gds-sso 13.1.0 → 13.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5631ed3451bf7a920107d8c4824612ef3ca79d26
-  data.tar.gz: 9a9cf474fb50419c0f904d337a1a2fc50a345b39
+  metadata.gz: 9f4c161463202bb5caf2111be0f9bc790949aa9c
+  data.tar.gz: 277d9b63b33fe337b234a898b1bfb169498bdc85
 SHA512:
-  metadata.gz: 917c719abe6c0274e0ff6fd21e10a2c7c905814e19e8ccc3d2750b7db65baa8e322bebcdf8c07e2650cb072cb169713ec31d4413347a00590f473f4ce028941a
-  data.tar.gz: a4382cf7d842114984ccb0292f0d6aa26746eaab57fda2258f7cb08b075f2ba458fbb2c43037ca75805d95843367cf902bd8f348388456bf3b3589faa64888c2
+  metadata.gz: e42272e73d5174d05e51f846f0f53335daf1559ba570ff5ef60c65bbc4b51c29d881cf24a91fdf773633dfcf008567d321400d68d598fffa0f6103386e8e756b
+  data.tar.gz: b7ee2256c17aba4a9a42861996749f86d2c5d8297985c070caf42097d05db5530ed539492a2d543f68fdabbce107ec99cbb8e5c679af63032db66e9b28a2f37f

data/lib/gds-sso/user.rb

@@ -5,16 +5,6 @@ module GDS
     module User
       extend ActiveSupport::Concern
 
-      def self.below_rails_4?
-        Gem.loaded_specs['rails'] && Gem.loaded_specs['rails'].version < Gem::Version.new("4.0")
-      end
-
-      included do
-        if GDS::SSO::User.below_rails_4? && respond_to?(:attr_accessible)
-          attr_accessible :uid, :email, :name, :permissions, :organisation_slug, :organisation_content_id, :disabled, as: :oauth
-        end
-      end
-
       def has_permission?(permission)
         if permissions
           permissions.include?(permission)
@@ -48,18 +38,10 @@ module GDS
                  self.where(:email => user_params['email']).first
 
           if user
-            if GDS::SSO::User.below_rails_4?
-              user.update_attributes(user_params, as: :oauth)
-            else
-              user.update_attributes(user_params)
-            end
+            user.update_attributes(user_params)
             user
           else # Create a new user.
-            if GDS::SSO::User.below_rails_4?
-              self.create!(user_params, as: :oauth)
-            else
-              self.create!(user_params)
-            end
+            create!(user_params)
           end
         end
       end

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "13.1.0"
+    VERSION = "13.2.0"
   end
 end

data/spec/controller/api_user_controller_spec.rb

@@ -29,11 +29,6 @@ describe Api::UserController, type: :controller do
           :name => "SSO Push user",
           :permissions => ["signin", "user_update_permission"] }]
 
-    if GDS::SSO::User.below_rails_4?
-      user_to_update_attrs << { as: :oauth }
-      signon_sso_push_user_attrs << { as: :oauth }
-    end
-
     @user_to_update = User.create!(*user_to_update_attrs)
     @signon_sso_push_user = User.create!(*signon_sso_push_user_attrs)
   end

data/spec/internal/log/test.log

@@ -1,84 +1,81 @@
-   (35.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (12.9ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+   (24.5ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (15.3ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
    (0.1ms)  select sqlite_version(*)
-   (31.3ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+   (44.7ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (28.9ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36712"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (25.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36205"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (13.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 6ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35653"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (35.2ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39384"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (18.1ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35653"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35653"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 3]]
+   (16.7ms)  commit transaction
+Completed 200 OK in 21ms (ActiveRecord: 17.1ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35531"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (14.3ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39946"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (9.6ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35203"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (11.2ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d35531"}
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34132"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (13.1ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d39946"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 9ms (Views: 8.5ms | ActiveRecord: 0.0ms)
+Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34549"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (37.0ms)  commit transaction
-   (0.2ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34041"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (25.5ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39843"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (18.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34615"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (15.5ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d34549"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d34549"]]
+  Parameters: {"uid"=>"a1s2d39843"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d39843"]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-   (14.2ms)  commit transaction
-Completed 200 OK in 20ms (ActiveRecord: 14.7ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 4]]
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 7]]
+   (18.3ms)  commit transaction
+Completed 200 OK in 23ms (ActiveRecord: 18.7ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 7]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38988"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (26.7ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3479"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (10.7ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35119"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (10.9ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38988"}
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36505"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (9.8ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3479"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
 Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39922"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (9.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3547"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (9.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35459"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (10.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34974"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (10.4ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d35459"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35459"]]
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (13.5ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 10]]
-   (32.2ms)  commit transaction
-Completed 200 OK in 35ms (ActiveRecord: 32.6ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 10]]
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+   (0.1ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 126ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (22.7ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (52.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -89,14 +86,17 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (20.5ms)  commit transaction
