gds-sso 13.3.0 → 13.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 3c3cbce2af513eb47be2d9ed18fb7b4998af04d5
-  data.tar.gz: 6ef9003f30b725195e40c67b1b634f45b19f811f
+  metadata.gz: 4c393c1d9c9bba89a0d99faa3c8bc93d3288865c
+  data.tar.gz: 43137c891d2a30c618b7c73294378b422b5abd37
 SHA512:
-  metadata.gz: 643929af91e4c99c3fbdd40f39eaa7b031bb233a948e4fc9b8fb2ed278532df8d8fc01a8452f84d1e4677319970e02bbe7ef3f2dc23105787a9ca5bc1f367846
-  data.tar.gz: 85d56396ba1636ac608fd6ad02be0c942b860b2be52fe687a7bf706d216ada1021f5625b3809c078b7cead1b19f44e765bd2789e54a0e394f07dda2f5efe4857
+  metadata.gz: 17c5755ed0581e06fb11ca975372b962d3b62d1521c724753c16e7502c3236c7f52056bd8e871aef13eb5df7c1a2f49e8d23a777f16bcc144660b188372141aa
+  data.tar.gz: 5e60cbaa4fe46ab34429aa1213afa9c9ba6c6caa9f1940d99abce10dec9d9aa344b6640bddfbeede3a1209f1902321d9d3a6b932b4cd302583cb4158943dae85

data/README.md

@@ -183,7 +183,7 @@ Run the tests with:
 bundle exec rake
 ```
 
-By default, the tests use the master of [Signon](https://github.com/alphagov/signonotron2) for running integration tests. If you want to use a branch (or commit, or tag), you can run it like this:
+By default, the tests use the master of [Signon](https://github.com/alphagov/signon) for running integration tests. If you want to use a branch (or commit, or tag), you can run it like this:
 
 ```
 SIGNON_COMMITISH=my_branch_name bundle exec rake

data/lib/gds-sso/bearer_token.rb

@@ -26,7 +26,7 @@ module GDS
 
       # Our User code assumes we're getting our user data back
       # via omniauth and so receiving it in omniauth's preferred
-      # structure. Here we're addressing signonotron directly so
+      # structure. Here we're addressing signon directly so
       # we need to transform the response ourselves.
       def self.omniauth_style_response(response_body)
         input = MultiJson.decode(response_body)['user']

data/lib/gds-sso/config.rb

@@ -28,7 +28,13 @@ module GDS
       end
 
       def self.use_mock_strategies?
-        ['development', 'test'].include?(Rails.env) && ENV['GDS_SSO_STRATEGY'] != 'real'
+        default_strategy = if %w[development test].include?(Rails.env)
+                             "mock"
+                           else
+                             "real"
+                           end
+
+        ENV.fetch("GDS_SSO_STRATEGY", default_strategy) == "mock"
       end
     end
   end

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "13.3.0"
+    VERSION = "13.4.0"
   end
 end

data/spec/internal/log/test.log

@@ -1,170 +1,179 @@
-   (8.0ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (6.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+   (8.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (4.3ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
    (0.1ms)  select sqlite_version(*)
-   (4.3ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:24 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (4.8ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:07 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 8ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:07 +0000
+Started GET "/auth/gds/callback?code=cb9de2b51662d2548bcdfed5e23899e888d2161499fa2b3ced9871baaac2b8fd&state=84b5d64754faaf9cd83ccd73389793181b3298770514eabe" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"cb9de2b51662d2548bcdfed5e23899e888d2161499fa2b3ced9871baaac2b8fd", "state"=>"84b5d64754faaf9cd83ccd73389793181b3298770514eabe"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (7.0ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
+   (7.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
+   (5.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 38ms (ActiveRecord: 13.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 9ms (Views: 6.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Started GET "/auth/gds/callback?code=956a16cf6a205042dacdde0af8cfbc0361a2683f51c22b7a98b9701478129a9f&state=707fd7c0cee1a34dd621b3fb75c001f797cd38a1807c8a0f" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"956a16cf6a205042dacdde0af8cfbc0361a2683f51c22b7a98b9701478129a9f", "state"=>"707fd7c0cee1a34dd621b3fb75c001f797cd38a1807c8a0f"}
+Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (5.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 305ms (Views: 4.0ms | ActiveRecord: 13.9ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:25 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 19ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:25 +0000
-Processing by ExampleController#restricted as JSON
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:17 +0000
+Started GET "/auth/gds/callback?code=4a5bd3d175141594811ef726f05905c93910f03ab7f57dfb66a2d59be22bea2e&state=ef621c5e69dfbdb935785c36d39dd72c71fcd82c7be2f0ad" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"4a5bd3d175141594811ef726f05905c93910f03ab7f57dfb66a2d59be22bea2e", "state"=>"ef621c5e69dfbdb935785c36d39dd72c71fcd82c7be2f0ad"}
+Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.0ms)  commit transaction
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 59ms (Views: 0.3ms | ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:25 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 20ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:25 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:25 +0000
-Started GET "/auth/gds/callback?code=d92f84011a50094b7aed7bd36bb2dc487a6d8d8d005cc75a11943725807db0da&state=f6c8c683cebd89d812d85a1c930e391a9aab133f146668e7" for 127.0.0.1 at 2017-12-08 09:16:34 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Started GET "/auth/gds/callback?code=9cc9fbe29e53e26f82a2097c7bdaa453ede906178441eb04b872fc642686e1b9&state=cb7241bf67c5648e7c40332a2d61c17ef057d983176ea39c" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d92f84011a50094b7aed7bd36bb2dc487a6d8d8d005cc75a11943725807db0da", "state"=>"f6c8c683cebd89d812d85a1c930e391a9aab133f146668e7"}
+  Parameters: {"code"=>"9cc9fbe29e53e26f82a2097c7bdaa453ede906178441eb04b872fc642686e1b9", "state"=>"cb7241bf67c5648e7c40332a2d61c17ef057d983176ea39c"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", "f"], ["id", 1]]
-   (14.5ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 19ms (ActiveRecord: 15.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:34 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:34 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:34 +0000
-Started GET "/auth/gds/callback?code=af47fb9789619f5fc4bcffc8416a23b28e4f54616c0101453774849c36d0c8d6&state=c0bccfcfa703158f83a203f637344f9db2dde880e71eb7f9" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Started GET "/auth/gds/callback?code=98933978b918f4d259bc50c5122a23ee7a19caf329c6316d6d11add79707e486&state=8a400a04ec897d73b5be48980587e793a678a566a276c7db" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"af47fb9789619f5fc4bcffc8416a23b28e4f54616c0101453774849c36d0c8d6", "state"=>"c0bccfcfa703158f83a203f637344f9db2dde880e71eb7f9"}
+  Parameters: {"code"=>"98933978b918f4d259bc50c5122a23ee7a19caf329c6316d6d11add79707e486", "state"=>"8a400a04ec897d73b5be48980587e793a678a566a276c7db"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Started GET "/auth/gds/callback?code=78cb632dba24cdf695bf02e022bfda3f65682e9c5ebcd4c7c4328553a77eb64b&state=7371ad93aa4aa519139e15f9ed044f29aa8e83de479e2013" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Started GET "/auth/gds/callback?code=9333eb36cda5b4c064e89cfbe9517bb0c84bb94a51175f516b0fd8a5d7944dda&state=bb8ef775f0904f7ceddc82f63f145dbc1a776b613accda23" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"78cb632dba24cdf695bf02e022bfda3f65682e9c5ebcd4c7c4328553a77eb64b", "state"=>"7371ad93aa4aa519139e15f9ed044f29aa8e83de479e2013"}
+  Parameters: {"code"=>"9333eb36cda5b4c064e89cfbe9517bb0c84bb94a51175f516b0fd8a5d7944dda", "state"=>"bb8ef775f0904f7ceddc82f63f145dbc1a776b613accda23"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:18 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:18 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Started GET "/auth/gds/callback?code=f3ad2550047bcd71f432a75c3869242cc365dddc0619d99fdaf096d62c22a309&state=aa253c92054a27a7cade43eea0c68465c648def1d4c66039" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:18 +0000
