RubyGems - gds-sso - Versions diffs - 13.1.0 → 13.2.0 - Mend

gds-sso 13.1.0 → 13.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/lib/gds-sso/user.rb +2 -20
data/lib/gds-sso/version.rb +1 -1
data/spec/controller/api_user_controller_spec.rb +0 -5
data/spec/internal/db/combustion_test.sqlite +0 -0
data/spec/internal/log/test.log +765 -765
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5631ed3451bf7a920107d8c4824612ef3ca79d26
-  data.tar.gz: 9a9cf474fb50419c0f904d337a1a2fc50a345b39
+  metadata.gz: 9f4c161463202bb5caf2111be0f9bc790949aa9c
+  data.tar.gz: 277d9b63b33fe337b234a898b1bfb169498bdc85
 SHA512:
-  metadata.gz: 917c719abe6c0274e0ff6fd21e10a2c7c905814e19e8ccc3d2750b7db65baa8e322bebcdf8c07e2650cb072cb169713ec31d4413347a00590f473f4ce028941a
-  data.tar.gz: a4382cf7d842114984ccb0292f0d6aa26746eaab57fda2258f7cb08b075f2ba458fbb2c43037ca75805d95843367cf902bd8f348388456bf3b3589faa64888c2
+  metadata.gz: e42272e73d5174d05e51f846f0f53335daf1559ba570ff5ef60c65bbc4b51c29d881cf24a91fdf773633dfcf008567d321400d68d598fffa0f6103386e8e756b
+  data.tar.gz: b7ee2256c17aba4a9a42861996749f86d2c5d8297985c070caf42097d05db5530ed539492a2d543f68fdabbce107ec99cbb8e5c679af63032db66e9b28a2f37f

data/lib/gds-sso/user.rb CHANGED Viewed

@@ -5,16 +5,6 @@ module GDS
     module User
       extend ActiveSupport::Concern
-      def self.below_rails_4?
-        Gem.loaded_specs['rails'] && Gem.loaded_specs['rails'].version < Gem::Version.new("4.0")
-      end
-      included do
-        if GDS::SSO::User.below_rails_4? && respond_to?(:attr_accessible)
-          attr_accessible :uid, :email, :name, :permissions, :organisation_slug, :organisation_content_id, :disabled, as: :oauth
-        end
-      end
       def has_permission?(permission)
         if permissions
           permissions.include?(permission)
@@ -48,18 +38,10 @@ module GDS
                  self.where(:email => user_params['email']).first
           if user
-            if GDS::SSO::User.below_rails_4?
-              user.update_attributes(user_params, as: :oauth)
-            else
-              user.update_attributes(user_params)
-            end
+            user.update_attributes(user_params)
             user
           else # Create a new user.
-            if GDS::SSO::User.below_rails_4?
-              self.create!(user_params, as: :oauth)
-            else
-              self.create!(user_params)
-            end
+            create!(user_params)
           end
         end
       end

data/lib/gds-sso/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "13.1.0"
+    VERSION = "13.2.0"
   end
 end

data/spec/controller/api_user_controller_spec.rb CHANGED Viewed

@@ -29,11 +29,6 @@ describe Api::UserController, type: :controller do
           :name => "SSO Push user",
           :permissions => ["signin", "user_update_permission"] }]
-    if GDS::SSO::User.below_rails_4?
-      user_to_update_attrs << { as: :oauth }
-      signon_sso_push_user_attrs << { as: :oauth }
-    end
     @user_to_update = User.create!(*user_to_update_attrs)
     @signon_sso_push_user = User.create!(*signon_sso_push_user_attrs)
   end

data/spec/internal/db/combustion_test.sqlite CHANGED Viewed

Binary file

data/spec/internal/log/test.log CHANGED Viewed

@@ -1,84 +1,81 @@
-  [1m[36m (35.9ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
-  [1m[35m (12.9ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
+  [1m[36m (24.5ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
+  [1m[35m (15.3ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
   [1m[36m (0.1ms)[0m  [1mselect sqlite_version(*)[0m
-  [1m[35m (31.3ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+  [1m[35m (44.7ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[36m (28.9ms)[0m  [1mcommit transaction[0m
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36712"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (25.7ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36205"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (13.2ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
+Completed 200 OK in 6ms (ActiveRecord: 0.2ms)
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d35653"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (35.2ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39384"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (18.1ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35653"}
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35653"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 3]]
+  [1m[36m (16.7ms)[0m  [1mcommit transaction[0m
+Completed 200 OK in 21ms (ActiveRecord: 17.1ms)
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35531"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (14.3ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39946"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (9.6ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d35203"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (11.2ms)[0m  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d35531"}
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34132"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (13.1ms)[0m  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d39946"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 9ms (Views: 8.5ms | ActiveRecord: 0.0ms)
+Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34549"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (37.0ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.2ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34041"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (25.5ms)[0m  commit transaction
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39843"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (18.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34615"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (15.5ms)[0m  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d34549"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d34549"]]
+  Parameters: {"uid"=>"a1s2d39843"}
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d39843"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.3ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-  [1m[35m (14.2ms)[0m  commit transaction
-Completed 200 OK in 20ms (ActiveRecord: 14.7ms)
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 4]]
+  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 7]]
+  [1m[35m (18.3ms)[0m  commit transaction
+Completed 200 OK in 23ms (ActiveRecord: 18.7ms)
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 7]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d38988"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (26.7ms)[0m  commit transaction
+  [1m[36mSQL (0.1ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d3479"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (10.7ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35119"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (10.9ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38988"}
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36505"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (9.8ms)[0m  [1mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d3479"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
 Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "user@example.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d39922"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (9.1ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3547"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (9.2ms)[0m  [1mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35459"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (10.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d34974"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (10.4ms)[0m  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d35459"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d35459"]]
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (13.5ms)[0m  commit transaction
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 10]]
-  [1m[35m (32.2ms)[0m  commit transaction
-Completed 200 OK in 35ms (ActiveRecord: 32.6ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 10]]
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 126ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.3ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-  [1m[35m (22.7ms)[0m  commit transaction
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (52.1ms)[0m  commit transaction
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35mCACHE (0.0ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
@@ -89,14 +86,17 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (20.5ms)[0m  commit transaction
+  [1m[35m (9.7ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 238ms (Views: 1.5ms | ActiveRecord: 44.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed 200 OK in 386ms (Views: 1.4ms | ActiveRecord: 63.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed   in 17ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#restricted as JSON