+   (9.7ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 238ms (Views: 1.5ms | ActiveRecord: 44.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed 200 OK in 386ms (Views: 1.4ms | ActiveRecord: 63.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
+Completed   in 29ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
@@ -112,173 +112,151 @@ Processing by ExampleController#restricted as JSON
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 77ms (Views: 0.4ms | ActiveRecord: 1.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed 200 OK in 73ms (Views: 0.3ms | ActiveRecord: 1.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
-Started GET "/auth/gds/callback?code=0406dfb10516969c1d7102990e91b9550ed0e008047d796666d1ec39a2eaab84&state=3ee46c89f5795b1b78505adce93de7186356f53217a16f0f" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
+Started GET "/auth/gds/callback?code=de1b1f9a5f817b4c5056335f3605ea461d9af17cc482b46464b7c6c5c2dadf7d&state=3b9f926e0d91f1510f4eb1ae914e097c934e99c0f7e00835" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0406dfb10516969c1d7102990e91b9550ed0e008047d796666d1ec39a2eaab84", "state"=>"3ee46c89f5795b1b78505adce93de7186356f53217a16f0f"}
+  Parameters: {"code"=>"de1b1f9a5f817b4c5056335f3605ea461d9af17cc482b46464b7c6c5c2dadf7d", "state"=>"3b9f926e0d91f1510f4eb1ae914e097c934e99c0f7e00835"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 12]]
-   (14.3ms)  commit transaction
+   (81.7ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 20ms (ActiveRecord: 14.9ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 88ms (ActiveRecord: 82.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=fb325e6a959f5b4ceb5f764cc26ce406d4b9cc94eed40f9fa08ddddc0a15cdd5&state=89f87e3d60b0acb5331152ca5ab604dba94898cbcb0a9f2c" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
+Started GET "/auth/gds/callback?code=81a39364e7be9158e0087c8d911cd1bf803a2ec649d26ad2c3cf6e87e1d0c65f&state=8006dd92f3a1ce45dfda380f87af525550a0c04630cc18ac" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"fb325e6a959f5b4ceb5f764cc26ce406d4b9cc94eed40f9fa08ddddc0a15cdd5", "state"=>"89f87e3d60b0acb5331152ca5ab604dba94898cbcb0a9f2c"}
+  Parameters: {"code"=>"81a39364e7be9158e0087c8d911cd1bf803a2ec649d26ad2c3cf6e87e1d0c65f", "state"=>"8006dd92f3a1ce45dfda380f87af525550a0c04630cc18ac"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=711606807dc7895ccb50ecf6d9c24d870400cac80b29f2b478be367053266b80&state=5ef7eedc4153066bb139dd97e198fc8c0c47f7f24c6ad82a" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
+Started GET "/auth/gds/callback?code=62941e74cdcee54d19756dc8d4878b1842ae56c3f476128a16a4786bbdf6af50&state=1cad8d6d414084b60e21cb12cd8e1cabaddf906cf35b73a5" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"711606807dc7895ccb50ecf6d9c24d870400cac80b29f2b478be367053266b80", "state"=>"5ef7eedc4153066bb139dd97e198fc8c0c47f7f24c6ad82a"}
+  Parameters: {"code"=>"62941e74cdcee54d19756dc8d4878b1842ae56c3f476128a16a4786bbdf6af50", "state"=>"1cad8d6d414084b60e21cb12cd8e1cabaddf906cf35b73a5"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=c7121cd1cea22a0d021cbdb4beef41fbeddc85b6bb0b8fd7268230456d5a573d&state=5eed248724c469fac15036a056c5d65e577790d7fe7b1e69" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=135beefaeab8cbb75e0c23bfe939009fe38e4ca915fdaf79a52a7b4cd07ac7e9&state=d4aab73e45047f92804335bae78a926312ef65d6ce7d9fd0" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c7121cd1cea22a0d021cbdb4beef41fbeddc85b6bb0b8fd7268230456d5a573d", "state"=>"5eed248724c469fac15036a056c5d65e577790d7fe7b1e69"}
+  Parameters: {"code"=>"135beefaeab8cbb75e0c23bfe939009fe38e4ca915fdaf79a52a7b4cd07ac7e9", "state"=>"d4aab73e45047f92804335bae78a926312ef65d6ce7d9fd0"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.2ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=e273b6559260f3bd87eb3087e91a591c7902f3a7d089611b83811612afe110d7&state=b3fa9d11984ff8b4842f4e48662dd782783279dc6b99696b" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=4755abe3e81e73b9d8aeb594407867d2d86d6b9c42f88e1152959404f6a376ec&state=5484c7035dcf78a67094e81301c4342219bfe24f5e1ba124" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e273b6559260f3bd87eb3087e91a591c7902f3a7d089611b83811612afe110d7", "state"=>"b3fa9d11984ff8b4842f4e48662dd782783279dc6b99696b"}
+  Parameters: {"code"=>"4755abe3e81e73b9d8aeb594407867d2d86d6b9c42f88e1152959404f6a376ec", "state"=>"5484c7035dcf78a67094e81301c4342219bfe24f5e1ba124"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=c6a66a12344832afab9212d4e958f24b8afc11e916094fcd85c2e3f0a2c19ed0&state=ea7fb51110108ccc0bae549b117fdd085f59962ee2574d55" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=de9732b79db33c8d7a6bdd545f54ae922c0676b29118451c314ec444767e3ff2&state=21c7e39676db8e33228d0d8b9ed5592365cd7d72446c9a7f" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c6a66a12344832afab9212d4e958f24b8afc11e916094fcd85c2e3f0a2c19ed0", "state"=>"ea7fb51110108ccc0bae549b117fdd085f59962ee2574d55"}
+  Parameters: {"code"=>"de9732b79db33c8d7a6bdd545f54ae922c0676b29118451c314ec444767e3ff2", "state"=>"21c7e39676db8e33228d0d8b9ed5592365cd7d72446c9a7f"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (32.1ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:39 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=91b37d0ce383321139a08eca982c84913d700302e93332efe20934390b11cefb&state=e31feeb10724049b767acdeb26b0e740815c99b933970a73" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"91b37d0ce383321139a08eca982c84913d700302e93332efe20934390b11cefb", "state"=>"e31feeb10724049b767acdeb26b0e740815c99b933970a73"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (76.4ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 83ms (ActiveRecord: 77.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:39 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=3b99a00462a1dfe651f70163d62ebf212b8f2f1efd089c2a86ff37db4246ea63&state=5244721127270573b884a62a75f352bbc73b9ff910a58055" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=b0c0798cd4048315f2195c7f6c46ce9f1484e5e3dca69e63888d363df233d593&state=3d3a16c647c1d6c5263992925b92da57c3c361827d012892" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3b99a00462a1dfe651f70163d62ebf212b8f2f1efd089c2a86ff37db4246ea63", "state"=>"5244721127270573b884a62a75f352bbc73b9ff910a58055"}
+  Parameters: {"code"=>"b0c0798cd4048315f2195c7f6c46ce9f1484e5e3dca69e63888d363df233d593", "state"=>"3d3a16c647c1d6c5263992925b92da57c3c361827d012892"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.2ms)  begin transaction
@@ -286,419 +264,376 @@ Authenticating with gds_sso strategy
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 302 Found in 39ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:08:40 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
-Started GET "/auth/gds/callback?code=f28e50fefafb715670f3ddf85ead5a9fdf3164e254f40725781643754a7bd72e&state=e4fef793d433c8cbf96ea7ed2e6ce7c7a60a08a8947785ca" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=21d581ed8bbb4d27a73cc823b03adeb098300af5f279362c46c72daa26fe2956&state=0aca4107c24efac67ba0dca7998edb05c6ec90a4b6cb65d5" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f28e50fefafb715670f3ddf85ead5a9fdf3164e254f40725781643754a7bd72e", "state"=>"e4fef793d433c8cbf96ea7ed2e6ce7c7a60a08a8947785ca"}
+  Parameters: {"code"=>"21d581ed8bbb4d27a73cc823b03adeb098300af5f279362c46c72daa26fe2956", "state"=>"0aca4107c24efac67ba0dca7998edb05c6ec90a4b6cb65d5"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:38:42 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Started GET "/auth/gds/callback?code=cb65563af847e5f0ee8f1f31521243ba6a7be4dd39af40faf65963f2eab5cfe3&state=8cb244238e8c33ecaec6d1dfc96948214da200a484a9042c" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cb65563af847e5f0ee8f1f31521243ba6a7be4dd39af40faf65963f2eab5cfe3", "state"=>"8cb244238e8c33ecaec6d1dfc96948214da200a484a9042c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