+Started GET "/auth/gds/callback?code=94eb9c2bc9e351e9148932f1d8252acde7d89261b9d93c034753cab2c749f935&state=1341d863625dc14bb051a0abd8475e3e3c069c61f7bc4e0f" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f3ad2550047bcd71f432a75c3869242cc365dddc0619d99fdaf096d62c22a309", "state"=>"aa253c92054a27a7cade43eea0c68465c648def1d4c66039"}
+  Parameters: {"code"=>"94eb9c2bc9e351e9148932f1d8252acde7d89261b9d93c034753cab2c749f935", "state"=>"1341d863625dc14bb051a0abd8475e3e3c069c61f7bc4e0f"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Started GET "/auth/gds/callback?code=f01dd1d5ac1fe419835f1697ce79b98eb358155d22085876aaf1a8d63f8a0436&state=d6aad2ea181e08b726c78d9ad6856ef343f9c746f2325c0d" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f01dd1d5ac1fe419835f1697ce79b98eb358155d22085876aaf1a8d63f8a0436", "state"=>"d6aad2ea181e08b726c78d9ad6856ef343f9c746f2325c0d"}
-Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:06:19 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Started GET "/auth/gds/callback?code=c691d9611ba30187c803f3d2f761a2e0b841967309cbb1f5a3964e933606293d&state=91c1b1597d8c03818dc1fb949c23da49e990b81f3fe4462b" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
+Started GET "/auth/gds/callback?code=cbc0af25f5614c13b339bd158d7739160c436eb098f517da3da0dced875ac8df&state=79f4d622f5820519b9d1d1cbbcc6c0200521870aef31d76b" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c691d9611ba30187c803f3d2f761a2e0b841967309cbb1f5a3964e933606293d", "state"=>"91c1b1597d8c03818dc1fb949c23da49e990b81f3fe4462b"}
+  Parameters: {"code"=>"cbc0af25f5614c13b339bd158d7739160c436eb098f517da3da0dced875ac8df", "state"=>"79f4d622f5820519b9d1d1cbbcc6c0200521870aef31d76b"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
@@ -173,833 +182,829 @@ Authenticating with gds_sso strategy
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:19 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:21:35 +0000
-Started GET "/auth/gds/callback?code=05aeadc5aa44d6406fc554a6343d9872bbeae0feea9d34ed1df59d17aa1d512d&state=682f93024676f2802e2975bfb17885410678cf7c1ce42674" for 127.0.0.1 at 2017-12-09 05:21:35 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:19 +0000
+Started GET "/auth/gds/callback?code=e305ad6667dbb7cc98eadb1acacd8b2eba11a098d6ec7c8b0c487cec5641f260&state=437717250f38381a5389caeab288158cbc86a59198cba4d3" for 127.0.0.1 at 2017-12-12 14:16:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"05aeadc5aa44d6406fc554a6343d9872bbeae0feea9d34ed1df59d17aa1d512d", "state"=>"682f93024676f2802e2975bfb17885410678cf7c1ce42674"}
+  Parameters: {"code"=>"e305ad6667dbb7cc98eadb1acacd8b2eba11a098d6ec7c8b0c487cec5641f260", "state"=>"437717250f38381a5389caeab288158cbc86a59198cba4d3"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:35 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:19 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:35 +0000
-Started GET "/auth/gds/callback?code=1a6cfec97fe11e2461a71ee8bdbf57aea3765d824dd4652fa8357e958b885ec4&state=6f5d43549f09de07fa0c7bfa6d61f40398e8f4cb21674d78" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
+Started GET "/auth/gds/callback?code=031a03cddf3ac36ad0a36c159a263f073cd49e07d31037d6abb934b70443b068&state=22329f061cc3c4281f9f532bdfe854fe10e88af0cc3c6f4b" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1a6cfec97fe11e2461a71ee8bdbf57aea3765d824dd4652fa8357e958b885ec4", "state"=>"6f5d43549f09de07fa0c7bfa6d61f40398e8f4cb21674d78"}
+  Parameters: {"code"=>"031a03cddf3ac36ad0a36c159a263f073cd49e07d31037d6abb934b70443b068", "state"=>"22329f061cc3c4281f9f532bdfe854fe10e88af0cc3c6f4b"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:11:36 +0000
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 1]]
+   (6.4ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Started GET "/auth/gds/callback?code=d27c2026d4977688b3481a6299783fbb7e5f5dfe7fa10530c6af91d59200deaf&state=bf5cebd4bda79ef168638e74ba840749c0a3e34e5a08ec17" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
+Started GET "/auth/gds/callback?code=01375adb3b43310907776cf6d0cd702cd0511a36749fe82516d310770aa170c4&state=e52ee1c756b07e3b1d19ed9e9facfa55fbe696e3b3c9f9ca" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d27c2026d4977688b3481a6299783fbb7e5f5dfe7fa10530c6af91d59200deaf", "state"=>"bf5cebd4bda79ef168638e74ba840749c0a3e34e5a08ec17"}
+  Parameters: {"code"=>"01375adb3b43310907776cf6d0cd702cd0511a36749fe82516d310770aa170c4", "state"=>"e52ee1c756b07e3b1d19ed9e9facfa55fbe696e3b3c9f9ca"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
+   (5.9ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
+Completed 302 Found in 10ms (ActiveRecord: 6.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:36 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:21:36 +0000
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Started GET "/auth/gds/callback?code=898f4ce3a736f6e2010ff4ff80658592debe844c05212d499a23fdde59359d28&state=38e017ec36bb74ebb64d287aead6899b070a94442f6e9328" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"898f4ce3a736f6e2010ff4ff80658592debe844c05212d499a23fdde59359d28", "state"=>"38e017ec36bb74ebb64d287aead6899b070a94442f6e9328"}
-Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:19 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 1]]
+   (5.5ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
+Completed 200 OK in 75ms (Views: 0.3ms | ActiveRecord: 6.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:20 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 12ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:20 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 22ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:20 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 1]]
-   (6.4ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:36 +0000
-Started GET "/auth/gds/callback?code=1536f0c355d3e69ab067eb9b277ca8a1e55a994f351cdd0a4000216ec8b9373d&state=a5a7bdcf03de4298f063b99dd9af9f9dc38e55c46e1250af" for 127.0.0.1 at 2017-12-08 09:16:37 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1536f0c355d3e69ab067eb9b277ca8a1e55a994f351cdd0a4000216ec8b9373d", "state"=>"a5a7bdcf03de4298f063b99dd9af9f9dc38e55c46e1250af"}
-Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.3ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (4.9ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 9ms (ActiveRecord: 5.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:37 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+   (0.0ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Completed 200 OK in 59ms (Views: 0.3ms | ActiveRecord: 0.8ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38537"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.2ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39615"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.8ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d38537"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 7ms (Views: 6.2ms | ActiveRecord: 0.0ms)
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (4.0ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
    (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35045"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (5.4ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38178"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.9ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d35045"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35045"]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-   (5.6ms)  commit transaction
-Completed 200 OK in 9ms (ActiveRecord: 5.9ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 4]]
+   (0.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39973"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.0ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3648"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (8.7ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d336"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.1ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37788"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.3ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+  Parameters: {"uid"=>"a1s2d39973"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