+Completed   in 29ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
@@ -112,173 +112,151 @@ Processing by ExampleController#restricted as JSON
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 77ms (Views: 0.4ms | ActiveRecord: 1.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
+Completed 200 OK in 73ms (Views: 0.3ms | ActiveRecord: 1.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:28 +0000
-Started GET "/auth/gds/callback?code=0406dfb10516969c1d7102990e91b9550ed0e008047d796666d1ec39a2eaab84&state=3ee46c89f5795b1b78505adce93de7186356f53217a16f0f" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:26 +0000
+Started GET "/auth/gds/callback?code=de1b1f9a5f817b4c5056335f3605ea461d9af17cc482b46464b7c6c5c2dadf7d&state=3b9f926e0d91f1510f4eb1ae914e097c934e99c0f7e00835" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0406dfb10516969c1d7102990e91b9550ed0e008047d796666d1ec39a2eaab84", "state"=>"3ee46c89f5795b1b78505adce93de7186356f53217a16f0f"}
+  Parameters: {"code"=>"de1b1f9a5f817b4c5056335f3605ea461d9af17cc482b46464b7c6c5c2dadf7d", "state"=>"3b9f926e0d91f1510f4eb1ae914e097c934e99c0f7e00835"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", "f"], ["id", 12]]
-  [1m[35m (14.3ms)[0m  commit transaction
+  [1m[35m (81.7ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 20ms (ActiveRecord: 14.9ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 88ms (ActiveRecord: 82.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=fb325e6a959f5b4ceb5f764cc26ce406d4b9cc94eed40f9fa08ddddc0a15cdd5&state=89f87e3d60b0acb5331152ca5ab604dba94898cbcb0a9f2c" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
+Started GET "/auth/gds/callback?code=81a39364e7be9158e0087c8d911cd1bf803a2ec649d26ad2c3cf6e87e1d0c65f&state=8006dd92f3a1ce45dfda380f87af525550a0c04630cc18ac" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"fb325e6a959f5b4ceb5f764cc26ce406d4b9cc94eed40f9fa08ddddc0a15cdd5", "state"=>"89f87e3d60b0acb5331152ca5ab604dba94898cbcb0a9f2c"}
+  Parameters: {"code"=>"81a39364e7be9158e0087c8d911cd1bf803a2ec649d26ad2c3cf6e87e1d0c65f", "state"=>"8006dd92f3a1ce45dfda380f87af525550a0c04630cc18ac"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=711606807dc7895ccb50ecf6d9c24d870400cac80b29f2b478be367053266b80&state=5ef7eedc4153066bb139dd97e198fc8c0c47f7f24c6ad82a" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:38 +0000
+Started GET "/auth/gds/callback?code=62941e74cdcee54d19756dc8d4878b1842ae56c3f476128a16a4786bbdf6af50&state=1cad8d6d414084b60e21cb12cd8e1cabaddf906cf35b73a5" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"711606807dc7895ccb50ecf6d9c24d870400cac80b29f2b478be367053266b80", "state"=>"5ef7eedc4153066bb139dd97e198fc8c0c47f7f24c6ad82a"}
+  Parameters: {"code"=>"62941e74cdcee54d19756dc8d4878b1842ae56c3f476128a16a4786bbdf6af50", "state"=>"1cad8d6d414084b60e21cb12cd8e1cabaddf906cf35b73a5"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=c7121cd1cea22a0d021cbdb4beef41fbeddc85b6bb0b8fd7268230456d5a573d&state=5eed248724c469fac15036a056c5d65e577790d7fe7b1e69" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=135beefaeab8cbb75e0c23bfe939009fe38e4ca915fdaf79a52a7b4cd07ac7e9&state=d4aab73e45047f92804335bae78a926312ef65d6ce7d9fd0" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c7121cd1cea22a0d021cbdb4beef41fbeddc85b6bb0b8fd7268230456d5a573d", "state"=>"5eed248724c469fac15036a056c5d65e577790d7fe7b1e69"}
+  Parameters: {"code"=>"135beefaeab8cbb75e0c23bfe939009fe38e4ca915fdaf79a52a7b4cd07ac7e9", "state"=>"d4aab73e45047f92804335bae78a926312ef65d6ce7d9fd0"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.2ms)[0m  commit transaction
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:40 +0000
-Started GET "/auth/gds/callback?code=e273b6559260f3bd87eb3087e91a591c7902f3a7d089611b83811612afe110d7&state=b3fa9d11984ff8b4842f4e48662dd782783279dc6b99696b" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=4755abe3e81e73b9d8aeb594407867d2d86d6b9c42f88e1152959404f6a376ec&state=5484c7035dcf78a67094e81301c4342219bfe24f5e1ba124" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e273b6559260f3bd87eb3087e91a591c7902f3a7d089611b83811612afe110d7", "state"=>"b3fa9d11984ff8b4842f4e48662dd782783279dc6b99696b"}
+  Parameters: {"code"=>"4755abe3e81e73b9d8aeb594407867d2d86d6b9c42f88e1152959404f6a376ec", "state"=>"5484c7035dcf78a67094e81301c4342219bfe24f5e1ba124"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=c6a66a12344832afab9212d4e958f24b8afc11e916094fcd85c2e3f0a2c19ed0&state=ea7fb51110108ccc0bae549b117fdd085f59962ee2574d55" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
+Started GET "/auth/gds/callback?code=de9732b79db33c8d7a6bdd545f54ae922c0676b29118451c314ec444767e3ff2&state=21c7e39676db8e33228d0d8b9ed5592365cd7d72446c9a7f" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c6a66a12344832afab9212d4e958f24b8afc11e916094fcd85c2e3f0a2c19ed0", "state"=>"ea7fb51110108ccc0bae549b117fdd085f59962ee2574d55"}
+  Parameters: {"code"=>"de9732b79db33c8d7a6bdd545f54ae922c0676b29118451c314ec444767e3ff2", "state"=>"21c7e39676db8e33228d0d8b9ed5592365cd7d72446c9a7f"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:39 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[36m (32.1ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:39 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=91b37d0ce383321139a08eca982c84913d700302e93332efe20934390b11cefb&state=e31feeb10724049b767acdeb26b0e740815c99b933970a73" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"91b37d0ce383321139a08eca982c84913d700302e93332efe20934390b11cefb", "state"=>"e31feeb10724049b767acdeb26b0e740815c99b933970a73"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (76.4ms)[0m  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 83ms (ActiveRecord: 77.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:39 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:41 +0000
-Started GET "/auth/gds/callback?code=3b99a00462a1dfe651f70163d62ebf212b8f2f1efd089c2a86ff37db4246ea63&state=5244721127270573b884a62a75f352bbc73b9ff910a58055" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=b0c0798cd4048315f2195c7f6c46ce9f1484e5e3dca69e63888d363df233d593&state=3d3a16c647c1d6c5263992925b92da57c3c361827d012892" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3b99a00462a1dfe651f70163d62ebf212b8f2f1efd089c2a86ff37db4246ea63", "state"=>"5244721127270573b884a62a75f352bbc73b9ff910a58055"}
+  Parameters: {"code"=>"b0c0798cd4048315f2195c7f6c46ce9f1484e5e3dca69e63888d363df233d593", "state"=>"3d3a16c647c1d6c5263992925b92da57c3c361827d012892"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
@@ -286,419 +264,376 @@ Authenticating with gds_sso strategy
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 302 Found in 39ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:08:40 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
-Started GET "/auth/gds/callback?code=f28e50fefafb715670f3ddf85ead5a9fdf3164e254f40725781643754a7bd72e&state=e4fef793d433c8cbf96ea7ed2e6ce7c7a60a08a8947785ca" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=21d581ed8bbb4d27a73cc823b03adeb098300af5f279362c46c72daa26fe2956&state=0aca4107c24efac67ba0dca7998edb05c6ec90a4b6cb65d5" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f28e50fefafb715670f3ddf85ead5a9fdf3164e254f40725781643754a7bd72e", "state"=>"e4fef793d433c8cbf96ea7ed2e6ce7c7a60a08a8947785ca"}
+  Parameters: {"code"=>"21d581ed8bbb4d27a73cc823b03adeb098300af5f279362c46c72daa26fe2956", "state"=>"0aca4107c24efac67ba0dca7998edb05c6ec90a4b6cb65d5"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:38:42 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Started GET "/auth/gds/callback?code=cb65563af847e5f0ee8f1f31521243ba6a7be4dd39af40faf65963f2eab5cfe3&state=8cb244238e8c33ecaec6d1dfc96948214da200a484a9042c" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cb65563af847e5f0ee8f1f31521243ba6a7be4dd39af40faf65963f2eab5cfe3", "state"=>"8cb244238e8c33ecaec6d1dfc96948214da200a484a9042c"}
+Authenticating with gds_sso strategy
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:40 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
-Started GET "/auth/gds/callback?code=6f7d011b37482536e90ab3d297ba7577b3e4b6db2297f06d1da2b0af5e7cd630&state=79f487227727059b4a1f1f3c11e85c063f4c80673f1c91b2" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=a3cfeb5bc3f0559f6c71b07255dbbcaaf14106a2bfdd84f3ef6da71999a12751&state=cdaa23b210d09c4b22389cde774e4cf95f5b42113f5ef06c" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6f7d011b37482536e90ab3d297ba7577b3e4b6db2297f06d1da2b0af5e7cd630", "state"=>"79f487227727059b4a1f1f3c11e85c063f4c80673f1c91b2"}
+  Parameters: {"code"=>"a3cfeb5bc3f0559f6c71b07255dbbcaaf14106a2bfdd84f3ef6da71999a12751", "state"=>"cdaa23b210d09c4b22389cde774e4cf95f5b42113f5ef06c"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[35m (0.0ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:42 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 12]]
