8.8ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 13:20:05 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.2ms)  commit transaction
+Completed 200 OK in 67.0ms (Views: 0.3ms | ActiveRecord: 24.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 13:20:05 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.7ms)  commit transaction
+Completed 200 OK in 67.1ms (Views: 0.3ms | ActiveRecord: 20.9ms)
+Connecting to database specified by database.yml
+   (1.0ms)  select sqlite_version(*)
+   (19.5ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) 
+   (12.9ms)  CREATE TABLE "schema_migrations" ("version" varchar(255) NOT NULL) 
+   (12.6ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+   (0.1ms)  begin transaction
+  SQL (2.3ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32703"]]
+   (19.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32515"]]
+   (17.8ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32703"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (1.0ms)
+Completed 403 Forbidden in 36.4ms (Views: 35.6ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34358"]]
+   (18.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36783"]]
+   (19.7ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34358"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d34358' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+   (16.9ms)  commit transaction
+Completed 200 OK in 28.0ms (ActiveRecord: 17.4ms)
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38826"]]
+   (16.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37843"]]
+   (15.0ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38826"}
+Completed 403 Forbidden in 1.9ms (Views: 1.2ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34427"]]
+   (17.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32990"]]
+   (16.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.3ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34929"]]
+   (16.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33257"]]
+   (31.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34929"}
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d34929' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (44.8ms)  commit transaction
+Completed 200 OK in 50.5ms (ActiveRecord: 45.3ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-27 18:59:54 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.4ms (Views: 2.0ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:54 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 3.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:54 +0000
+Started GET "/auth/gds/callback?code=673b7f97392ff2060f3bbdb535164adc38205c59c39e39cfeea3ccf813f489ad&state=a2a49fbba042969a61dab7d0d030646cdb594ec6b9d4d46e" for 127.0.0.1 at 2013-11-27 18:59:55 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"673b7f97392ff2060f3bbdb535164adc38205c59c39e39cfeea3ccf813f489ad", "state"=>"a2a49fbba042969a61dab7d0d030646cdb594ec6b9d4d46e"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (13.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.1ms (ActiveRecord: 24.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Started GET "/auth/gds/callback?code=dbf8d5da44a451209fc5b272db66ca137aed5ef3dc1112f7e387573c9aa187d7&state=12c37aeb8354cd83a15d8c6ba42a8880d216113cecd61793" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dbf8d5da44a451209fc5b272db66ca137aed5ef3dc1112f7e387573c9aa187d7", "state"=>"12c37aeb8354cd83a15d8c6ba42a8880d216113cecd61793"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.5ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 35.6ms (ActiveRecord: 24.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.4ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.9ms (Views: 0.5ms | ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Started GET "/auth/gds/callback?code=7655e545ab104b58094ba9b3d61fa6d0dbba8c46192cab6b300c6393e4c4a1a8&state=e352016d239e89cadd0c6cb4bcfa286b703e1f04492c8f41" for 127.0.0.1 at 2013-11-27 18:59:56 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7655e545ab104b58094ba9b3d61fa6d0dbba8c46192cab6b300c6393e4c4a1a8", "state"=>"e352016d239e89cadd0c6cb4bcfa286b703e1f04492c8f41"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (25.9ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (21.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 57.0ms (ActiveRecord: 47.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.8ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Started GET "/auth/gds/callback?code=f86a7c92bc4147691fc876186deac9186e26cd255d7aae20b4bf4b8caffcf2df&state=0db0c750bb7816ce8d315acfc93d181fc4d11b9aa12a0646" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f86a7c92bc4147691fc876186deac9186e26cd255d7aae20b4bf4b8caffcf2df", "state"=>"0db0c750bb7816ce8d315acfc93d181fc4d11b9aa12a0646"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (1.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.6ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 38.2ms (ActiveRecord: 24.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 43.9ms (Views: 0.6ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Started GET "/auth/gds/callback?code=64f7355a60a37485af1362c5a738b610cd998648eb27bd3f2afbf3d7b9201d63&state=c634bcb73124dd73b91f616d810d35752fb09da163929462" for 127.0.0.1 at 2013-11-27 18:59:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"64f7355a60a37485af1362c5a738b610cd998648eb27bd3f2afbf3d7b9201d63", "state"=>"c634bcb73124dd73b91f616d810d35752fb09da163929462"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.4ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 32.5ms (ActiveRecord: 22.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.6ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Started GET "/auth/gds/callback?code=963590224cebc7e1e7c83dab64bad5cff79c7fdd5269ff17b2fb9ee4755c3e75&state=42a8683dffebac44d7be3f4973f00f0d4c1ebf55ecc2ad04" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"963590224cebc7e1e7c83dab64bad5cff79c7fdd5269ff17b2fb9ee4755c3e75", "state"=>"42a8683dffebac44d7be3f4973f00f0d4c1ebf55ecc2ad04"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.8ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 35.2ms (ActiveRecord: 24.