+Completed 403 Forbidden in 7ms (Views: 6.5ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d35314"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.1ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33251"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (7.1ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34145"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.1ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34696"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.0ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d35314"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d35314"]]
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 8]]
-   (4.8ms)  commit transaction
-Completed 200 OK in 7ms (ActiveRecord: 5.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 8]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3145"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (7.6ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36386"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (3.8ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38931"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.2ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34506"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.7ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d3145"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+  Parameters: {"uid"=>"a1s2d36386"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d36386"]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 7]]
+   (4.9ms)  commit transaction
+Completed 200 OK in 7ms (ActiveRecord: 5.1ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 7]]
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32583"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33082"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (3.8ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d32583"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d32583"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (5.3ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
+   (4.0ms)  commit transaction
+Completed 200 OK in 7ms (ActiveRecord: 4.4ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
    (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-   (7.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (6.3ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
-  ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38564"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3245"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38564"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.1ms)
+Completed 403 Forbidden in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+   (4.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (5.2ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+  ActiveRecord::InternalMetadata Load (0.2ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2017-12-08 09:16:47 UTC], ["updated_at", 2017-12-08 09:16:47 UTC]]
-   (6.6ms)  commit transaction
-   (4.9ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2017-12-11 18:11:27 UTC], ["updated_at", 2017-12-11 18:11:27 UTC]]
+   (4.3ms)  commit transaction
+   (5.1ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
   ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  commit transaction
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:27 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (8.4ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
+   (6.5ms)  commit transaction
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
    (0.1ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34536"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.4ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36440"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (6.4ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d34536"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 10ms (Views: 9.6ms | ActiveRecord: 0.0ms)
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
+   (4.1ms)  commit transaction
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 118ms (Views: 5.5ms | ActiveRecord: 12.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 12ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 26ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#restricted as JSON
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d32239"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.8ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31177"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.7ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d32239"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d32239"], ["LIMIT", 1]]
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
-   (6.2ms)  commit transaction
-Completed 200 OK in 10ms (ActiveRecord: 6.6ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 4], ["LIMIT", 1]]
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34143"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.0ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31147"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.6ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d34143"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d34143"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 6]]
-   (5.3ms)  commit transaction
-Completed 200 OK in 7ms (ActiveRecord: 5.5ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 6], ["LIMIT", 1]]
+   (0.0ms)  commit transaction
+  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d37829"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37721"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.9ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d37829"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+   (0.0ms)  commit transaction
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 64ms (Views: 0.3ms | ActiveRecord: 0.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Started GET "/auth/gds/callback?code=e2263a1c3d4c9a0a53cbcc2c3e09f5fa71afed2014dbfa1fc2a514b81d065cee&state=5fe627979619259d77d027bee8ce3ffad76f2f905fbdf1f6" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"e2263a1c3d4c9a0a53cbcc2c3e09f5fa71afed2014dbfa1fc2a514b81d065cee", "state"=>"5fe627979619259d77d027bee8ce3ffad76f2f905fbdf1f6"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33038"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.2ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33797"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.0ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
-Processing by ExampleController#index as HTML
+  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", false], ["id", 1]]
+   (5.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 9ms (ActiveRecord: 5.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 1.0ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 7ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
-Started GET "/auth/gds/callback?code=a540b134e03a1cf4285c1aeedbdd48127f6b4f7783e9e5d98f9831c66a39d908&state=ab157cfff8d5c2d7e5437d5181384eebe5b4bac526386278" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Started GET "/auth/gds/callback?code=af8a0951e6944ed5a7c3810eeb289dfd04ccf5b37b4b96b049afde1d72fd9050&state=057fd43a725d5c084c9befca8ad9c131474ccba386bdc8d5" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a540b134e03a1cf4285c1aeedbdd48127f6b4f7783e9e5d98f9831c66a39d908", "state"=>"ab157cfff8d5c2d7e5437d5181384eebe5b4bac526386278"}
+  Parameters: {"code"=>"af8a0951e6944ed5a7c3810eeb289dfd04ccf5b37b4b96b049afde1d72fd9050", "state"=>"057fd43a725d5c084c9befca8ad9c131474ccba386bdc8d5"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"]]
-   (5.9ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
-   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 15ms (ActiveRecord: 10.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Started GET "/" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Processing by ExampleController#index as HTML
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