+  [1m[35m (35.6ms)[0m  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
 Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
-Started GET "/auth/gds/callback?code=88adb4c72e3a5a871dc1ba32021f4e7d210e6fac394e386579b5d9f1c3fdd553&state=4fea53313bf70e131656e8dd79083d763d4332b7e17cf8d2" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:40 +0000
+Started GET "/auth/gds/callback?code=2f79647f0aad9bb1826d098bffa2c472a3ff75927c4c08965f33a23a26e440e7&state=3751200c9e5faef8aed92355841f12ffa40faf3f2a3fb047" for 127.0.0.1 at 2016-12-20 12:13:41 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"88adb4c72e3a5a871dc1ba32021f4e7d210e6fac394e386579b5d9f1c3fdd553", "state"=>"4fea53313bf70e131656e8dd79083d763d4332b7e17cf8d2"}
+  Parameters: {"code"=>"2f79647f0aad9bb1826d098bffa2c472a3ff75927c4c08965f33a23a26e440e7", "state"=>"3751200c9e5faef8aed92355841f12ffa40faf3f2a3fb047"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
+  [1m[36m (9.6ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:42 +0000
+Completed 302 Found in 15ms (ActiveRecord: 10.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:41 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  [1m[35m (29.8ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
-  [1m[35m (17.4ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
+  [1m[35m (50.1ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
+  [1m[35m (28.4ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
   [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", 2016-11-25 13:43:49 UTC], ["updated_at", 2016-11-25 13:43:49 UTC]]
-  [1m[35m (17.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (12.4ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (50.4ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", 2016-12-20 12:13:53 UTC], ["updated_at", 2016-12-20 12:13:53 UTC]]
+  [1m[35m (33.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (13.7ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.1ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d37643"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (29.4ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (1.8ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d34253"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (26.6ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d37643"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39074"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (12.7ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36182"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (34.5ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38554"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (18.3ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d39994"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (29.3ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38554"}
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d38554"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 6]]
-  [1m[35m (47.6ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 52ms (ActiveRecord: 48.0ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 6], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39438"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (32.8ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32962"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (22.7ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39438"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 1ms (Views: 0.9ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32517"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (42.2ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32395"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (59.3ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32517"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d32517"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
-  [1m[35m (41.8ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 47ms (ActiveRecord: 42.3ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 10], ["LIMIT", 1]]
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Processing by ExampleController#index as HTML
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 5ms (Views: 4.8ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
-Started GET "/auth/gds/callback?code=20e5974b28bfda5733c3cf3ee87d0f8ac998ae732db51dcbd2cc21f94db3a7ca&state=89a9ffe6907fbf149376136993a1a3dd5fe6d97223b5fa83" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed   in 10ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Started GET "/auth/gds/callback?code=b53a54e8b0b3cbdfabdc8a15b70ed0aa08fe90dd93f967f52093010b75deca87&state=75a80f5775406deb80c295cf799b777f47d1fa156a6eddfe" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"20e5974b28bfda5733c3cf3ee87d0f8ac998ae732db51dcbd2cc21f94db3a7ca", "state"=>"89a9ffe6907fbf149376136993a1a3dd5fe6d97223b5fa83"}
+  Parameters: {"code"=>"b53a54e8b0b3cbdfabdc8a15b70ed0aa08fe90dd93f967f52093010b75deca87", "state"=>"75a80f5775406deb80c295cf799b777f47d1fa156a6eddfe"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (14.9ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (7.4ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 12]]
-  [1m[35m (30.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 1]]
+  [1m[35m (9.3ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 52ms (ActiveRecord: 45.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed 302 Found in 51ms (ActiveRecord: 18.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 5ms (Views: 2.2ms | ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:50 +0000
-Started GET "/auth/gds/callback?code=d9fce11583aecbac87e2f6d47bb6e16808e7975493bdf51cfff2486ed0c3ee6f&state=a314d62a587f324f4677a42240877eeafb1aa2868a6e8add" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:53 +0000
+Started GET "/auth/gds/callback?code=2dff3e30ade4d365c8963faf730f164a395b501db877cfcdf7e523a995519d44&state=b73d837ffa9c011e212f1292017d24b7a1a040de5d6f0ac9" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d9fce11583aecbac87e2f6d47bb6e16808e7975493bdf51cfff2486ed0c3ee6f", "state"=>"a314d62a587f324f4677a42240877eeafb1aa2868a6e8add"}
+  Parameters: {"code"=>"2dff3e30ade4d365c8963faf730f164a395b501db877cfcdf7e523a995519d44", "state"=>"b73d837ffa9c011e212f1292017d24b7a1a040de5d6f0ac9"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=6e3eb4fa26ff4b043ec518a09c79e706aa089ed45f288298c49a230e5351d616&state=0c61be3bded0f5f657cd3d29653417788c385768c992d61d" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=2b1e005823ea196c061b627a79d864db70127925341c1bd635a2f76e1c976455&state=0a0fba517482b78dcc12e46edad4a167ec962019cb53bb72" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6e3eb4fa26ff4b043ec518a09c79e706aa089ed45f288298c49a230e5351d616", "state"=>"0c61be3bded0f5f657cd3d29653417788c385768c992d61d"}
+  Parameters: {"code"=>"2b1e005823ea196c061b627a79d864db70127925341c1bd635a2f76e1c976455", "state"=>"0a0fba517482b78dcc12e46edad4a167ec962019cb53bb72"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 6ms (ActiveRecord: 0.6ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Processing by ExampleController#index as HTML
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=fc3efc5ff3e6060cea9e71bb6e6f3e4a80fc3d949453918978e3f2438d96aa76&state=8841e8604f5e521c89e68560267b5ac26804f9f55030e105" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=2fe545bca5ab9ced8a80b07063bf7005b1ba3b2b3fc02c370f1fd0ea366535e1&state=b6cec9870ae3c453c1ce03e01a251bad2134617d3a92b425" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"fc3efc5ff3e6060cea9e71bb6e6f3e4a80fc3d949453918978e3f2438d96aa76", "state"=>"8841e8604f5e521c89e68560267b5ac26804f9f55030e105"}
+  Parameters: {"code"=>"2fe545bca5ab9ced8a80b07063bf7005b1ba3b2b3fc02c370f1fd0ea366535e1", "state"=>"b6cec9870ae3c453c1ce03e01a251bad2134617d3a92b425"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.6ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=37e4f12f3139b7f09ca5138a666348adbe2de9fef12018724e8c9b4599e50f1b&state=d0de14ea6a33f30df7db5659413a176dfc1e367582af40f6" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=9e72ca947db57c4a38a57cebb7278dc1136149a72edcdce5b9b5da90f9a6b332&state=a1db84704077308e11bc62eb6f4eb9abc0c1101a0d5e534a" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"37e4f12f3139b7f09ca5138a666348adbe2de9fef12018724e8c9b4599e50f1b", "state"=>"d0de14ea6a33f30df7db5659413a176dfc1e367582af40f6"}
+  Parameters: {"code"=>"9e72ca947db57c4a38a57cebb7278dc1136149a72edcdce5b9b5da90f9a6b332", "state"=>"a1db84704077308e11bc62eb6f4eb9abc0c1101a0d5e534a"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 302 Found in 6ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:51 +0000
-Started GET "/auth/gds/callback?code=6c9bfeb102f4e0e1120398cfc1c1c31cba3f4cb3f85ff8ae0385a0f0e995ce04&state=9093f73a23bcecce0e2c374cdbf37f0108cae9bbc6754520" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:54 +0000