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.7ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 3.7ms (Views: 2.5ms | ActiveRecord: 0.2ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.6ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Started GET "/auth/gds/callback?code=ac7e8d1445dc8bb54c1d5ae31bb1bc35a1a6c202d0a63a01699856363656b2ef&state=1dc5536a6228ad50decedfba5d95858328f9a68f172146aa" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ac7e8d1445dc8bb54c1d5ae31bb1bc35a1a6c202d0a63a01699856363656b2ef", "state"=>"1dc5536a6228ad50decedfba5d95858328f9a68f172146aa"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (15.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 39.4ms (ActiveRecord: 29.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Started GET "/auth/gds/callback?code=c268d0e0ad4900608363184fa8a289f8dcbfc92edbe8f1cb76ff4193062b643f&state=576adb277b7ccc198e1f3796d99c1cceac0e3d6874f030e0" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"c268d0e0ad4900608363184fa8a289f8dcbfc92edbe8f1cb76ff4193062b643f", "state"=>"576adb277b7ccc198e1f3796d99c1cceac0e3d6874f030e0"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (16.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 41.7ms (ActiveRecord: 31.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 15:04:59 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 15:04:59 +0000
+Started GET "/auth/gds/callback?code=2295f09c27df7d6de5222228a3b38f06284fb80a982e8a500c70e0055fd4da1c&state=7f9ddb599e3624e4a7387d3597ba97cd018877b6b2b89e15" for 127.0.0.1 at 2013-11-28 15:04:59 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2295f09c27df7d6de5222228a3b38f06284fb80a982e8a500c70e0055fd4da1c", "state"=>"7f9ddb599e3624e4a7387d3597ba97cd018877b6b2b89e15"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (17.6ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 41.3ms (ActiveRecord: 32.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 15:04:59 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-27 18:59:59 +0000
+Started GET "/auth/gds/callback?code=a2cbe0f27eadeb4dc39217db05c7767aef828d4e1f013ac5436b90b95021d526&state=2c0a58a5ea8dc389c8c82c17febcd9db7cb6f8da607e0f5e" for 127.0.0.1 at 2013-11-27 19:00:00 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"a2cbe0f27eadeb4dc39217db05c7767aef828d4e1f013ac5436b90b95021d526", "state"=>"2c0a58a5ea8dc389c8c82c17febcd9db7cb6f8da607e0f5e"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (24.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (19.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 56.3ms (ActiveRecord: 44.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 19:00:00 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 14:55:00 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 19:00:00 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 8.8ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-27 19:00:00 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.8ms)  commit transaction
+Completed 200 OK in 62.1ms (Views: 0.3ms | ActiveRecord: 18.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-27 19:00:00 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (22.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (20.1ms)  commit transaction
+Completed 200 OK in 99.5ms (Views: 0.3ms | ActiveRecord: 43.6ms)
+Connecting to database specified by database.yml
+   (0.8ms)  select sqlite_version(*)
+   (11.1ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) 
+   (4.3ms)  CREATE TABLE "schema_migrations" ("version" varchar(255) NOT NULL) 
+   (5.6ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+   (0.1ms)  begin transaction
+  SQL (2.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36670"]]
+   (6.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35625"]]
+   (9.0ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36670"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (1.0ms)
+Completed 403 Forbidden in 37.1ms (Views: 36.4ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34888"]]
+   (8.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33431"]]
+   (6.1ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34888"}
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d34888' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+   (12.1ms)  commit transaction
+Completed 200 OK in 23.2ms (ActiveRecord: 12.7ms)
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.3ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34557"]]
+   (6.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35860"]]
+   (5.3ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34557"}
+Completed 403 Forbidden in 1.9ms (Views: 1.1ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31240"]]
+   (11.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3123"]]
+   (13.3ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.3ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31787"]]
+   (14.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34555"]]
+   (13.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31787"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d31787' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (13.3ms)  commit transaction
+Completed 200 OK in 18.8ms (ActiveRecord: 13.7ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-28 11:01:30 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.5ms (Views: 2.0ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:30 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 3.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:30 +0000