-Started GET "/auth/gds/callback?code=926668ccbab6eded785b4638585f1c4a8a8b5f2856f6b35fc11508f4daa9bb4b&state=8de071844bdac351ed218a4c4eaf9e6348cfb58f51358fc3" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Started GET "/auth/gds/callback?code=3e71e71fecb5e846cd9ca44ae8e362485e8678654aa61948a19670bdb101f67e&state=4a68ab4e46dbc69a7fd2b683dcd5960fea34c25f2a430ebe" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"926668ccbab6eded785b4638585f1c4a8a8b5f2856f6b35fc11508f4daa9bb4b", "state"=>"8de071844bdac351ed218a4c4eaf9e6348cfb58f51358fc3"}
+  Parameters: {"code"=>"3e71e71fecb5e846cd9ca44ae8e362485e8678654aa61948a19670bdb101f67e", "state"=>"4a68ab4e46dbc69a7fd2b683dcd5960fea34c25f2a430ebe"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
-Started GET "/auth/gds/callback?code=08640100dab3990aa91c70de73b834800ed7c557848f9e8be3687a55b16026c4&state=231c81ff35e4db84ac997834586691c6a1c0fd829c0ca8f6" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:28 +0000
+Started GET "/auth/gds/callback?code=78df2d74e4885df506232339e13ec8fc02d9dff13c022b2f30af555714700d65&state=32518b74e345e698a284b395eb120ea3cf29e83836cad384" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"08640100dab3990aa91c70de73b834800ed7c557848f9e8be3687a55b16026c4", "state"=>"231c81ff35e4db84ac997834586691c6a1c0fd829c0ca8f6"}
+  Parameters: {"code"=>"78df2d74e4885df506232339e13ec8fc02d9dff13c022b2f30af555714700d65", "state"=>"32518b74e345e698a284b395eb120ea3cf29e83836cad384"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
+  User Load (0.7ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
+Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:48 +0000
-Started GET "/auth/gds/callback?code=6cbb7ec7ec3bfd123e1f313ae0298209695c81fcf92137be4878bea828cf451f&state=4d9441cb36807b4262d29e06c7b3d0844eb6fa83533ae93e" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
+Started GET "/auth/gds/callback?code=47ef77939d3bf0b9fe1eaa0c14b09957f78179b15e8ab38cde79d97fcc5bda4c&state=61959228d413b5e80f0a96218ae8344ee825ea91a2499823" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"6cbb7ec7ec3bfd123e1f313ae0298209695c81fcf92137be4878bea828cf451f", "state"=>"4d9441cb36807b4262d29e06c7b3d0844eb6fa83533ae93e"}
+  Parameters: {"code"=>"47ef77939d3bf0b9fe1eaa0c14b09957f78179b15e8ab38cde79d97fcc5bda4c", "state"=>"61959228d413b5e80f0a96218ae8344ee825ea91a2499823"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Started GET "/auth/gds/callback?code=31fb37a8b21c9b4eb7ed9da0f1506596c06eadb989970646e07a829aeaccae5b&state=250b7a8cb4dc7606b675902a52934a61b84a11d6899a5af1" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
+Started GET "/auth/gds/callback?code=4a409006f27206485130656e4f3223707bc5d60bca75190f7b94ed6ef9c9a6ff&state=b091630f919936306b841de6ee23e81ca2355fd0cf11f7af" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"31fb37a8b21c9b4eb7ed9da0f1506596c06eadb989970646e07a829aeaccae5b", "state"=>"250b7a8cb4dc7606b675902a52934a61b84a11d6899a5af1"}
+  Parameters: {"code"=>"4a409006f27206485130656e4f3223707bc5d60bca75190f7b94ed6ef9c9a6ff", "state"=>"b091630f919936306b841de6ee23e81ca2355fd0cf11f7af"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Started GET "/auth/gds/callback?code=74b45cc5555a6a5bfb276496136711730ea7978d709105ddf78d9cae1b544f90&state=7598ab70da1d47b340827175ef1cf7788873f28d8923b8e9" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"74b45cc5555a6a5bfb276496136711730ea7978d709105ddf78d9cae1b544f90", "state"=>"7598ab70da1d47b340827175ef1cf7788873f28d8923b8e9"}
-Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:06:29 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
+Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
-Started GET "/auth/gds/callback?code=da18ce32aec1c829161714064fa31f815aa8933ca7d8a83a77ab55e3d9b60868&state=e1207a673bcef09649729d9a6666e4312b15e161bfec7953" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
+Started GET "/auth/gds/callback?code=76c0a974c7c410c7abf4ae41dd80be60a0ab2396254fa5191aa25868a9051638&state=f60ec8c7ca7855bb0e6ed06b199ffed4694036a26d5b5d39" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"da18ce32aec1c829161714064fa31f815aa8933ca7d8a83a77ab55e3d9b60868", "state"=>"e1207a673bcef09649729d9a6666e4312b15e161bfec7953"}
+  Parameters: {"code"=>"76c0a974c7c410c7abf4ae41dd80be60a0ab2396254fa5191aa25868a9051638", "state"=>"f60ec8c7ca7855bb0e6ed06b199ffed4694036a26d5b5d39"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:29 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Started GET "/auth/gds/callback?code=58c7e11d1ae291f9c591783f4c71f4af516dbb4146d02898b0f912e139e777a1&state=7e72609b30d7d1d70ea74c63d41181d8c19a00f5bba20732" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:29 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:29 +0000
+Started GET "/auth/gds/callback?code=1be7e5b7dc393be3be11a2fb87a69033855998b9eb20fcc387d670206175bfe6&state=8ea770ed8967047e1ed2cc7ada420461538848380a244b2e" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"58c7e11d1ae291f9c591783f4c71f4af516dbb4146d02898b0f912e139e777a1", "state"=>"7e72609b30d7d1d70ea74c63d41181d8c19a00f5bba20732"}
+  Parameters: {"code"=>"1be7e5b7dc393be3be11a2fb87a69033855998b9eb20fcc387d670206175bfe6", "state"=>"8ea770ed8967047e1ed2cc7ada420461538848380a244b2e"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:21:49 +0000
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:30 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:49 +0000
-Started GET "/auth/gds/callback?code=3aa6475c92e4417d0fa1a2fdb9869fa10b99ddf699dbbb2d52eca04fecf51a08&state=77551c720e4670a1b2115632ab1cad15b2f55159342b032c" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:30 +0000
+Started GET "/auth/gds/callback?code=25297a4f8a347662e20bdff2c0e1a7adbb7014b59173d23f192070925a304336&state=d51a1d3283395a0584daf88efc171791993b3f0a1ec3ef1b" for 127.0.0.1 at 2017-12-12 14:16:30 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3aa6475c92e4417d0fa1a2fdb9869fa10b99ddf699dbbb2d52eca04fecf51a08", "state"=>"77551c720e4670a1b2115632ab1cad15b2f55159342b032c"}
+  Parameters: {"code"=>"25297a4f8a347662e20bdff2c0e1a7adbb7014b59173d23f192070925a304336", "state"=>"d51a1d3283395a0584daf88efc171791993b3f0a1ec3ef1b"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:11:50 +0000
+Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:30 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.6ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Started GET "/auth/gds/callback?code=f8c8576c9d5afde443e07373373e97002818174408070e8c3340dbde30b84bb6&state=40c040b0446ea9419c144c0543ac5b0adf75822aa21cb2d2" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed   in 1ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
+Started GET "/auth/gds/callback?code=6d13e3646de7b542ec832fc3a7e450ac32836da33789afe2d6b04fa34b15b5e3&state=45bfe88d4f448806e55b4808f2ea76a0317e1cef6cc637d9" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"f8c8576c9d5afde443e07373373e97002818174408070e8c3340dbde30b84bb6", "state"=>"40c040b0446ea9419c144c0543ac5b0adf75822aa21cb2d2"}
+  Parameters: {"code"=>"6d13e3646de7b542ec832fc3a7e450ac32836da33789afe2d6b04fa34b15b5e3", "state"=>"45bfe88d4f448806e55b4808f2ea76a0317e1cef6cc637d9"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 12]]
-   (6.3ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 1]]
+   (6.5ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Started GET "/auth/gds/callback?code=c8a34750a48051b788fb570b3f5556df02b0fe9f76023902b25a3680a7454daf&state=68b7074a255aa3deadba4630549a3d420bdbab8d21a4aaf8" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed   in 1ms (ActiveRecord: 0.2ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
+Started GET "/auth/gds/callback?code=9ed10ffa6ea6e3900b0effccac4b332b8e97faff501c52f6e03e226f91a0464d&state=dacf76bccf38089ca065f0b57753ab7451dad2a1e2d6782c" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c8a34750a48051b788fb570b3f5556df02b0fe9f76023902b25a3680a7454daf", "state"=>"68b7074a255aa3deadba4630549a3d420bdbab8d21a4aaf8"}
+  Parameters: {"code"=>"9ed10ffa6ea6e3900b0effccac4b332b8e97faff501c52f6e03e226f91a0464d", "state"=>"dacf76bccf38089ca065f0b57753ab7451dad2a1e2d6782c"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
+  User Load (0.4ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
-   (4.9ms)  commit transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
+   (4.5ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 9ms (ActiveRecord: 5.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