-Started GET "/auth/gds/callback?code=6f7d011b37482536e90ab3d297ba7577b3e4b6db2297f06d1da2b0af5e7cd630&state=79f487227727059b4a1f1f3c11e85c063f4c80673f1c91b2" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=a3cfeb5bc3f0559f6c71b07255dbbcaaf14106a2bfdd84f3ef6da71999a12751&state=cdaa23b210d09c4b22389cde774e4cf95f5b42113f5ef06c" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6f7d011b37482536e90ab3d297ba7577b3e4b6db2297f06d1da2b0af5e7cd630", "state"=>"79f487227727059b4a1f1f3c11e85c063f4c80673f1c91b2"}
+  Parameters: {"code"=>"a3cfeb5bc3f0559f6c71b07255dbbcaaf14106a2bfdd84f3ef6da71999a12751", "state"=>"cdaa23b210d09c4b22389cde774e4cf95f5b42113f5ef06c"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
+   (35.6ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
-Started GET "/auth/gds/callback?code=88adb4c72e3a5a871dc1ba32021f4e7d210e6fac394e386579b5d9f1c3fdd553&state=4fea53313bf70e131656e8dd79083d763d4332b7e17cf8d2" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=2f79647f0aad9bb1826d098bffa2c472a3ff75927c4c08965f33a23a26e440e7&state=3751200c9e5faef8aed92355841f12ffa40faf3f2a3fb047" for 127.0.0.1 at 2016-12-20 12:13:41 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"88adb4c72e3a5a871dc1ba32021f4e7d210e6fac394e386579b5d9f1c3fdd553", "state"=>"4fea53313bf70e131656e8dd79083d763d4332b7e17cf8d2"}
+  Parameters: {"code"=>"2f79647f0aad9bb1826d098bffa2c472a3ff75927c4c08965f33a23a26e440e7", "state"=>"3751200c9e5faef8aed92355841f12ffa40faf3f2a3fb047"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
+   (9.6ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed 302 Found in 15ms (ActiveRecord: 10.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:41 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-   (29.8ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (17.4ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+   (50.1ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (28.4ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
   ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2016-11-25 13:43:49 UTC], ["updated_at", 2016-11-25 13:43:49 UTC]]
-   (17.1ms)  commit transaction
-   (12.4ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (50.4ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2016-12-20 12:13:53 UTC], ["updated_at", 2016-12-20 12:13:53 UTC]]
+   (33.5ms)  commit transaction
+   (13.7ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37643"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (29.4ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (1.8ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d34253"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (26.6ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d37643"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39074"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (12.7ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36182"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (34.5ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38554"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (18.3ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d39994"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (29.3ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38554"}
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d38554"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 6]]
-   (47.6ms)  commit transaction
-Completed 200 OK in 52ms (ActiveRecord: 48.0ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 6], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39438"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (32.8ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32962"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (22.7ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39438"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32517"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (42.2ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32395"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (59.3ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32517"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d32517"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
-   (41.8ms)  commit transaction
-Completed 200 OK in 47ms (ActiveRecord: 42.3ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 10], ["LIMIT", 1]]
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Processing by ExampleController#index as HTML
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 5ms (Views: 4.8ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
-Started GET "/auth/gds/callback?code=20e5974b28bfda5733c3cf3ee87d0f8ac998ae732db51dcbd2cc21f94db3a7ca&state=89a9ffe6907fbf149376136993a1a3dd5fe6d97223b5fa83" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed   in 10ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Started GET "/auth/gds/callback?code=b53a54e8b0b3cbdfabdc8a15b70ed0aa08fe90dd93f967f52093010b75deca87&state=75a80f5775406deb80c295cf799b777f47d1fa156a6eddfe" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"20e5974b28bfda5733c3cf3ee87d0f8ac998ae732db51dcbd2cc21f94db3a7ca", "state"=>"89a9ffe6907fbf149376136993a1a3dd5fe6d97223b5fa83"}
+  Parameters: {"code"=>"b53a54e8b0b3cbdfabdc8a15b70ed0aa08fe90dd93f967f52093010b75deca87", "state"=>"75a80f5775406deb80c295cf799b777f47d1fa156a6eddfe"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-   (14.9ms)  commit transaction
+   (7.4ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
-   (30.0ms)  commit transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
+   (9.3ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 52ms (ActiveRecord: 45.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed 302 Found in 51ms (ActiveRecord: 18.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 5ms (Views: 2.2ms | ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
-Started GET "/auth/gds/callback?code=d9fce11583aecbac87e2f6d47bb6e16808e7975493bdf51cfff2486ed0c3ee6f&state=a314d62a587f324f4677a42240877eeafb1aa2868a6e8add" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Started GET "/auth/gds/callback?code=2dff3e30ade4d365c8963faf730f164a395b501db877cfcdf7e523a995519d44&state=b73d837ffa9c011e212f1292017d24b7a1a040de5d6f0ac9" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d9fce11583aecbac87e2f6d47bb6e16808e7975493bdf51cfff2486ed0c3ee6f", "state"=>"a314d62a587f324f4677a42240877eeafb1aa2868a6e8add"}
+  Parameters: {"code"=>"2dff3e30ade4d365c8963faf730f164a395b501db877cfcdf7e523a995519d44", "state"=>"b73d837ffa9c011e212f1292017d24b7a1a040de5d6f0ac9"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=6e3eb4fa26ff4b043ec518a09c79e706aa089ed45f288298c49a230e5351d616&state=0c61be3bded0f5f657cd3d29653417788c385768c992d61d" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=2b1e005823ea196c061b627a79d864db70127925341c1bd635a2f76e1c976455&state=0a0fba517482b78dcc12e46edad4a167ec962019cb53bb72" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6e3eb4fa26ff4b043ec518a09c79e706aa089ed45f288298c49a230e5351d616", "state"=>"0c61be3bded0f5f657cd3d29653417788c385768c992d61d"}
+  Parameters: {"code"=>"2b1e005823ea196c061b627a79d864db70127925341c1bd635a2f76e1c976455", "state"=>"0a0fba517482b78dcc12e46edad4a167ec962019cb53bb72"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Processing by ExampleController#index as HTML