+Started GET "/auth/gds/callback?code=f754f3fc8f691d7761bb423ce1a32714eb5033a9ec610293b36b3f960bed6326&state=d53ac52bd80f458329539de3659c9930f94961c168bb7ff3" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6c9bfeb102f4e0e1120398cfc1c1c31cba3f4cb3f85ff8ae0385a0f0e995ce04", "state"=>"9093f73a23bcecce0e2c374cdbf37f0108cae9bbc6754520"}
+  Parameters: {"code"=>"f754f3fc8f691d7761bb423ce1a32714eb5033a9ec610293b36b3f960bed6326", "state"=>"d53ac52bd80f458329539de3659c9930f94961c168bb7ff3"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:38:52 +0000
+Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.3ms)
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 1]]
+  [1m[35m (10.8ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=c63978b042d97f8a745efc08a3432c13a07692fbedbc4079044b7844dff0d7e8&state=6c8246395eb6eb3393b389ac551e2522b7d8e70684d8f22e" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed   in 2ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=93557adfd1170e5330a63bc9d3ccbcd44bcf850746ad17f1b80b32f7bfc6d61e&state=f958569a1792a0691bc38738bc879814229af5d76b183065" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c63978b042d97f8a745efc08a3432c13a07692fbedbc4079044b7844dff0d7e8", "state"=>"6c8246395eb6eb3393b389ac551e2522b7d8e70684d8f22e"}
+  Parameters: {"code"=>"93557adfd1170e5330a63bc9d3ccbcd44bcf850746ad17f1b80b32f7bfc6d61e", "state"=>"f958569a1792a0691bc38738bc879814229af5d76b183065"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 1]]
+  [1m[35m (12.7ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 20ms (ActiveRecord: 13.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=5229ba82ef286c3fde70ffe4fbef3a21d7c703461e48c72ddee14bcb62071076&state=333d26dd26654d38e2a6868b68a341568167fec3d698aa6e" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=2f4c371ee353aa938a0c0b4884d678c9ca1a3b8f0c4c0ba4f6062409d7a2678b&state=80046ff1a8d68fb5fd872abbbd7a277d13b173fd02bec941" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5229ba82ef286c3fde70ffe4fbef3a21d7c703461e48c72ddee14bcb62071076", "state"=>"333d26dd26654d38e2a6868b68a341568167fec3d698aa6e"}
+  Parameters: {"code"=>"2f4c371ee353aa938a0c0b4884d678c9ca1a3b8f0c4c0ba4f6062409d7a2678b", "state"=>"80046ff1a8d68fb5fd872abbbd7a277d13b173fd02bec941"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
-Started GET "/auth/gds/callback?code=f05a8b4e9102c7eba4fcfcf26b7e9524a7d172427b7765b328cd52a0f107cd38&state=1f8e53a7b16af9400f9234ee26b862d0a56e7b78e8e8b39b" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
+Started GET "/auth/gds/callback?code=cf55602d6aac2394eaa6601b069943fbabbfb2b9648bbd7c3d4e463c1ff20a3a&state=d4945f2e66485f1f80aa6c5b875367524a245bfb194ca9e6" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f05a8b4e9102c7eba4fcfcf26b7e9524a7d172427b7765b328cd52a0f107cd38", "state"=>"1f8e53a7b16af9400f9234ee26b862d0a56e7b78e8e8b39b"}
+  Parameters: {"code"=>"cf55602d6aac2394eaa6601b069943fbabbfb2b9648bbd7c3d4e463c1ff20a3a", "state"=>"d4945f2e66485f1f80aa6c5b875367524a245bfb194ca9e6"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:48:52 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:55 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
-Started GET "/auth/gds/callback?code=7e818e1c5c01ac8cd30f5b96e84dcb6e0c72ed8b51e4d25ed4db93c9171ca963&state=a14348956a612958a57fd91a9a5624bdf87c587d20624e33" for 127.0.0.1 at 2016-11-25 13:43:52 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:55 +0000
+Started GET "/auth/gds/callback?code=eda09e29bd8e2830e0075c5db8fe57e905af2effeb707f71ed2d81fad615311e&state=0c893c6f4a0c2c3084337e46e77fbc9f4494a2f5b5d53004" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"7e818e1c5c01ac8cd30f5b96e84dcb6e0c72ed8b51e4d25ed4db93c9171ca963", "state"=>"a14348956a612958a57fd91a9a5624bdf87c587d20624e33"}
+  Parameters: {"code"=>"eda09e29bd8e2830e0075c5db8fe57e905af2effeb707f71ed2d81fad615311e", "state"=>"0c893c6f4a0c2c3084337e46e77fbc9f4494a2f5b5d53004"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 7ms (ActiveRecord: 0.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.7ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.5ms | ActiveRecord: 0.7ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 12]]
-  [1m[35m (20.1ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:18:56 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
-Started GET "/auth/gds/callback?code=5e28167f5be69dda4b0fe3984973b050e9bd032d369589588e6aeda3d3a5c0e1&state=997f9516ea7ec6ebfe79b80b62812c32aaa75d4a2db1015f" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:18:56 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Started GET "/auth/gds/callback?code=d9773150bbaed328cbc0e9467a34f1a9e64ea2b90e6bc724f57ed6d02b33887d&state=4db4e0eb8647cf92aa8bc997695258ce59a493270ae07002" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"5e28167f5be69dda4b0fe3984973b050e9bd032d369589588e6aeda3d3a5c0e1", "state"=>"997f9516ea7ec6ebfe79b80b62812c32aaa75d4a2db1015f"}
+  Parameters: {"code"=>"d9773150bbaed328cbc0e9467a34f1a9e64ea2b90e6bc724f57ed6d02b33887d", "state"=>"4db4e0eb8647cf92aa8bc997695258ce59a493270ae07002"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.5ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 12]]
-  [1m[35m (27.5ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 34ms (ActiveRecord: 28.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:08:56 +0000
+Processing by ExampleController#restricted as HTML
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 24ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 12]]
-  [1m[35m (20.6ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.6ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 1]]
+  [1m[35m (16.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
@@ -709,11 +644,11 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 99ms (Views: 0.6ms | ActiveRecord: 22.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 97ms (Views: 0.4ms | ActiveRecord: 18.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as JSON
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[35m (0.3ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
@@ -726,203 +661,268 @@ Processing by ExampleController#restricted as JSON
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 80ms (Views: 0.4ms | ActiveRecord: 1.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:53 +0000
+Completed 200 OK in 86ms (Views: 0.4ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:13:56 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-  [1m[36m (200.3ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
-  [1m[35m (164.7ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
-  [1m[36m (0.4ms)[0m  [1mselect sqlite_version(*)[0m
-  [1m[35m (138.1ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+Completed   in 19ms (ActiveRecord: 0.0ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (11.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38884"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (11.3ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d37324"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (5.9ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38288"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (8.7ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36018"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (7.0ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38288"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 8ms (Views: 7.0ms | ActiveRecord: 0.0ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d34383"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (17.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31988"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (8.7ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d34383"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d34383"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 7]]
+  [1m[35m (7.6ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 11ms (ActiveRecord: 8.1ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 7], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d34858"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (8.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d37304"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (9.1ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34858"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d34858"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
+  [1m[35m (9.1ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 14ms (ActiveRecord: 9.5ms)
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 9], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d38853"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (24.6ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d3825"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (21.1ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38853"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 2ms (Views: 1.3ms | ActiveRecord: 0.0ms)