+Completed 302 Found in 9ms (ActiveRecord: 5.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:30 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d39270"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.8ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33863"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (3.7ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39270"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
+Completed 403 Forbidden in 8ms (Views: 7.7ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 12]]
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33833"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
    (4.7ms)  commit transaction
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d3274"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.8ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33833"}
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d33833"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 72ms (Views: 0.3ms | ActiveRecord: 5.6ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.1ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 4]]
+   (5.5ms)  commit transaction
+Completed 200 OK in 9ms (ActiveRecord: 5.9ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 4], ["LIMIT", 1]]
    (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33026"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.2ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37373"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d33026"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d33026"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 6]]
+   (3.9ms)  commit transaction
+Completed 200 OK in 6ms (ActiveRecord: 4.1ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 6], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35591"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d37588"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (3.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d35591"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31431"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (3.8ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
-  CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38687"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 61ms (Views: 0.4ms | ActiveRecord: 0.7ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 22ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:16:50 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 11ms (ActiveRecord: 0.0ms)
-   (10.3ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
-   (9.4ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (3.9ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+   (4.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f') 
+   (5.2ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL) 
    (0.1ms)  select sqlite_version(*)
-   (4.9ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+   (4.2ms)  CREATE UNIQUE INDEX "unique_schema_migrations" ON "schema_migrations" ("version")
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (5.2ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
+   (0.0ms)  begin transaction
+   (0.1ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 7ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Started GET "/auth/gds/callback?code=a0bb939fa177185880182d0d43f2f0da9a15cc571e9d33d183ddd5db005f89ec&state=1cdec6ea848f871b8a6eb9701259fa58a5a39f48669980c6" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Started GET "/auth/gds/callback?code=60b5656748db3dcb692d3ed9c802ecc3c01c933b07700d976d86f071e1083a73&state=1d304ef9bd870bb71c1ef4028517f7c9ccd9f630844cb5d7" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"a0bb939fa177185880182d0d43f2f0da9a15cc571e9d33d183ddd5db005f89ec", "state"=>"1cdec6ea848f871b8a6eb9701259fa58a5a39f48669980c6"}
+  Parameters: {"code"=>"60b5656748db3dcb692d3ed9c802ecc3c01c933b07700d976d86f071e1083a73", "state"=>"1d304ef9bd870bb71c1ef4028517f7c9ccd9f630844cb5d7"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
    (0.1ms)  begin transaction
   SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "integration-uid"], ["email", "test@example-client.com"], ["name", "Test User"], ["permissions", "---\n- signin\n"]]
-   (6.5ms)  commit transaction
+   (4.9ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (4.7ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 31ms (ActiveRecord: 12.4ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
+   (4.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16ms (ActiveRecord: 10.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 6ms (Views: 3.7ms | ActiveRecord: 0.1ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Completed 200 OK in 8ms (Views: 6.6ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Started GET "/auth/gds/callback?code=d7169f0667be1e98222c2e42da39fd2e422d90100b37b523c69546b65cda27cd&state=0f1c18bb5fb347ee0138172a92f3d93b6058d74bcd3371e2" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Started GET "/auth/gds/callback?code=e0ebb27a1259247c43594e468651f30623620a7092413828c399ad8dde8788c9&state=6f2d00cf1b9da291767ad946d87f0e0a83559078ee9395d6" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d7169f0667be1e98222c2e42da39fd2e422d90100b37b523c69546b65cda27cd", "state"=>"0f1c18bb5fb347ee0138172a92f3d93b6058d74bcd3371e2"}
+  Parameters: {"code"=>"e0ebb27a1259247c43594e468651f30623620a7092413828c399ad8dde8788c9", "state"=>"6f2d00cf1b9da291767ad946d87f0e0a83559078ee9395d6"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-Redirected to http://www.example-client.com/this_requires_signin_permission
+Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#this_requires_signin_permission as HTML
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#index as HTML
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Started GET "/auth/gds/callback?code=8ca2448fd6723932527823757aa0ec35553a6481644d3cb98526931b9de53dc7&state=a54747189e06216ea5482b16110d13c9d4ff2d7f81e4cf98" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Started GET "/auth/gds/callback?code=34774d2eeea6949b33f2257e53649546f6171b8b571e5589b08a08bf8d5ecde1&state=844b396ed49f21047497e61210b7e3900bbedbe776e87972" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"8ca2448fd6723932527823757aa0ec35553a6481644d3cb98526931b9de53dc7", "state"=>"a54747189e06216ea5482b16110d13c9d4ff2d7f81e4cf98"}
+  Parameters: {"code"=>"34774d2eeea6949b33f2257e53649546f6171b8b571e5589b08a08bf8d5ecde1", "state"=>"844b396ed49f21047497e61210b7e3900bbedbe776e87972"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#index as HTML
+  Rendered text template (0.0ms)
+Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:04 +0000
-Started GET "/auth/gds/callback?code=b2df58a55f63a216a25b4a426b10d339600fc0d92b221bf0d0399a094ebb3987&state=1c464472d1e1f36f327090ec8558e0368ac9923d2f49702c" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:37 +0000
+Started GET "/auth/gds/callback?code=5c8a8bf66bddb0d96e550df3b43633fb54d7b505b49a158cc5210abfd7faa8e9&state=9804abb5acbd37d0b5c026d9891155f1a69d9c199aa143b3" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b2df58a55f63a216a25b4a426b10d339600fc0d92b221bf0d0399a094ebb3987", "state"=>"1c464472d1e1f36f327090ec8558e0368ac9923d2f49702c"}
+  Parameters: {"code"=>"5c8a8bf66bddb0d96e550df3b43633fb54d7b505b49a158cc5210abfd7faa8e9", "state"=>"9804abb5acbd37d0b5c026d9891155f1a69d9c199aa143b3"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
+   (0.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Processing by ExampleController#restricted as HTML
+Completed 200 OK in 11ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Started GET "/auth/gds/callback?code=3e721ef987ddff6e720dc56d4f31d0ce6094361a6bcd042a6c55a1a98ac9e2ed&state=0ee6cae582dfc1131c58ba413cf54c5f830415f4cedd909e" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Started GET "/auth/gds/callback?code=f9000d054004a20ac3b01a05876832d1940874c92f66abaadecd9fd663893e2a&state=243af183cf99dab68f00868ace1852de933914ba33757109" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3e721ef987ddff6e720dc56d4f31d0ce6094361a6bcd042a6c55a1a98ac9e2ed", "state"=>"0ee6cae582dfc1131c58ba413cf54c5f830415f4cedd909e"}