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=fc3efc5ff3e6060cea9e71bb6e6f3e4a80fc3d949453918978e3f2438d96aa76&state=8841e8604f5e521c89e68560267b5ac26804f9f55030e105" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=2fe545bca5ab9ced8a80b07063bf7005b1ba3b2b3fc02c370f1fd0ea366535e1&state=b6cec9870ae3c453c1ce03e01a251bad2134617d3a92b425" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"fc3efc5ff3e6060cea9e71bb6e6f3e4a80fc3d949453918978e3f2438d96aa76", "state"=>"8841e8604f5e521c89e68560267b5ac26804f9f55030e105"}
+  Parameters: {"code"=>"2fe545bca5ab9ced8a80b07063bf7005b1ba3b2b3fc02c370f1fd0ea366535e1", "state"=>"b6cec9870ae3c453c1ce03e01a251bad2134617d3a92b425"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=37e4f12f3139b7f09ca5138a666348adbe2de9fef12018724e8c9b4599e50f1b&state=d0de14ea6a33f30df7db5659413a176dfc1e367582af40f6" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=9e72ca947db57c4a38a57cebb7278dc1136149a72edcdce5b9b5da90f9a6b332&state=a1db84704077308e11bc62eb6f4eb9abc0c1101a0d5e534a" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"37e4f12f3139b7f09ca5138a666348adbe2de9fef12018724e8c9b4599e50f1b", "state"=>"d0de14ea6a33f30df7db5659413a176dfc1e367582af40f6"}
+  Parameters: {"code"=>"9e72ca947db57c4a38a57cebb7278dc1136149a72edcdce5b9b5da90f9a6b332", "state"=>"a1db84704077308e11bc62eb6f4eb9abc0c1101a0d5e534a"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=6c9bfeb102f4e0e1120398cfc1c1c31cba3f4cb3f85ff8ae0385a0f0e995ce04&state=9093f73a23bcecce0e2c374cdbf37f0108cae9bbc6754520" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=f754f3fc8f691d7761bb423ce1a32714eb5033a9ec610293b36b3f960bed6326&state=d53ac52bd80f458329539de3659c9930f94961c168bb7ff3" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6c9bfeb102f4e0e1120398cfc1c1c31cba3f4cb3f85ff8ae0385a0f0e995ce04", "state"=>"9093f73a23bcecce0e2c374cdbf37f0108cae9bbc6754520"}
+  Parameters: {"code"=>"f754f3fc8f691d7761bb423ce1a32714eb5033a9ec610293b36b3f960bed6326", "state"=>"d53ac52bd80f458329539de3659c9930f94961c168bb7ff3"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:38:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 1]]
+   (10.8ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=c63978b042d97f8a745efc08a3432c13a07692fbedbc4079044b7844dff0d7e8&state=6c8246395eb6eb3393b389ac551e2522b7d8e70684d8f22e" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=93557adfd1170e5330a63bc9d3ccbcd44bcf850746ad17f1b80b32f7bfc6d61e&state=f958569a1792a0691bc38738bc879814229af5d76b183065" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c63978b042d97f8a745efc08a3432c13a07692fbedbc4079044b7844dff0d7e8", "state"=>"6c8246395eb6eb3393b389ac551e2522b7d8e70684d8f22e"}
+  Parameters: {"code"=>"93557adfd1170e5330a63bc9d3ccbcd44bcf850746ad17f1b80b32f7bfc6d61e", "state"=>"f958569a1792a0691bc38738bc879814229af5d76b183065"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
+   (12.7ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 20ms (ActiveRecord: 13.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=5229ba82ef286c3fde70ffe4fbef3a21d7c703461e48c72ddee14bcb62071076&state=333d26dd26654d38e2a6868b68a341568167fec3d698aa6e" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=2f4c371ee353aa938a0c0b4884d678c9ca1a3b8f0c4c0ba4f6062409d7a2678b&state=80046ff1a8d68fb5fd872abbbd7a277d13b173fd02bec941" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5229ba82ef286c3fde70ffe4fbef3a21d7c703461e48c72ddee14bcb62071076", "state"=>"333d26dd26654d38e2a6868b68a341568167fec3d698aa6e"}
+  Parameters: {"code"=>"2f4c371ee353aa938a0c0b4884d678c9ca1a3b8f0c4c0ba4f6062409d7a2678b", "state"=>"80046ff1a8d68fb5fd872abbbd7a277d13b173fd02bec941"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Started GET "/auth/gds/callback?code=f05a8b4e9102c7eba4fcfcf26b7e9524a7d172427b7765b328cd52a0f107cd38&state=1f8e53a7b16af9400f9234ee26b862d0a56e7b78e8e8b39b" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
+Started GET "/auth/gds/callback?code=cf55602d6aac2394eaa6601b069943fbabbfb2b9648bbd7c3d4e463c1ff20a3a&state=d4945f2e66485f1f80aa6c5b875367524a245bfb194ca9e6" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f05a8b4e9102c7eba4fcfcf26b7e9524a7d172427b7765b328cd52a0f107cd38", "state"=>"1f8e53a7b16af9400f9234ee26b862d0a56e7b78e8e8b39b"}
+  Parameters: {"code"=>"cf55602d6aac2394eaa6601b069943fbabbfb2b9648bbd7c3d4e463c1ff20a3a", "state"=>"d4945f2e66485f1f80aa6c5b875367524a245bfb194ca9e6"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=7e818e1c5c01ac8cd30f5b96e84dcb6e0c72ed8b51e4d25ed4db93c9171ca963&state=a14348956a612958a57fd91a9a5624bdf87c587d20624e33" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=eda09e29bd8e2830e0075c5db8fe57e905af2effeb707f71ed2d81fad615311e&state=0c893c6f4a0c2c3084337e46e77fbc9f4494a2f5b5d53004" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"7e818e1c5c01ac8cd30f5b96e84dcb6e0c72ed8b51e4d25ed4db93c9171ca963", "state"=>"a14348956a612958a57fd91a9a5624bdf87c587d20624e33"}
+  Parameters: {"code"=>"eda09e29bd8e2830e0075c5db8fe57e905af2effeb707f71ed2d81fad615311e", "state"=>"0c893c6f4a0c2c3084337e46e77fbc9f4494a2f5b5d53004"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.7ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.7ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 12]]
-   (20.1ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:56 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
-Started GET "/auth/gds/callback?code=5e28167f5be69dda4b0fe3984973b050e9bd032d369589588e6aeda3d3a5c0e1&state=997f9516ea7ec6ebfe79b80b62812c32aaa75d4a2db1015f" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:56 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Started GET "/auth/gds/callback?code=d9773150bbaed328cbc0e9467a34f1a9e64ea2b90e6bc724f57ed6d02b33887d&state=4db4e0eb8647cf92aa8bc997695258ce59a493270ae07002" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5e28167f5be69dda4b0fe3984973b050e9bd032d369589588e6aeda3d3a5c0e1", "state"=>"997f9516ea7ec6ebfe79b80b62812c32aaa75d4a2db1015f"}
+  Parameters: {"code"=>"d9773150bbaed328cbc0e9467a34f1a9e64ea2b90e6bc724f57ed6d02b33887d", "state"=>"4db4e0eb8647cf92aa8bc997695258ce59a493270ae07002"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.5ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
-   (27.5ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 34ms (ActiveRecord: 28.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:08:56 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 24ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
-   (20.6ms)  commit transaction
-  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 1]]
+   (16.8ms)  commit transaction
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -709,11 +644,11 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 99ms (Views: 0.6ms | ActiveRecord: 22.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 97ms (Views: 0.4ms | ActiveRecord: 18.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as JSON
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.3ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
@@ -726,203 +661,268 @@ Processing by ExampleController#restricted as JSON
    (0.1ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 80ms (Views: 0.4ms | ActiveRecord: 1.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 86ms (Views: 0.4ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-   (200.3ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (164.7ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
-   (0.4ms)  select sqlite_version(*)