+  [1m[36m (18.3ms)[0m  [1mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') [0m
+  [1m[35m (11.8ms)[0m  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL)
+  [1m[36m (0.1ms)[0m  [1mselect sqlite_version(*)[0m
+  [1m[35m (8.7ms)[0m  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31425"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (158.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[36m (17.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34590"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (49.8ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d39436"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (132.1ms)[0m  commit transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36466"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (127.9ms)[0m  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d31425"}
+  Parameters: {"uid"=>"a1s2d34590"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 9ms (Views: 8.9ms | ActiveRecord: 0.0ms)
+Completed 403 Forbidden in 9ms (Views: 8.7ms | ActiveRecord: 0.0ms)
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36156"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (226.6ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39434"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (33.3ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d37890"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (177.0ms)[0m  commit transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d36793"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (57.5ms)[0m  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "nonexistent-user"]]
-Completed 200 OK in 6ms (ActiveRecord: 0.2ms)
+  Parameters: {"uid"=>"a1s2d39434"}
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d39434"]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "t"], ["id", 4]]
+  [1m[35m (28.2ms)[0m  commit transaction
+Completed 200 OK in 32ms (ActiveRecord: 28.6ms)
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 4]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d38533"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (126.1ms)[0m  commit transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d39628"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (21.9ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36126"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[36m (124.6ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34159"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[36m (45.9ms)[0m  [1mcommit transaction[0m
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38533"}
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d38533"]]
-  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 5]]
-  [1m[36m (125.8ms)[0m  [1mcommit transaction[0m
-Completed 200 OK in 130ms (ActiveRecord: 126.2ms)
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 5]]
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.1ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32438"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (184.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37093"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (29.8ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32890"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (250.4ms)[0m  commit transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d37407"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (26.3ms)[0m  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32438"}
+  Parameters: {"uid"=>"a1s2d37093"}
   Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
 Completed 403 Forbidden in 1ms (Views: 0.5ms | ActiveRecord: 0.0ms)
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32914"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-  [1m[36m (85.4ms)[0m  [1mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34602"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+  [1m[36m (18.3ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d33322"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (121.6ms)[0m  commit transaction
+  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "a1s2d32032"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (8.4ms)[0m  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32914"}
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d32914"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
-  [1m[35m (83.7ms)[0m  commit transaction
-Completed 200 OK in 88ms (ActiveRecord: 84.1ms)
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 9]]
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "user@example.com"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (66.5ms)[0m  commit transaction
-  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "asd"]]
+  Parameters: {"uid"=>"a1s2d34602"}
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "a1s2d34602"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 1.0ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
+  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 10]]
+  [1m[35m (56.6ms)[0m  commit transaction
+Completed 200 OK in 61ms (ActiveRecord: 57.0ms)
+  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1[0m  [["id", 10]]
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 9ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:43:59 +0000
-Started GET "/auth/gds/callback?code=f26bab61e3821688dbabf19d7350ce7439de62c6234faac4c5576e87a30d76a4&state=3c86a804ac28c20971241bd0f80807ffe7d57bc37cf6bb9d" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Started GET "/auth/gds/callback?code=e83c574e24c350ff3a8edc04116dd82d5c6d5423807be6f248399172b2249c86&state=1c6f0e587f72cbd849afd01c9e44eb50d3eda24fadf36c2d" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f26bab61e3821688dbabf19d7350ce7439de62c6234faac4c5576e87a30d76a4", "state"=>"3c86a804ac28c20971241bd0f80807ffe7d57bc37cf6bb9d"}
+  Parameters: {"code"=>"e83c574e24c350ff3a8edc04116dd82d5c6d5423807be6f248399172b2249c86", "state"=>"1c6f0e587f72cbd849afd01c9e44eb50d3eda24fadf36c2d"}
 Authenticating with gds_sso strategy
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["email", "test@example-client.com"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)[0m  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (252.9ms)[0m  commit transaction
+  [1m[35m (55.8ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[36m (246.9ms)[0m  [1mcommit transaction[0m
+  [1m[36m (59.9ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 507ms (ActiveRecord: 500.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Completed 302 Found in 124ms (ActiveRecord: 116.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.3ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 4ms (Views: 0.6ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 3ms (Views: 1.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
-Started GET "/auth/gds/callback?code=55112b3e0436989f0cc684e21124051dc9a0c4985ba5bd0c0a3377079f728642&state=9f2d78f675b870239ed1b7178276eedfd6c16aaea1d543e4" for 127.0.0.1 at 2016-11-25 13:44:00 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:01 +0000
+Started GET "/auth/gds/callback?code=815014e9b0d21da1e755c05a6ec370c5dcf1281a4a0d5163a3ab154749c5e5b9&state=d2f7ed5aa6a311325022c700508774724d382acaf0e7bf63" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"55112b3e0436989f0cc684e21124051dc9a0c4985ba5bd0c0a3377079f728642", "state"=>"9f2d78f675b870239ed1b7178276eedfd6c16aaea1d543e4"}
+  Parameters: {"code"=>"815014e9b0d21da1e755c05a6ec370c5dcf1281a4a0d5163a3ab154749c5e5b9", "state"=>"d2f7ed5aa6a311325022c700508774724d382acaf0e7bf63"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=97fe3c4a409a4abe1419ac55c829f11c81aafe6b9d2c649676c180aee5c24750&state=e48e84d3df03d4468e1ab954d55b0486b92fb3e20c979a6f" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=5e9b99cb06e1c34740db954da63a7eb2e560d3192cacf8909335c94021848514&state=697b0a2a06803b0b60b94edcfa5e06d51bbffdc801f042e8" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"97fe3c4a409a4abe1419ac55c829f11c81aafe6b9d2c649676c180aee5c24750", "state"=>"e48e84d3df03d4468e1ab954d55b0486b92fb3e20c979a6f"}
+  Parameters: {"code"=>"5e9b99cb06e1c34740db954da63a7eb2e560d3192cacf8909335c94021848514", "state"=>"697b0a2a06803b0b60b94edcfa5e06d51bbffdc801f042e8"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#restricted as HTML
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=b720f5c47ad488aa3c2aa6a9c40b0d98685c585dd69abf70b5a096e9b027a5ec&state=e3797714256bd03d1b17dd097aba01c38ca2d39b404009fa" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=f61dc7b0678d75071939e02a36a56ffe8cedfb1080fdbf3ebed8f6457c149323&state=652b84b2aec0cb3cfeaeacec285ccabd80e515f432676b10" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b720f5c47ad488aa3c2aa6a9c40b0d98685c585dd69abf70b5a096e9b027a5ec", "state"=>"e3797714256bd03d1b17dd097aba01c38ca2d39b404009fa"}