+  Parameters: {"code"=>"f9000d054004a20ac3b01a05876832d1940874c92f66abaadecd9fd663893e2a", "state"=>"243af183cf99dab68f00868ace1852de933914ba33757109"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-Redirected to http://www.example-client.com/restricted
+   (0.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Processing by ExampleController#restricted as HTML
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Started GET "/auth/gds/callback?code=c2f18f2dfecc5450d1b6193c01132aa0462b9d9afe48d502e97658010c778b67&state=646fedba10beaedfe3100d6dd91e88ed23ad2bd8e6f455d7" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Started GET "/auth/gds/callback?code=406a166d13efbb6251b10e1fe4f636d5b9338cf4c0f244a13a1f0bd93611bea0&state=603b44d083c3a7dcd7c2f3e2ad415e6299b68173ee50e779" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c2f18f2dfecc5450d1b6193c01132aa0462b9d9afe48d502e97658010c778b67", "state"=>"646fedba10beaedfe3100d6dd91e88ed23ad2bd8e6f455d7"}
+  Parameters: {"code"=>"406a166d13efbb6251b10e1fe4f636d5b9338cf4c0f244a13a1f0bd93611bea0", "state"=>"603b44d083c3a7dcd7c2f3e2ad415e6299b68173ee50e779"}
 Authenticating with gds_sso strategy
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "test@example-client.com"]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 1]]
-   (5.6ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 2]]
+   (5.2ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.1ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Started GET "/auth/gds/callback?code=e3f8312a7cd2a30482279235f9746f314c3f81f158be73be48673f93ed843f46&state=e454f96b7bf27192f655c3faa1ba2e41dbfa614a7d5d7aa1" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Started GET "/auth/gds/callback?code=cd90eecebbb439fffc3cea6f1a4cc17ce154476316b892049eb9ca2c9fe16db5&state=9788565e3575320c42c6e631b54b1058de15512759ddf344" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e3f8312a7cd2a30482279235f9746f314c3f81f158be73be48673f93ed843f46", "state"=>"e454f96b7bf27192f655c3faa1ba2e41dbfa614a7d5d7aa1"}
+  Parameters: {"code"=>"cd90eecebbb439fffc3cea6f1a4cc17ce154476316b892049eb9ca2c9fe16db5", "state"=>"9788565e3575320c42c6e631b54b1058de15512759ddf344"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 1]]
-   (5.9ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "f"], ["id", 2]]
+   (4.7ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 10ms (ActiveRecord: 6.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Completed 302 Found in 9ms (ActiveRecord: 5.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:05 +0000
-Started GET "/auth/gds/callback?code=60356317240338bc7b4a9f9f78b34ac1e664ad4f8154a193f8f6b94efb44f9eb&state=1b443d8b1ae9416f629b7fb6f82fcdc2bd490062a1bc7858" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:38 +0000
+Started GET "/auth/gds/callback?code=f2821acfc7b53d43f94f18b74ae93051c19513acc6efa00243fafd358181efcb&state=a6ae48eec129a91f7c13a5e35846c931293a128f59aa1ef7" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"60356317240338bc7b4a9f9f78b34ac1e664ad4f8154a193f8f6b94efb44f9eb", "state"=>"1b443d8b1ae9416f629b7fb6f82fcdc2bd490062a1bc7858"}
+  Parameters: {"code"=>"f2821acfc7b53d43f94f18b74ae93051c19513acc6efa00243fafd358181efcb", "state"=>"a6ae48eec129a91f7c13a5e35846c931293a128f59aa1ef7"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:12:06 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
-  Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
-Started GET "/auth/gds/callback?code=92ca5975be3bd33149ea4a4a20bca4a196829b2346c084ccb97c530a71c7eea7&state=7c3d5656db2ae7501506441aa07fda6f97379cd54ee26605" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
+Started GET "/auth/gds/callback?code=9d990746ae117a2e618604db43c8d1c62fcbc061499ce8aa40e09cbfc46f90aa&state=85888a436383900d70bd1c25c2e84440114dff7ec4ca83e7" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"92ca5975be3bd33149ea4a4a20bca4a196829b2346c084ccb97c530a71c7eea7", "state"=>"7c3d5656db2ae7501506441aa07fda6f97379cd54ee26605"}
+  Parameters: {"code"=>"9d990746ae117a2e618604db43c8d1c62fcbc061499ce8aa40e09cbfc46f90aa", "state"=>"85888a436383900d70bd1c25c2e84440114dff7ec4ca83e7"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-   (0.0ms)  begin transaction
-   (0.0ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.2ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
-Started GET "/auth/gds/callback?code=452a43c6724a91466805dac7948ac2c6e7f565fefae52aea7ccd9171d42163bb&state=6560c6a842a8f24f856c46dd59291474dfcdc384594121b9" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
+Started GET "/auth/gds/callback?code=a4f9db4a37967cbf8561bb81ac4d18abb622dca5d08bf652cc99744dae04d6d3&state=28678d68fc6a25af5e40b7051f44f9e6698832b147310cd0" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"452a43c6724a91466805dac7948ac2c6e7f565fefae52aea7ccd9171d42163bb", "state"=>"6560c6a842a8f24f856c46dd59291474dfcdc384594121b9"}
+  Parameters: {"code"=>"a4f9db4a37967cbf8561bb81ac4d18abb622dca5d08bf652cc99744dae04d6d3", "state"=>"28678d68fc6a25af5e40b7051f44f9e6698832b147310cd0"}
 Authenticating with gds_sso strategy
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+   (0.1ms)  begin transaction
+   (0.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as HTML
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:06:39 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
-Started GET "/auth/gds/callback?code=c8277e7236338bbd9169657daa908ff7c608c11ae2976ce08fed4bef75d9883f&state=52479bdbd91ad10bdaee20749b1c5409b001398c13ce0716" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
+Started GET "/auth/gds/callback?code=8d1db51b13d3f235a70765f95488ab10820645da8ed6781958a57ba5d847c5cc&state=5b023d4a0024df77bea6d002bb82d252367911d1ca4e5935" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c8277e7236338bbd9169657daa908ff7c608c11ae2976ce08fed4bef75d9883f", "state"=>"52479bdbd91ad10bdaee20749b1c5409b001398c13ce0716"}
+  Parameters: {"code"=>"8d1db51b13d3f235a70765f95488ab10820645da8ed6781958a57ba5d847c5cc", "state"=>"5b023d4a0024df77bea6d002bb82d252367911d1ca4e5935"}
 Authenticating with gds_sso strategy
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.2ms)  commit transaction
    (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 5ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"], ["remotely_signed_out", "f"]]
   Rendered text template (0.0ms)
 Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:22:06 +0000
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:39 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 15ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
-Processing by ExampleController#restricted as JSON
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 1]]
-   (5.5ms)  commit transaction
+  SQL (0.3ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", nil], ["id", 2]]
+   (5.2ms)  commit transaction
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
@@ -1012,459 +1017,454 @@ Processing by ExampleController#restricted as JSON
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   Rendered text template (0.0ms)
-Completed 200 OK in 70ms (Views: 0.3ms | ActiveRecord: 6.6ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed 200 OK in 73ms (Views: 0.3ms | ActiveRecord: 6.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#restricted as JSON
-Completed   in 23ms (ActiveRecord: 0.0ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:06 +0000
+Completed   in 12ms (ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
 Processing by ExampleController#this_requires_signin_permission as JSON
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "integration-uid"]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-  Rendered text template (0.0ms)
-Completed 200 OK in 63ms (Views: 0.3ms | ActiveRecord: 0.7ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["email", "user@example.com"]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["uid", "asd"], ["email", "user@example.com"], ["name", "A Name"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (4.3ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "asd"]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
+  Rendered text template (0.0ms)
+Completed 200 OK in 63ms (Views: 0.3ms | ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:39 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 22ms (ActiveRecord: 0.0ms)