-   (138.1ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+Completed   in 19ms (ActiveRecord: 0.0ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (11.5ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38884"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (11.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37324"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.9ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38288"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (8.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36018"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (7.0ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38288"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 8ms (Views: 7.0ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.4ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34383"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (17.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31988"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (8.7ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34383"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d34383"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 7]]
+   (7.6ms)  commit transaction
+Completed 200 OK in 11ms (ActiveRecord: 8.1ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 7], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34858"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (8.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37304"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (9.1ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34858"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d34858"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
+   (9.1ms)  commit transaction
+Completed 200 OK in 14ms (ActiveRecord: 9.5ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 9], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38853"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (24.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3825"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (21.1ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38853"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 2ms (Views: 1.3ms | ActiveRecord: 0.0ms)
+   (18.3ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (11.8ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+   (0.1ms)  select sqlite_version(*)
+   (8.7ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31425"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (158.0ms)  commit transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (17.0ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34590"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (49.8ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39436"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (132.1ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36466"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (127.9ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d31425"}
+  Parameters: {"uid"=>"a1s2d34590"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 9ms (Views: 8.9ms | ActiveRecord: 0.0ms)
+Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36156"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (226.6ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39434"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (33.3ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37890"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (177.0ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36793"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (57.5ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 6ms (ActiveRecord: 0.2ms)
+  Parameters: {"uid"=>"a1s2d39434"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d39434"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 4]]
+   (28.2ms)  commit transaction
+Completed 200 OK in 32ms (ActiveRecord: 28.6ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 4]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38533"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (126.1ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39628"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (21.9ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36126"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (124.6ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34159"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (45.9ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38533"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38533"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 5]]
-   (125.8ms)  commit transaction
-Completed 200 OK in 130ms (ActiveRecord: 126.2ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 5]]
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32438"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (184.0ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37093"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (29.8ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32890"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (250.4ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37407"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (26.3ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32438"}
+  Parameters: {"uid"=>"a1s2d37093"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
 Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32914"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (85.4ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34602"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (18.3ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33322"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (121.6ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32032"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (8.4ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32914"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d32914"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
-   (83.7ms)  commit transaction
-Completed 200 OK in 88ms (ActiveRecord: 84.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (66.5ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  Parameters: {"uid"=>"a1s2d34602"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d34602"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 1.0ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
+   (56.6ms)  commit transaction
+Completed 200 OK in 61ms (ActiveRecord: 57.0ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 10]]
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
-Started GET "/auth/gds/callback?code=f26bab61e3821688dbabf19d7350ce7439de62c6234faac4c5576e87a30d76a4&state=3c86a804ac28c20971241bd0f80807ffe7d57bc37cf6bb9d" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Started GET "/auth/gds/callback?code=e83c574e24c350ff3a8edc04116dd82d5c6d5423807be6f248399172b2249c86&state=1c6f0e587f72cbd849afd01c9e44eb50d3eda24fadf36c2d" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f26bab61e3821688dbabf19d7350ce7439de62c6234faac4c5576e87a30d76a4", "state"=>"3c86a804ac28c20971241bd0f80807ffe7d57bc37cf6bb9d"}
+  Parameters: {"code"=>"e83c574e24c350ff3a8edc04116dd82d5c6d5423807be6f248399172b2249c86", "state"=>"1c6f0e587f72cbd849afd01c9e44eb50d3eda24fadf36c2d"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
-   (252.9ms)  commit transaction
+   (55.8ms)  commit transaction
    (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (246.9ms)  commit transaction
+   (59.9ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 507ms (ActiveRecord: 500.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Completed 302 Found in 124ms (ActiveRecord: 116.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 1.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
-Started GET "/auth/gds/callback?code=55112b3e0436989f0cc684e21124051dc9a0c4985ba5bd0c0a3377079f728642&state=9f2d78f675b870239ed1b7178276eedfd6c16aaea1d543e4" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Started GET "/auth/gds/callback?code=815014e9b0d21da1e755c05a6ec370c5dcf1281a4a0d5163a3ab154749c5e5b9&state=d2f7ed5aa6a311325022c700508774724d382acaf0e7bf63" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"55112b3e0436989f0cc684e21124051dc9a0c4985ba5bd0c0a3377079f728642", "state"=>"9f2d78f675b870239ed1b7178276eedfd6c16aaea1d543e4"}