+  Parameters: {"code"=>"f61dc7b0678d75071939e02a36a56ffe8cedfb1080fdbf3ebed8f6457c149323", "state"=>"652b84b2aec0cb3cfeaeacec285ccabd80e515f432676b10"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=1c66b2bc93853363593ce073ddc618681ff20b2bc038e1326e99088b0a7bb8ae&state=644fa6b26ac85fcbeaf539b0a3b42bdc98118ee7ad3a0fb0" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=ddb00bddd9c83f7f2fef1957866c328b0fbc5497ed58aff9cf450dde57cfd78d&state=37b1f68c09a1a2ab6d6c363cb0bebe09a9bf02f3ed77fc79" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1c66b2bc93853363593ce073ddc618681ff20b2bc038e1326e99088b0a7bb8ae", "state"=>"644fa6b26ac85fcbeaf539b0a3b42bdc98118ee7ad3a0fb0"}
+  Parameters: {"code"=>"ddb00bddd9c83f7f2fef1957866c328b0fbc5497ed58aff9cf450dde57cfd78d", "state"=>"37b1f68c09a1a2ab6d6c363cb0bebe09a9bf02f3ed77fc79"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
-Started GET "/auth/gds/callback?code=0eef37849744379db73f6df0c3a9c1ab11cc6c0454e8ec59f6c624edc9a3d83d&state=3fac31e26fef953d07e1ea1a622e890654fcd4be2be1971f" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:02 +0000
+Started GET "/auth/gds/callback?code=5d782eb8f92316cc6e1c2aa278e5bdb71e9c1fb7aa5d295ccf21198682694534&state=d3cfca2752cbf51b944c5e70e1738df35602e8c3f640ab23" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"0eef37849744379db73f6df0c3a9c1ab11cc6c0454e8ec59f6c624edc9a3d83d", "state"=>"3fac31e26fef953d07e1ea1a622e890654fcd4be2be1971f"}
+  Parameters: {"code"=>"5d782eb8f92316cc6e1c2aa278e5bdb71e9c1fb7aa5d295ccf21198682694534", "state"=>"d3cfca2752cbf51b944c5e70e1738df35602e8c3f640ab23"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
@@ -931,40 +931,40 @@ Authenticating with gds_sso strategy
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:01 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:01 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:01 +0000
-Started GET "/auth/gds/callback?code=4a535912bbaf726c29f2ba86838fa2508865787d2c2f97a34de60fc2db09577d&state=e2593e5b8190f1f67f5bb52ed37c69f96671e51442786701" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Started GET "/auth/gds/callback?code=1b136b2495606a2bf087a88aaf75a16938bc4c46478aaaf986b56dd879ee0741&state=b0bd5ae90cd2d6153d28844ec95ab09ff0f0a6872cec177b" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"4a535912bbaf726c29f2ba86838fa2508865787d2c2f97a34de60fc2db09577d", "state"=>"e2593e5b8190f1f67f5bb52ed37c69f96671e51442786701"}
+  Parameters: {"code"=>"1b136b2495606a2bf087a88aaf75a16938bc4c46478aaaf986b56dd879ee0741", "state"=>"b0bd5ae90cd2d6153d28844ec95ab09ff0f0a6872cec177b"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.3ms)[0m  [1mcommit transaction[0m
+  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.1ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=9f1f0a040a9a52aafc0f018f32e878ebe193a739f6da233a6d5ac70832085d5b&state=3e8d2364176666119009c02519aca7cdcd154c763e9e7f98" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=03db107ba23a498b84abac261855f02c826e2cc5911ac3472d5d24adf6735430&state=cce2324be8ea1af35578a28cbab9fc3f7ff1ba2058e318b2" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"9f1f0a040a9a52aafc0f018f32e878ebe193a739f6da233a6d5ac70832085d5b", "state"=>"3e8d2364176666119009c02519aca7cdcd154c763e9e7f98"}
+  Parameters: {"code"=>"03db107ba23a498b84abac261855f02c826e2cc5911ac3472d5d24adf6735430", "state"=>"cce2324be8ea1af35578a28cbab9fc3f7ff1ba2058e318b2"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
@@ -973,100 +973,97 @@ Authenticating with gds_sso strategy
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:09:03 +0000
 Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:02 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.1ms)
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=e6182dd9a8a4c90de0bc3778feda841b03003ec8a1f0dcaed046d030468b0709&state=745b5439b70881cd8057544a5f32d6541adef54c55dd5ad2" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=339c75ffaa47170c9f408b88132d9d4f2b5d87690c36819a1216662484ae81d0&state=4fbd0c12c577843925499060671b572d7f4e49879704627a" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e6182dd9a8a4c90de0bc3778feda841b03003ec8a1f0dcaed046d030468b0709", "state"=>"745b5439b70881cd8057544a5f32d6541adef54c55dd5ad2"}
+  Parameters: {"code"=>"339c75ffaa47170c9f408b88132d9d4f2b5d87690c36819a1216662484ae81d0", "state"=>"4fbd0c12c577843925499060671b572d7f4e49879704627a"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:39:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:03 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
-Started GET "/auth/gds/callback?code=ac6ea4384f64b9ff95c2684f4337e55fa0175f6b72600ca38778264694814fb3&state=23e2e2d01dfa08ccb5ed2fc4e734a847a5e11b7236ccf6e9" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
+Started GET "/auth/gds/callback?code=45976954b052808db424af8655041bfd5636b8ab31e88300a2bfc6e4af321335&state=e9b07ec972a760de7b8eae193c3258cb02d35379ba595005" for 127.0.0.1 at 2016-12-20 12:14:03 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ac6ea4384f64b9ff95c2684f4337e55fa0175f6b72600ca38778264694814fb3", "state"=>"23e2e2d01dfa08ccb5ed2fc4e734a847a5e11b7236ccf6e9"}
+  Parameters: {"code"=>"45976954b052808db424af8655041bfd5636b8ab31e88300a2bfc6e4af321335", "state"=>"e9b07ec972a760de7b8eae193c3258cb02d35379ba595005"}
 Authenticating with gds_sso strategy
-  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:02 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 12]]
-  [1m[36m (164.2ms)[0m  [1mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+  [1m[36m (283.7ms)[0m  [1mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
-Completed   in 2ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Started GET "/auth/gds/callback?code=63614c1ec3e831218c836cd59d6e2831e1001797e39509a7acae36083adab320&state=8d27838d7bb70a65ce13441a30b11400f817e91f9886cb7b" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Started GET "/auth/gds/callback?code=e8aaee5efec2952249ba030aa7f13a3fdefe8310081596ef31995a008cc1e839&state=136e87f9ea15c62569bded7132587fea1c23d5c22c26a2d7" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"63614c1ec3e831218c836cd59d6e2831e1001797e39509a7acae36083adab320", "state"=>"8d27838d7bb70a65ce13441a30b11400f817e91f9886cb7b"}
+  Parameters: {"code"=>"e8aaee5efec2952249ba030aa7f13a3fdefe8310081596ef31995a008cc1e839", "state"=>"136e87f9ea15c62569bded7132587fea1c23d5c22c26a2d7"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
+  [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36m (0.1ms)[0m  [1mcommit transaction[0m
   [1m[35m (0.1ms)[0m  begin transaction
-  [1m[36mSQL (0.2ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
-  [1m[35m (163.5ms)[0m  commit transaction
+  [1m[36mSQL (0.1ms)[0m  [1mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", "f"], ["id", 12]]
+  [1m[35m (109.5ms)[0m  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 169ms (ActiveRecord: 164.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed 302 Found in 115ms (ActiveRecord: 110.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.1ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Processing by ExampleController#restricted as JSON
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35mSQL (0.2ms)[0m  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
-  [1m[36m (190.5ms)[0m  [1mcommit transaction[0m
-  [1m[35mUser Load (0.1ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  [1m[36m (44.2ms)[0m  [1mcommit transaction[0m
+  [1m[35mUser Load (0.2ms)[0m  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   [1m[36m (0.2ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   [1m[36mCACHE (0.0ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
@@ -1078,11 +1075,8 @@ Processing by ExampleController#restricted as JSON
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 261ms (Views: 0.3ms | ActiveRecord: 191.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 16ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:03 +0000
+Completed 200 OK in 118ms (Views: 0.3ms | ActiveRecord: 45.6ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36mUser Load (0.2ms)[0m  [1mSELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1[0m  [["uid", "integration-uid"]]
   [1m[35m (0.1ms)[0m  begin transaction
@@ -1099,372 +1093,378 @@ Processing by ExampleController#this_requires_signin_permission as JSON
   [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
   [1m[35m (0.1ms)[0m  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 69ms (Views: 0.3ms | ActiveRecord: 1.0ms)
-  [1m[35m (134.4ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
-  [1m[35m (115.1ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
+Completed 200 OK in 70ms (Views: 0.4ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 16ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:04 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 16ms (ActiveRecord: 0.0ms)
+  [1m[35m (62.8ms)[0m  [1m[35mCREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')[0m
+  [1m[35m (26.6ms)[0m  [1m[35mCREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)[0m