+Started GET "/auth/gds/callback?code=2635d104a0e6cf2c33188b9d9e9dc20a1a2efbbe6e6a7464fd309be99fff9bd0&state=eec067008c27a59c55b31f94802f244b7ad08ad617fcecfc" for 127.0.0.1 at 2013-11-28 11:01:31 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2635d104a0e6cf2c33188b9d9e9dc20a1a2efbbe6e6a7464fd309be99fff9bd0", "state"=>"eec067008c27a59c55b31f94802f244b7ad08ad617fcecfc"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (12.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 33.0ms (ActiveRecord: 24.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:31 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:31 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:31 +0000
+Started GET "/auth/gds/callback?code=98866f74105c4eac62dd68c97c4c4b76310abc67fe043e881bca78944597c22e&state=a540ae995c63cf56efcb82102447dd4480c477c1bac8d860" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"98866f74105c4eac62dd68c97c4c4b76310abc67fe043e881bca78944597c22e", "state"=>"a540ae995c63cf56efcb82102447dd4480c477c1bac8d860"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.8ms (ActiveRecord: 22.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Started GET "/auth/gds/callback?code=42429121cce039f0d33e619179085adf672805163c8259f7a19c7a50a1a5aa47&state=cc4aadb9cd2a15703b5ffa08f6fdd96ab96b4d72840f24c6" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"42429121cce039f0d33e619179085adf672805163c8259f7a19c7a50a1a5aa47", "state"=>"cc4aadb9cd2a15703b5ffa08f6fdd96ab96b4d72840f24c6"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.6ms (ActiveRecord: 23.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.8ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:32 +0000
+Started GET "/auth/gds/callback?code=9675252970045e6a7745f123f1e30600810ab5d6f8c23299c4940c7d6f6e2ebb&state=d29c277bf767598a5c39a248779581c3400517c569305bcd" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9675252970045e6a7745f123f1e30600810ab5d6f8c23299c4940c7d6f6e2ebb", "state"=>"d29c277bf767598a5c39a248779581c3400517c569305bcd"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.5ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 35.3ms (ActiveRecord: 23.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.8ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Started GET "/auth/gds/callback?code=128f68fd7a84b149cdc852ff9a13c6b9ced88c58a42208703db6326f5395ba31&state=950a31c9d7596e9be593f6723aa55dfc3a5abbe61071c0f6" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"128f68fd7a84b149cdc852ff9a13c6b9ced88c58a42208703db6326f5395ba31", "state"=>"950a31c9d7596e9be593f6723aa55dfc3a5abbe61071c0f6"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.5ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 30.3ms (ActiveRecord: 20.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.4ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Started GET "/auth/gds/callback?code=9ef35880a2ed779be23b81847c518722ac17a4f67df97c6abf13550febac898e&state=b8efa4b5ff7228f92a8b9435a653ada9e88f9a7da2c9c9d8" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9ef35880a2ed779be23b81847c518722ac17a4f67df97c6abf13550febac898e", "state"=>"b8efa4b5ff7228f92a8b9435a653ada9e88f9a7da2c9c9d8"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 25.9ms (ActiveRecord: 15.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.8ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:33 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 3.8ms (Views: 2.5ms | ActiveRecord: 0.2ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.6ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Started GET "/auth/gds/callback?code=69ba5fff276b81659b7576fa930faa8d823a80e2d480fc78e2366d17cf93a850&state=9cf63b4adb9113b23cc9882b6628f278173775e76ea2d301" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"69ba5fff276b81659b7576fa930faa8d823a80e2d480fc78e2366d17cf93a850", "state"=>"9cf63b4adb9113b23cc9882b6628f278173775e76ea2d301"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 26.4ms (ActiveRecord: 17.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Started GET "/auth/gds/callback?code=257276a9321fef3fcd54c1d19b77cdd38b8ac12c4664f4c64706a2977883b1cf&state=5fd2d4e5009a100293cade23a9418a09b4632226e1d9cd99" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"257276a9321fef3fcd54c1d19b77cdd38b8ac12c4664f4c64706a2977883b1cf", "state"=>"5fd2d4e5009a100293cade23a9418a09b4632226e1d9cd99"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (15.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.6ms (ActiveRecord: 23.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:34 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-29 07:06:34 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-29 07:06:34 +0000
+Started GET "/auth/gds/callback?code=75bf6d80d8e1ebcbe1e852d5b40e26e9e252d9e1db41189a8c18b93a3fa7a3f6&state=57b6cee750e0debbe511e8676e72ce364de23360a59be3b6" for 127.0.0.1 at 2013-11-29 07:06:34 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"75bf6d80d8e1ebcbe1e852d5b40e26e9e252d9e1db41189a8c18b93a3fa7a3f6", "state"=>"57b6cee750e0debbe511e8676e72ce364de23360a59be3b6"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 27.1ms (ActiveRecord: 17.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-29 07:06:34 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Started GET "/auth/gds/callback?code=0a803980adf437465c3c33fbfcd56031caba3992a6243a510a226e7be375e597&state=bb0cd70ba3d3ade06b51cf937d8dc55e44a4039076b9d9e8" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"0a803980adf437465c3c33fbfcd56031caba3992a6243a510a226e7be375e597", "state"=>"bb0cd70ba3d3ade06b51cf937d8dc55e44a4039076b9d9e8"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (17.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 38.6ms (ActiveRecord: 28.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-29 06:56:35 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 8.2ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.2ms)  commit transaction
+Completed 200 OK in 62.0ms (Views: 0.3ms | ActiveRecord: 20.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-28 11:01:35 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.1ms)  commit transaction
+Completed 200 OK in 64.9ms (Views: 0.3ms | ActiveRecord: 21.0ms)