+  Parameters: {"code"=>"815014e9b0d21da1e755c05a6ec370c5dcf1281a4a0d5163a3ab154749c5e5b9", "state"=>"d2f7ed5aa6a311325022c700508774724d382acaf0e7bf63"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=97fe3c4a409a4abe1419ac55c829f11c81aafe6b9d2c649676c180aee5c24750&state=e48e84d3df03d4468e1ab954d55b0486b92fb3e20c979a6f" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=5e9b99cb06e1c34740db954da63a7eb2e560d3192cacf8909335c94021848514&state=697b0a2a06803b0b60b94edcfa5e06d51bbffdc801f042e8" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"97fe3c4a409a4abe1419ac55c829f11c81aafe6b9d2c649676c180aee5c24750", "state"=>"e48e84d3df03d4468e1ab954d55b0486b92fb3e20c979a6f"}
+  Parameters: {"code"=>"5e9b99cb06e1c34740db954da63a7eb2e560d3192cacf8909335c94021848514", "state"=>"697b0a2a06803b0b60b94edcfa5e06d51bbffdc801f042e8"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=b720f5c47ad488aa3c2aa6a9c40b0d98685c585dd69abf70b5a096e9b027a5ec&state=e3797714256bd03d1b17dd097aba01c38ca2d39b404009fa" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=f61dc7b0678d75071939e02a36a56ffe8cedfb1080fdbf3ebed8f6457c149323&state=652b84b2aec0cb3cfeaeacec285ccabd80e515f432676b10" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b720f5c47ad488aa3c2aa6a9c40b0d98685c585dd69abf70b5a096e9b027a5ec", "state"=>"e3797714256bd03d1b17dd097aba01c38ca2d39b404009fa"}
+  Parameters: {"code"=>"f61dc7b0678d75071939e02a36a56ffe8cedfb1080fdbf3ebed8f6457c149323", "state"=>"652b84b2aec0cb3cfeaeacec285ccabd80e515f432676b10"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=1c66b2bc93853363593ce073ddc618681ff20b2bc038e1326e99088b0a7bb8ae&state=644fa6b26ac85fcbeaf539b0a3b42bdc98118ee7ad3a0fb0" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=ddb00bddd9c83f7f2fef1957866c328b0fbc5497ed58aff9cf450dde57cfd78d&state=37b1f68c09a1a2ab6d6c363cb0bebe09a9bf02f3ed77fc79" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1c66b2bc93853363593ce073ddc618681ff20b2bc038e1326e99088b0a7bb8ae", "state"=>"644fa6b26ac85fcbeaf539b0a3b42bdc98118ee7ad3a0fb0"}
+  Parameters: {"code"=>"ddb00bddd9c83f7f2fef1957866c328b0fbc5497ed58aff9cf450dde57cfd78d", "state"=>"37b1f68c09a1a2ab6d6c363cb0bebe09a9bf02f3ed77fc79"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=0eef37849744379db73f6df0c3a9c1ab11cc6c0454e8ec59f6c624edc9a3d83d&state=3fac31e26fef953d07e1ea1a622e890654fcd4be2be1971f" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=5d782eb8f92316cc6e1c2aa278e5bdb71e9c1fb7aa5d295ccf21198682694534&state=d3cfca2752cbf51b944c5e70e1738df35602e8c3f640ab23" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0eef37849744379db73f6df0c3a9c1ab11cc6c0454e8ec59f6c624edc9a3d83d", "state"=>"3fac31e26fef953d07e1ea1a622e890654fcd4be2be1971f"}
+  Parameters: {"code"=>"5d782eb8f92316cc6e1c2aa278e5bdb71e9c1fb7aa5d295ccf21198682694534", "state"=>"d3cfca2752cbf51b944c5e70e1738df35602e8c3f640ab23"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
@@ -931,40 +931,40 @@ Authenticating with gds_sso strategy
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:01 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:01 +0000
-Started GET "/auth/gds/callback?code=4a535912bbaf726c29f2ba86838fa2508865787d2c2f97a34de60fc2db09577d&state=e2593e5b8190f1f67f5bb52ed37c69f96671e51442786701" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Started GET "/auth/gds/callback?code=1b136b2495606a2bf087a88aaf75a16938bc4c46478aaaf986b56dd879ee0741&state=b0bd5ae90cd2d6153d28844ec95ab09ff0f0a6872cec177b" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"4a535912bbaf726c29f2ba86838fa2508865787d2c2f97a34de60fc2db09577d", "state"=>"e2593e5b8190f1f67f5bb52ed37c69f96671e51442786701"}
+  Parameters: {"code"=>"1b136b2495606a2bf087a88aaf75a16938bc4c46478aaaf986b56dd879ee0741", "state"=>"b0bd5ae90cd2d6153d28844ec95ab09ff0f0a6872cec177b"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.3ms)  commit transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=9f1f0a040a9a52aafc0f018f32e878ebe193a739f6da233a6d5ac70832085d5b&state=3e8d2364176666119009c02519aca7cdcd154c763e9e7f98" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=03db107ba23a498b84abac261855f02c826e2cc5911ac3472d5d24adf6735430&state=cce2324be8ea1af35578a28cbab9fc3f7ff1ba2058e318b2" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"9f1f0a040a9a52aafc0f018f32e878ebe193a739f6da233a6d5ac70832085d5b", "state"=>"3e8d2364176666119009c02519aca7cdcd154c763e9e7f98"}
+  Parameters: {"code"=>"03db107ba23a498b84abac261855f02c826e2cc5911ac3472d5d24adf6735430", "state"=>"cce2324be8ea1af35578a28cbab9fc3f7ff1ba2058e318b2"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
@@ -973,100 +973,97 @@ Authenticating with gds_sso strategy
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:09:03 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=e6182dd9a8a4c90de0bc3778feda841b03003ec8a1f0dcaed046d030468b0709&state=745b5439b70881cd8057544a5f32d6541adef54c55dd5ad2" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=339c75ffaa47170c9f408b88132d9d4f2b5d87690c36819a1216662484ae81d0&state=4fbd0c12c577843925499060671b572d7f4e49879704627a" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e6182dd9a8a4c90de0bc3778feda841b03003ec8a1f0dcaed046d030468b0709", "state"=>"745b5439b70881cd8057544a5f32d6541adef54c55dd5ad2"}
+  Parameters: {"code"=>"339c75ffaa47170c9f408b88132d9d4f2b5d87690c36819a1216662484ae81d0", "state"=>"4fbd0c12c577843925499060671b572d7f4e49879704627a"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:39:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=ac6ea4384f64b9ff95c2684f4337e55fa0175f6b72600ca38778264694814fb3&state=23e2e2d01dfa08ccb5ed2fc4e734a847a5e11b7236ccf6e9" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=45976954b052808db424af8655041bfd5636b8ab31e88300a2bfc6e4af321335&state=e9b07ec972a760de7b8eae193c3258cb02d35379ba595005" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ac6ea4384f64b9ff95c2684f4337e55fa0175f6b72600ca38778264694814fb3", "state"=>"23e2e2d01dfa08ccb5ed2fc4e734a847a5e11b7236ccf6e9"}
+  Parameters: {"code"=>"45976954b052808db424af8655041bfd5636b8ab31e88300a2bfc6e4af321335", "state"=>"e9b07ec972a760de7b8eae193c3258cb02d35379ba595005"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-   (164.2ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+   (283.7ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Started GET "/auth/gds/callback?code=63614c1ec3e831218c836cd59d6e2831e1001797e39509a7acae36083adab320&state=8d27838d7bb70a65ce13441a30b11400f817e91f9886cb7b" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Started GET "/auth/gds/callback?code=e8aaee5efec2952249ba030aa7f13a3fdefe8310081596ef31995a008cc1e839&state=136e87f9ea15c62569bded7132587fea1c23d5c22c26a2d7" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"63614c1ec3e831218c836cd59d6e2831e1001797e39509a7acae36083adab320", "state"=>"8d27838d7bb70a65ce13441a30b11400f817e91f9886cb7b"}
+  Parameters: {"code"=>"e8aaee5efec2952249ba030aa7f13a3fdefe8310081596ef31995a008cc1e839", "state"=>"136e87f9ea15c62569bded7132587fea1c23d5c22c26a2d7"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-   (163.5ms)  commit transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
+   (109.5ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 169ms (ActiveRecord: 164.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed 302 Found in 115ms (ActiveRecord: 110.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
-   (190.5ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (44.2ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.2ms)  begin transaction