   [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", 2016-11-25 13:44:07 UTC], ["updated_at", 2016-11-25 13:44:07 UTC]]
-  [1m[35m (157.5ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (70.9ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
-  [1m[36mActiveRecord::InternalMetadata Load (0.2ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)[0m  [["key", "environment"], ["value", "test"], ["created_at", 2016-12-20 12:14:08 UTC], ["updated_at", 2016-12-20 12:14:08 UTC]]
+  [1m[35m (48.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (22.5ms)[0m  [1m[35mCREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)[0m
+  [1m[36mActiveRecord::InternalMetadata Load (0.1ms)[0m  [1m[34mSELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?[0m  [["key", :environment], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-  [1m[35m (154.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d32278"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (16.2ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d38130"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (20.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32278"}
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d32278"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 1]]
+  [1m[35m (15.5ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 22ms (ActiveRecord: 16.0ms)
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 1], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d36805"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (17.4ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 1]]
-  [1m[35m (131.7ms)[0m  [1m[36mcommit transaction[0m
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 390ms (Views: 3.6ms | ActiveRecord: 288.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 25ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d3981"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (14.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d36805"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 9ms (Views: 8.6ms | ActiveRecord: 0.0ms)
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d36327"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (15.0ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31900"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (10.8ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d36327"}
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d36327"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 5]]
+  [1m[35m (11.5ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 15ms (ActiveRecord: 11.8ms)
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 5], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d31201"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (16.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d35356"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (55.4ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d35825"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (53.0ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d33840"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  [1m[35m (12.5ms)[0m  [1m[36mcommit transaction[0m
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35825"}
+  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.7ms | ActiveRecord: 0.0ms)
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+  [1m[35m (34.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 91ms (Views: 0.4ms | ActiveRecord: 1.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 18ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
-Started GET "/auth/gds/callback?code=c0a84b9848298a9f262a09a67e03b82a3ddb2e11d32349af67a134f2a8c1df54&state=785ca430b12fe07e5ebbd5d2576cf8d9adaaec586d9b8741" for 127.0.0.1 at 2016-11-25 13:44:08 +0000
+Completed   in 8ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=d8dc5f3f1e4f979188078210eb672cc65e65886a1911d3a04e007b6920639aae&state=aacd9976277328788208a01786c2d724c983a1af89b3428c" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c0a84b9848298a9f262a09a67e03b82a3ddb2e11d32349af67a134f2a8c1df54", "state"=>"785ca430b12fe07e5ebbd5d2576cf8d9adaaec586d9b8741"}
+  Parameters: {"code"=>"d8dc5f3f1e4f979188078210eb672cc65e65886a1911d3a04e007b6920639aae", "state"=>"aacd9976277328788208a01786c2d724c983a1af89b3428c"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", false], ["id", 1]]
-  [1m[35m (104.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
+  [1m[35m (41.4ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 12]]
+  [1m[35m (32.3ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 109ms (ActiveRecord: 104.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Completed 302 Found in 81ms (ActiveRecord: 74.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 3ms (Views: 1.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=bf76d7f035ac8073a3a23d377ad10f341fd99cb317858d7c202b232a4fbf8ee8&state=4c6e9f8c2ab2cf114c8af1aa29e839c88763904579134b18" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=6454c026e285afaade3a0287a25f253e179535e150366a539d95c1abb56c781c&state=bd7243c7e76af115c65015bda69fe6ba81f9d5990191e936" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"bf76d7f035ac8073a3a23d377ad10f341fd99cb317858d7c202b232a4fbf8ee8", "state"=>"4c6e9f8c2ab2cf114c8af1aa29e839c88763904579134b18"}
+  Parameters: {"code"=>"6454c026e285afaade3a0287a25f253e179535e150366a539d95c1abb56c781c", "state"=>"bd7243c7e76af115c65015bda69fe6ba81f9d5990191e936"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=3a117361caf80c06abc97a5c61eeef6d1b530ab6838b74848703417769f377df&state=37ba9999028828876033494d9ef60de447771819b102f542" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=80e5e5b28eee67bab0781cf4c142b6780cc1b7880cf6d51136b354cd3fb5cf9f&state=7a704ce64594ad2f0d857d02e7e650ca49316059a861cec9" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3a117361caf80c06abc97a5c61eeef6d1b530ab6838b74848703417769f377df", "state"=>"37ba9999028828876033494d9ef60de447771819b102f542"}
+  Parameters: {"code"=>"80e5e5b28eee67bab0781cf4c142b6780cc1b7880cf6d51136b354cd3fb5cf9f", "state"=>"7a704ce64594ad2f0d857d02e7e650ca49316059a861cec9"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=b7eae245485328e121e9325ae16ed83aa90f00cecccb5a12e8e16d96602811f0&state=6e18b7da44b64322b9feebfd747f8ab38f8b988ce94a6d66" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:09 +0000
+Started GET "/auth/gds/callback?code=d67a4a1b558a511c1ad6b1f2c3812383c8cb3f0f0a26b57165027a34b7cabf66&state=015ab0b69b3f7d1ee20818ddfa8ac11a9531568e29cf0cde" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b7eae245485328e121e9325ae16ed83aa90f00cecccb5a12e8e16d96602811f0", "state"=>"6e18b7da44b64322b9feebfd747f8ab38f8b988ce94a6d66"}
+  Parameters: {"code"=>"d67a4a1b558a511c1ad6b1f2c3812383c8cb3f0f0a26b57165027a34b7cabf66", "state"=>"015ab0b69b3f7d1ee20818ddfa8ac11a9531568e29cf0cde"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.4ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:09 +0000
-Started GET "/auth/gds/callback?code=2b981d35b8370b19479ffec3ca76bfbce2e8e96b5625373767de621054930664&state=c20b030e32057395dc69e18b12c5590d943a9c21c905e5fe" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=cdad962a36a08db481fe4fecede9f8cc1cad75e8b062efc1f2f9ca7d914cd492&state=7e5b155263da27fc8d73ea1f08761c51db8fb1548965f534" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"2b981d35b8370b19479ffec3ca76bfbce2e8e96b5625373767de621054930664", "state"=>"c20b030e32057395dc69e18b12c5590d943a9c21c905e5fe"}
+  Parameters: {"code"=>"cdad962a36a08db481fe4fecede9f8cc1cad75e8b062efc1f2f9ca7d914cd492", "state"=>"7e5b155263da27fc8d73ea1f08761c51db8fb1548965f534"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
-Redirected to http://www.example-client.com/restricted
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#index as HTML
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=a64ee593600313a329104a3a301b885c4de72ca20bbe395c228a31d5637084ac&state=75e9cc0fb0abcde491c545a4ba1f08a2bf1d3c680c80d08d" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=999e4432f7bc83f228510f96699d778c15f0c70804900a679decfecca294149b&state=8c12733cf664d98a06a6ff8733f940688ea9bdef5d6dfcbf" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a64ee593600313a329104a3a301b885c4de72ca20bbe395c228a31d5637084ac", "state"=>"75e9cc0fb0abcde491c545a4ba1f08a2bf1d3c680c80d08d"}
+  Parameters: {"code"=>"999e4432f7bc83f228510f96699d778c15f0c70804900a679decfecca294149b", "state"=>"8c12733cf664d98a06a6ff8733f940688ea9bdef5d6dfcbf"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "test@example-client.com"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 1]]
-  [1m[35m (165.7ms)[0m  [1m[36mcommit transaction[0m
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+  [1m[35mSQL (0.3ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 12]]
+  [1m[35m (16.3ms)[0m  [1m[36mcommit transaction[0m
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