    (0.1ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -1078,11 +1075,8 @@ Processing by ExampleController#restricted as JSON
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 261ms (Views: 0.3ms | ActiveRecord: 191.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed 200 OK in 118ms (Views: 0.3ms | ActiveRecord: 45.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
@@ -1099,372 +1093,378 @@ Processing by ExampleController#this_requires_signin_permission as JSON
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 69ms (Views: 0.3ms | ActiveRecord: 1.0ms)
-   (134.4ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (115.1ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+Completed 200 OK in 70ms (Views: 0.4ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 16ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 16ms (ActiveRecord: 0.0ms)
+   (62.8ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (26.6ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
   ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2016-11-25 13:44:07 UTC], ["updated_at", 2016-11-25 13:44:07 UTC]]
-   (157.5ms)  commit transaction
-   (70.9ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
-  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2016-12-20 12:14:08 UTC], ["updated_at", 2016-12-20 12:14:08 UTC]]
+   (48.2ms)  commit transaction
+   (22.5ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (154.1ms)  commit transaction
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32278"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (16.2ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38130"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (20.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32278"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d32278"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 1]]
+   (15.5ms)  commit transaction
+Completed 200 OK in 22ms (ActiveRecord: 16.0ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 1], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36805"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (17.4ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
-   (131.7ms)  commit transaction
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 390ms (Views: 3.6ms | ActiveRecord: 288.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 25ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3981"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (14.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36805"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 9ms (Views: 8.6ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36327"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (15.0ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31900"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (10.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d36327"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d36327"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 5]]
+   (11.5ms)  commit transaction
+Completed 200 OK in 15ms (ActiveRecord: 11.8ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 5], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31201"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (16.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d35356"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (55.4ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35825"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (53.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33840"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (12.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35825"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (34.1ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 91ms (Views: 0.4ms | ActiveRecord: 1.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Started GET "/auth/gds/callback?code=c0a84b9848298a9f262a09a67e03b82a3ddb2e11d32349af67a134f2a8c1df54&state=785ca430b12fe07e5ebbd5d2576cf8d9adaaec586d9b8741" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
+Completed   in 8ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=d8dc5f3f1e4f979188078210eb672cc65e65886a1911d3a04e007b6920639aae&state=aacd9976277328788208a01786c2d724c983a1af89b3428c" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c0a84b9848298a9f262a09a67e03b82a3ddb2e11d32349af67a134f2a8c1df54", "state"=>"785ca430b12fe07e5ebbd5d2576cf8d9adaaec586d9b8741"}
+  Parameters: {"code"=>"d8dc5f3f1e4f979188078210eb672cc65e65886a1911d3a04e007b6920639aae", "state"=>"aacd9976277328788208a01786c2d724c983a1af89b3428c"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", false], ["id", 1]]
-   (104.4ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
+   (41.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
+   (32.3ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 109ms (ActiveRecord: 104.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Completed 302 Found in 81ms (ActiveRecord: 74.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 3ms (Views: 1.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=bf76d7f035ac8073a3a23d377ad10f341fd99cb317858d7c202b232a4fbf8ee8&state=4c6e9f8c2ab2cf114c8af1aa29e839c88763904579134b18" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=6454c026e285afaade3a0287a25f253e179535e150366a539d95c1abb56c781c&state=bd7243c7e76af115c65015bda69fe6ba81f9d5990191e936" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"bf76d7f035ac8073a3a23d377ad10f341fd99cb317858d7c202b232a4fbf8ee8", "state"=>"4c6e9f8c2ab2cf114c8af1aa29e839c88763904579134b18"}
+  Parameters: {"code"=>"6454c026e285afaade3a0287a25f253e179535e150366a539d95c1abb56c781c", "state"=>"bd7243c7e76af115c65015bda69fe6ba81f9d5990191e936"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=3a117361caf80c06abc97a5c61eeef6d1b530ab6838b74848703417769f377df&state=37ba9999028828876033494d9ef60de447771819b102f542" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=80e5e5b28eee67bab0781cf4c142b6780cc1b7880cf6d51136b354cd3fb5cf9f&state=7a704ce64594ad2f0d857d02e7e650ca49316059a861cec9" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3a117361caf80c06abc97a5c61eeef6d1b530ab6838b74848703417769f377df", "state"=>"37ba9999028828876033494d9ef60de447771819b102f542"}
+  Parameters: {"code"=>"80e5e5b28eee67bab0781cf4c142b6780cc1b7880cf6d51136b354cd3fb5cf9f", "state"=>"7a704ce64594ad2f0d857d02e7e650ca49316059a861cec9"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=b7eae245485328e121e9325ae16ed83aa90f00cecccb5a12e8e16d96602811f0&state=6e18b7da44b64322b9feebfd747f8ab38f8b988ce94a6d66" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=d67a4a1b558a511c1ad6b1f2c3812383c8cb3f0f0a26b57165027a34b7cabf66&state=015ab0b69b3f7d1ee20818ddfa8ac11a9531568e29cf0cde" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b7eae245485328e121e9325ae16ed83aa90f00cecccb5a12e8e16d96602811f0", "state"=>"6e18b7da44b64322b9feebfd747f8ab38f8b988ce94a6d66"}
+  Parameters: {"code"=>"d67a4a1b558a511c1ad6b1f2c3812383c8cb3f0f0a26b57165027a34b7cabf66", "state"=>"015ab0b69b3f7d1ee20818ddfa8ac11a9531568e29cf0cde"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=2b981d35b8370b19479ffec3ca76bfbce2e8e96b5625373767de621054930664&state=c20b030e32057395dc69e18b12c5590d943a9c21c905e5fe" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=cdad962a36a08db481fe4fecede9f8cc1cad75e8b062efc1f2f9ca7d914cd492&state=7e5b155263da27fc8d73ea1f08761c51db8fb1548965f534" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2b981d35b8370b19479ffec3ca76bfbce2e8e96b5625373767de621054930664", "state"=>"c20b030e32057395dc69e18b12c5590d943a9c21c905e5fe"}