 Completed   in 2ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=199a427dacb6ebb4bf71a3f78b261a7f56023326646be791b959f8facbd9674f&state=9c1046561c80184c37b0816b5b556aaae34b9472253dc571" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
+Started GET "/auth/gds/callback?code=587251ab2106b620669466be04d27c6654c5e7c8d2b7c17bd1612e6f84b5edae&state=28d71131564fb6b03e614171919d5ba4d9301592c363a253" for 127.0.0.1 at 2016-12-20 12:14:10 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"199a427dacb6ebb4bf71a3f78b261a7f56023326646be791b959f8facbd9674f", "state"=>"9c1046561c80184c37b0816b5b556aaae34b9472253dc571"}
+  Parameters: {"code"=>"587251ab2106b620669466be04d27c6654c5e7c8d2b7c17bd1612e6f84b5edae", "state"=>"28d71131564fb6b03e614171919d5ba4d9301592c363a253"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 1]]
-  [1m[35m (127.2ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", false], ["id", 12]]
+  [1m[35m (31.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 133ms (ActiveRecord: 127.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 302 Found in 36ms (ActiveRecord: 31.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:10 +0000
-Started GET "/auth/gds/callback?code=ba207418b730acd401f90e2ab7767fea110b029de02e40b28b4f5cfb6229a568&state=a58aef958e400d846df3c30d2ac822763d9b1af234c5ae37" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=cfc2685d922c20e75a7f1d20b934df05f23e946e3f15ecef516f23905acedb07&state=aea99e3314d693dbb15b849aab75622a8a02c6879af64e94" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ba207418b730acd401f90e2ab7767fea110b029de02e40b28b4f5cfb6229a568", "state"=>"a58aef958e400d846df3c30d2ac822763d9b1af234c5ae37"}
+  Parameters: {"code"=>"cfc2685d922c20e75a7f1d20b934df05f23e946e3f15ecef516f23905acedb07", "state"=>"aea99e3314d693dbb15b849aab75622a8a02c6879af64e94"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Started GET "/auth/gds/callback?code=ba733aaa5e6f5cfd68f43b6d4dcac0b56dc9a824902757b03989f0333dd4929c&state=ab9b252c55e0213badba6ab4d9edd9ea658515cd496c6793" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=cc8e3d9ba9293b955555a89768762ce042047954203cc212ff0c40084773b2a3&state=ea6a2412469dde362d03b75a0c8564f429102b049922442c" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ba733aaa5e6f5cfd68f43b6d4dcac0b56dc9a824902757b03989f0333dd4929c", "state"=>"ab9b252c55e0213badba6ab4d9edd9ea658515cd496c6793"}
+  Parameters: {"code"=>"cc8e3d9ba9293b955555a89768762ce042047954203cc212ff0c40084773b2a3", "state"=>"ea6a2412469dde362d03b75a0c8564f429102b049922442c"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 12ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
-Started GET "/auth/gds/callback?code=cadac2fc142b359cec8bce949fe53f95466e5f47dc876f961f2588ae806888a0&state=43710693a55e9165b8307f7c12d7a9fdd4cc03b5a63281ed" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
+Started GET "/auth/gds/callback?code=265d8668574607c86d4d00412135ca852843df7d4f2d7763a0ab34cb035e7ec1&state=2cb9733c5a52d5b5baca3dc7d994508d94e68134fce016e0" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"cadac2fc142b359cec8bce949fe53f95466e5f47dc876f961f2588ae806888a0", "state"=>"43710693a55e9165b8307f7c12d7a9fdd4cc03b5a63281ed"}
+  Parameters: {"code"=>"265d8668574607c86d4d00412135ca852843df7d4f2d7763a0ab34cb035e7ec1", "state"=>"2cb9733c5a52d5b5baca3dc7d994508d94e68134fce016e0"}
 Authenticating with gds_sso strategy
-  [1m[36mUser Load (0.4ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:19:11 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-26 09:49:11 +0000
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
-Started GET "/auth/gds/callback?code=e97c1923e96ebde4a13a7f6c5bac17afdacae87a877be9cf19b2dacb2bbf008b&state=bbf26cdc855f5873a40f06c8f4806ce2de391f64600ef839" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Started GET "/auth/gds/callback?code=31e8519894ba3863039ba3f1e53d8fc6af605386299e4dd3df858f748027c413&state=0d3dfd7f5d02df402964f955d6e1556024c3c1a61076779d" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e97c1923e96ebde4a13a7f6c5bac17afdacae87a877be9cf19b2dacb2bbf008b", "state"=>"bbf26cdc855f5873a40f06c8f4806ce2de391f64600ef839"}
+  Parameters: {"code"=>"31e8519894ba3863039ba3f1e53d8fc6af605386299e4dd3df858f748027c413", "state"=>"0d3dfd7f5d02df402964f955d6e1556024c3c1a61076779d"}
 Authenticating with gds_sso strategy
   [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
   [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-25 13:44:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
 Processing by ExampleController#restricted as HTML
   [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2016-11-26 09:39:11 +0000
+Started GET "/restricted" for 127.0.0.1 at 2016-12-21 08:09:11 +0000
 Processing by ExampleController#restricted as HTML
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d39"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (107.7ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d38982"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (136.9ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d39"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
-Completed 403 Forbidden in 8ms (Views: 6.9ms | ActiveRecord: 0.0ms)
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d36889"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (87.2ms)[0m  [1m[36mcommit transaction[0m
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d31361"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (83.9ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d36889"}
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d36889"], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?[0m  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-  [1m[35m (70.7ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 76ms (ActiveRecord: 71.2ms)
-  [1m[36mUser Load (0.2ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 4], ["LIMIT", 1]]
-  [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d34414"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (100.0ms)[0m  [1m[36mcommit transaction[0m
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:11 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 20ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d33706"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (81.0ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d34414"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "a1s2d34414"], ["LIMIT", 1]]
+  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?[0m  [["disabled", nil], ["id", 12]]
+  [1m[35m (14.7ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[33mUPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?[0m  [["remotely_signed_out", true], ["id", 6]]
-  [1m[35m (165.0ms)[0m  [1m[36mcommit transaction[0m
-Completed 200 OK in 169ms (ActiveRecord: 165.5ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?[0m  [["id", 6], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d37344"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (92.8ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d36432"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (129.2ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 2ms (ActiveRecord: 0.1ms)
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 95ms (Views: 0.4ms | ActiveRecord: 16.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#restricted as JSON
+  [1m[36mUser Load (0.3ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "Moshua Jarshall"], ["uid", "a1s2d33449"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-  [1m[35m (144.5ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.2ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)[0m  [["name", "SSO Push user"], ["uid", "a1s2d32843"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-  [1m[35m (164.9ms)[0m  [1m[36mcommit transaction[0m
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d33449"}
-  Rendering /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
-Completed 403 Forbidden in 2ms (Views: 0.6ms | ActiveRecord: 0.0ms)
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["email", "user@example.com"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35mSQL (0.3ms)[0m  [1m[32mINSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)[0m  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-  [1m[35m (273.2ms)[0m  [1m[36mcommit transaction[0m
-  [1m[36mUser Load (0.1ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "asd"], ["LIMIT", 1]]
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  [1m[36mCACHE (0.0ms)[0m  [1m[34mSELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?[0m  [["uid", "integration-uid"], ["LIMIT", 1]]
   [1m[35m (0.1ms)[0m  [1m[36mbegin transaction[0m
-  [1m[35m (0.3ms)[0m  [1m[36mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  [1m[36mcommit transaction[0m
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 91ms (Views: 0.5ms | ActiveRecord: 1.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2016-12-20 12:14:12 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 21ms (ActiveRecord: 0.0ms)