+  Parameters: {"code"=>"cdad962a36a08db481fe4fecede9f8cc1cad75e8b062efc1f2f9ca7d914cd492", "state"=>"7e5b155263da27fc8d73ea1f08761c51db8fb1548965f534"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=a64ee593600313a329104a3a301b885c4de72ca20bbe395c228a31d5637084ac&state=75e9cc0fb0abcde491c545a4ba1f08a2bf1d3c680c80d08d" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=999e4432f7bc83f228510f96699d778c15f0c70804900a679decfecca294149b&state=8c12733cf664d98a06a6ff8733f940688ea9bdef5d6dfcbf" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a64ee593600313a329104a3a301b885c4de72ca20bbe395c228a31d5637084ac", "state"=>"75e9cc0fb0abcde491c545a4ba1f08a2bf1d3c680c80d08d"}
+  Parameters: {"code"=>"999e4432f7bc83f228510f96699d778c15f0c70804900a679decfecca294149b", "state"=>"8c12733cf664d98a06a6ff8733f940688ea9bdef5d6dfcbf"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 1]]
-   (165.7ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+  SQL (0.3ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 12]]
+   (16.3ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
 Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=199a427dacb6ebb4bf71a3f78b261a7f56023326646be791b959f8facbd9674f&state=9c1046561c80184c37b0816b5b556aaae34b9472253dc571" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=587251ab2106b620669466be04d27c6654c5e7c8d2b7c17bd1612e6f84b5edae&state=28d71131564fb6b03e614171919d5ba4d9301592c363a253" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"199a427dacb6ebb4bf71a3f78b261a7f56023326646be791b959f8facbd9674f", "state"=>"9c1046561c80184c37b0816b5b556aaae34b9472253dc571"}
+  Parameters: {"code"=>"587251ab2106b620669466be04d27c6654c5e7c8d2b7c17bd1612e6f84b5edae", "state"=>"28d71131564fb6b03e614171919d5ba4d9301592c363a253"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
-   (127.2ms)  commit transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
+   (31.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 133ms (ActiveRecord: 127.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 302 Found in 36ms (ActiveRecord: 31.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=ba207418b730acd401f90e2ab7767fea110b029de02e40b28b4f5cfb6229a568&state=a58aef958e400d846df3c30d2ac822763d9b1af234c5ae37" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=cfc2685d922c20e75a7f1d20b934df05f23e946e3f15ecef516f23905acedb07&state=aea99e3314d693dbb15b849aab75622a8a02c6879af64e94" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ba207418b730acd401f90e2ab7767fea110b029de02e40b28b4f5cfb6229a568", "state"=>"a58aef958e400d846df3c30d2ac822763d9b1af234c5ae37"}
+  Parameters: {"code"=>"cfc2685d922c20e75a7f1d20b934df05f23e946e3f15ecef516f23905acedb07", "state"=>"aea99e3314d693dbb15b849aab75622a8a02c6879af64e94"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Started GET "/auth/gds/callback?code=ba733aaa5e6f5cfd68f43b6d4dcac0b56dc9a824902757b03989f0333dd4929c&state=ab9b252c55e0213badba6ab4d9edd9ea658515cd496c6793" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=cc8e3d9ba9293b955555a89768762ce042047954203cc212ff0c40084773b2a3&state=ea6a2412469dde362d03b75a0c8564f429102b049922442c" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ba733aaa5e6f5cfd68f43b6d4dcac0b56dc9a824902757b03989f0333dd4929c", "state"=>"ab9b252c55e0213badba6ab4d9edd9ea658515cd496c6793"}
+  Parameters: {"code"=>"cc8e3d9ba9293b955555a89768762ce042047954203cc212ff0c40084773b2a3", "state"=>"ea6a2412469dde362d03b75a0c8564f429102b049922442c"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
-Started GET "/auth/gds/callback?code=cadac2fc142b359cec8bce949fe53f95466e5f47dc876f961f2588ae806888a0&state=43710693a55e9165b8307f7c12d7a9fdd4cc03b5a63281ed" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
+Started GET "/auth/gds/callback?code=265d8668574607c86d4d00412135ca852843df7d4f2d7763a0ab34cb035e7ec1&state=2cb9733c5a52d5b5baca3dc7d994508d94e68134fce016e0" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"cadac2fc142b359cec8bce949fe53f95466e5f47dc876f961f2588ae806888a0", "state"=>"43710693a55e9165b8307f7c12d7a9fdd4cc03b5a63281ed"}
+  Parameters: {"code"=>"265d8668574607c86d4d00412135ca852843df7d4f2d7763a0ab34cb035e7ec1", "state"=>"2cb9733c5a52d5b5baca3dc7d994508d94e68134fce016e0"}
 Authenticating with gds_sso strategy
-  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
-Started GET "/auth/gds/callback?code=e97c1923e96ebde4a13a7f6c5bac17afdacae87a877be9cf19b2dacb2bbf008b&state=bbf26cdc855f5873a40f06c8f4806ce2de391f64600ef839" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=31e8519894ba3863039ba3f1e53d8fc6af605386299e4dd3df858f748027c413&state=0d3dfd7f5d02df402964f955d6e1556024c3c1a61076779d" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e97c1923e96ebde4a13a7f6c5bac17afdacae87a877be9cf19b2dacb2bbf008b", "state"=>"bbf26cdc855f5873a40f06c8f4806ce2de391f64600ef839"}
+  Parameters: {"code"=>"31e8519894ba3863039ba3f1e53d8fc6af605386299e4dd3df858f748027c413", "state"=>"0d3dfd7f5d02df402964f955d6e1556024c3c1a61076779d"}
 Authenticating with gds_sso strategy
   User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:39:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:09:11 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (107.7ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38982"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (136.9ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 8ms (Views: 6.9ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36889"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (87.2ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31361"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (83.9ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d36889"}
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d36889"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-   (70.7ms)  commit transaction
-Completed 200 OK in 76ms (ActiveRecord: 71.2ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 4], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34414"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (100.0ms)  commit transaction
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 20ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33706"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (81.0ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d34414"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d34414"], ["LIMIT", 1]]
+  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
+   (14.7ms)  commit transaction
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 6]]
-   (165.0ms)  commit transaction
-Completed 200 OK in 169ms (ActiveRecord: 165.5ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 6], ["LIMIT", 1]]
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37344"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (92.8ms)  commit transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36432"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (129.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
+   (0.1ms)  commit transaction
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 95ms (Views: 0.4ms | ActiveRecord: 16.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33449"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (144.5ms)  commit transaction
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32843"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (164.9ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d33449"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 2ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (273.2ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.1ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.3ms)  commit transaction
+   (0.1ms)  commit transaction
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 91ms (Views: 0.5ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 21ms (ActiveRecord: 0.0ms)