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33176"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.0ms)  commit transaction
+  SQL (0.2ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39515"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (4.4ms)  commit transaction
    (0.1ms)  begin transaction
-  SQL (0.3ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31421"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39732"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
    (5.2ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d33176"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 7ms (Views: 6.6ms | ActiveRecord: 0.0ms)
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d36988"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.0ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33638"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (3.7ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d36988"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d36988"]]
+  Parameters: {"uid"=>"a1s2d39515"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d39515"]]
    (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 5]]
-   (4.0ms)  commit transaction
-Completed 200 OK in 6ms (ActiveRecord: 4.3ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 5]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34986"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.0ms)  commit transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", "t"], ["id", 3]]
+   (5.3ms)  commit transaction
+Completed 200 OK in 8ms (ActiveRecord: 5.5ms)
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d3385"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (5.3ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d39939"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (3.8ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37194"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.1ms)  commit transaction
 Processing by Api::UserController#reauth as HTML
   Parameters: {"uid"=>"nonexistent-user"}
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "nonexistent-user"]]
 Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d34377"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38153"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33490"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.0ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38153"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
+Completed 403 Forbidden in 7ms (Views: 6.3ms | ActiveRecord: 0.0ms)
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32399"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
    (5.0ms)  commit transaction
    (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d38245"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32495"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
    (4.0ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d34377"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d34377"]]
-   (0.0ms)  begin transaction
+  Parameters: {"uid"=>"a1s2d32399"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ?  ORDER BY "users"."id" ASC LIMIT 1  [["uid", "a1s2d32399"]]
+   (0.1ms)  begin transaction
   SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 9]]
    (4.2ms)  commit transaction
-Completed 200 OK in 7ms (ActiveRecord: 4.5ms)
+Completed 200 OK in 8ms (ActiveRecord: 4.5ms)
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
    (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d37090"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
-   (4.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d32452"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d33956"], ["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["permissions", "---\n- signin\n"]]
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("uid", "email", "name", "permissions") VALUES (?, ?, ?, ?)  [["uid", "a1s2d31873"], ["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (5.1ms)  commit transaction
 Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d37090"}
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
-   (6.6ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
-   (4.5ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
+  Parameters: {"uid"=>"a1s2d33956"}
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.3ms)
+Completed 403 Forbidden in 1ms (Views: 0.8ms | ActiveRecord: 0.0ms)
+   (5.0ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar NOT NULL, "uid" varchar NOT NULL, "email" varchar NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar, "organisation_content_id" varchar, "disabled" boolean DEFAULT 'f')
+   (4.9ms)  CREATE TABLE "ar_internal_metadata" ("key" varchar NOT NULL PRIMARY KEY, "value" varchar, "created_at" datetime NOT NULL, "updated_at" datetime NOT NULL)
   ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2017-12-08 09:17:17 UTC], ["updated_at", 2017-12-08 09:17:17 UTC]]
-   (5.6ms)  commit transaction
-   (5.2ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "ar_internal_metadata" ("key", "value", "created_at", "updated_at") VALUES (?, ?, ?, ?)  [["key", "environment"], ["value", "test"], ["created_at", 2017-12-11 18:11:45 UTC], ["updated_at", 2017-12-11 18:11:45 UTC]]
+   (5.1ms)  commit transaction
+   (5.3ms)  CREATE TABLE "schema_migrations" ("version" varchar NOT NULL PRIMARY KEY)
   ActiveRecord::InternalMetadata Load (0.1ms)  SELECT  "ar_internal_metadata".* FROM "ar_internal_metadata" WHERE "ar_internal_metadata"."key" = ? LIMIT ?  [["key", :environment], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+   (0.1ms)  commit transaction
    (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:17 +0000
-Processing by ExampleController#this_requires_signin_permission as JSON
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34859"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (11.4ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d35109"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (8.4ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34859"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
+Completed 403 Forbidden in 12ms (Views: 11.5ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d33226"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (3.8ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d39694"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (3.7ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33226"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d33226"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
+   (4.7ms)  commit transaction
+Completed 200 OK in 9ms (ActiveRecord: 5.0ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 3], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d3551"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (3.7ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32467"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.7ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3551"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d3551"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 5]]
+   (4.7ms)  commit transaction
+Completed 200 OK in 7ms (ActiveRecord: 5.0ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 5], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34477"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (3.9ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d36517"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (4.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
+Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36242"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
+   (4.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d31608"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
+   (6.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d36242"}
+  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
+  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
+Completed 403 Forbidden in 1ms (Views: 0.6ms | ActiveRecord: 0.0ms)
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
+   (5.7ms)  commit transaction
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+   (0.1ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:45 +0000
+Processing by ExampleController#restricted as JSON
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
   SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "disabled") VALUES (?, ?, ?, ?, ?)  [["name", "Test User"], ["uid", "integration-uid"], ["email", "test@example-client.com"], ["permissions", "---\n- signin\n"], ["disabled", nil]]
-   (8.9ms)  commit transaction
+   (5.4ms)  commit transaction
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.2ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
-   (7.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
+   (5.0ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 111ms (Views: 3.4ms | ActiveRecord: 18.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 26ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Processing by ExampleController#restricted as JSON
-Completed   in 14ms (ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Processing by ExampleController#restricted as JSON
+Completed 200 OK in 88ms (Views: 1.5ms | ActiveRecord: 11.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:45 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
+   (0.0ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
+   (0.1ms)  begin transaction
    (0.0ms)  commit transaction
   CACHE (0.0ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 64ms (Views: 0.3ms | ActiveRecord: 0.7ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Completed 200 OK in 61ms (Views: 0.3ms | ActiveRecord: 0.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 14ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Processing by ExampleController#restricted as JSON
+Completed   in 21ms (ActiveRecord: 0.0ms)
+Started GET "/" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Processing by ExampleController#index as HTML
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 0ms (Views: 0.3ms | ActiveRecord: 0.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Started GET "/auth/gds/callback?code=b6c285330f7d7aa4479fe6886516bdf3677fa3e3c2d5a34ada606fb3ae6d9c40&state=e3fff9e95e31722aa25220048f1ccde86b18718e17155c2a" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Started GET "/auth/gds/callback?code=4dca828cc8497e2d264720d41d20e447d7c0eaeadaa96c6ca4cb128dba66c84f&state=f19954903ebcfc8afe57a2af145d9f5c4104c06ff8ab3c2f" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"b6c285330f7d7aa4479fe6886516bdf3677fa3e3c2d5a34ada606fb3ae6d9c40", "state"=>"e3fff9e95e31722aa25220048f1ccde86b18718e17155c2a"}
+  Parameters: {"code"=>"4dca828cc8497e2d264720d41d20e447d7c0eaeadaa96c6ca4cb128dba66c84f", "state"=>"f19954903ebcfc8afe57a2af145d9f5c4104c06ff8ab3c2f"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", false], ["id", 1]]
-   (5.9ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "disabled" = ? WHERE "users"."id" = ?  [["disabled", false], ["id", 12]]
+   (4.4ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
-Completed 302 Found in 10ms (ActiveRecord: 6.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Completed 302 Found in 8ms (ActiveRecord: 4.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Started GET "/auth/gds/callback?code=d06de1284eb7ed2d0cd68b0360a20683aae6391d242a06ac48d1e752acac15a2&state=2b6a0eb982c0145fcadfa51d3e5c2c68534e2a62a13c2d81" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Started GET "/auth/gds/callback?code=fee9d4da803dea1818a4cba172ad59888e23c643e6e73325ece459b38889be3d&state=a81312773655f0c6bc4c07fe7c996ac0d393cef049efef0b" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"d06de1284eb7ed2d0cd68b0360a20683aae6391d242a06ac48d1e752acac15a2", "state"=>"2b6a0eb982c0145fcadfa51d3e5c2c68534e2a62a13c2d81"}
+  Parameters: {"code"=>"fee9d4da803dea1818a4cba172ad59888e23c643e6e73325ece459b38889be3d", "state"=>"a81312773655f0c6bc4c07fe7c996ac0d393cef049efef0b"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/this_requires_signin_permission
 Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#this_requires_signin_permission as HTML
   User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Started GET "/auth/gds/callback?code=9f11c347d968ef4b5b53bc35aec59477e6306323de1b2703947cf700b1d1a130&state=6e4134fbd2d2dc49e9da7cf3210e135beb9647022dacf4f6" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Started GET "/auth/gds/callback?code=5face0d186b6d158ba605e7f768962aadb4284d01368a0c08631e9c5e64bdb52&state=a64a21a6bf9b6c62bff33711337ebc51ab1237b905900682" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"9f11c347d968ef4b5b53bc35aec59477e6306323de1b2703947cf700b1d1a130", "state"=>"6e4134fbd2d2dc49e9da7cf3210e135beb9647022dacf4f6"}
+  Parameters: {"code"=>"5face0d186b6d158ba605e7f768962aadb4284d01368a0c08631e9c5e64bdb52", "state"=>"a64a21a6bf9b6c62bff33711337ebc51ab1237b905900682"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
+  Rendered text template (0.2ms)
 Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:18 +0000
-Started GET "/auth/gds/callback?code=4ab451f7918f92e11632dc5576b608925c7001af8934429ede61439ed0928708&state=96dbe154f60af4d0e5cc90e5cabaca9cfc8dc633fde8f0f6" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Started GET "/auth/gds/callback?code=0704edee38b33462fb9f2fb4b8a23bf23559d1d62e85fc348022a8ea4f9e3074&state=fd40e5641e3fa51da2f98a19a1063f116a86bb13ebc46ec7" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"4ab451f7918f92e11632dc5576b608925c7001af8934429ede61439ed0928708", "state"=>"96dbe154f60af4d0e5cc90e5cabaca9cfc8dc633fde8f0f6"}
+  Parameters: {"code"=>"0704edee38b33462fb9f2fb4b8a23bf23559d1d62e85fc348022a8ea4f9e3074", "state"=>"fd40e5641e3fa51da2f98a19a1063f116a86bb13ebc46ec7"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.0ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
-Processing by ExampleController#index as HTML
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 0ms (Views: 0.2ms | ActiveRecord: 0.0ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+  Rendered text template (0.1ms)
+Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
-Started GET "/auth/gds/callback?code=1f141bb76e0021d4d8d3e98609e78e21dffc6a0e5236f82301c2cb1e96b7181f&state=d44608a1842cba5ee47a9dfaa5149dfb8bf6b05cce879b6e" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:46 +0000
+Started GET "/auth/gds/callback?code=f1d50a1344511cd3480ebd6b094750fb81bea076cb3c1d3c8d30899a2506819e&state=e2ac30d920c8b0cb776d0ba3187811a220f250afe4d5a6ca" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"1f141bb76e0021d4d8d3e98609e78e21dffc6a0e5236f82301c2cb1e96b7181f", "state"=>"d44608a1842cba5ee47a9dfaa5149dfb8bf6b05cce879b6e"}
+  Parameters: {"code"=>"f1d50a1344511cd3480ebd6b094750fb81bea076cb3c1d3c8d30899a2506819e", "state"=>"e2ac30d920c8b0cb776d0ba3187811a220f250afe4d5a6ca"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
-Started GET "/auth/gds/callback?code=c853a93efe549f49ea16b0dd9be991b7a72222e8eff69ab81c09a96b82bcde30&state=4c75ae3fcd60644e360c01ed31bf718f7ca906185dba0a10" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
+Started GET "/auth/gds/callback?code=cc1a662f6e8fa952c5255bf3f2f3b5ac682fe4018b8786eaaadd954a0d70cdbb&state=eb40effa597b1613045fe33220543ba4925de0b3878d69a5" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"c853a93efe549f49ea16b0dd9be991b7a72222e8eff69ab81c09a96b82bcde30", "state"=>"4c75ae3fcd60644e360c01ed31bf718f7ca906185dba0a10"}
+  Parameters: {"code"=>"cc1a662f6e8fa952c5255bf3f2f3b5ac682fe4018b8786eaaadd954a0d70cdbb", "state"=>"eb40effa597b1613045fe33220543ba4925de0b3878d69a5"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 1]]
-   (5.6ms)  commit transaction
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:06:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
+  Rendering text template
+  Rendered text template (0.0ms)
+Completed 200 OK in 2ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
+Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.2ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
-Started GET "/auth/gds/callback?code=3051cd86e0c5c80c80ad2b5d7ff85f916ca42cc17174bb338bb97be21972c1ba&state=ff8ab90e60f71a6b01bd9a3587edc804104ea2b498836926" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
+Started GET "/auth/gds/callback?code=3cc841f99bd9671ac4c438e180fc75d673d03ec4ec2cc8530a57dc0808a85636&state=73e1d6169f3c0306576790af575565e609ec82ed21b29afb" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"3051cd86e0c5c80c80ad2b5d7ff85f916ca42cc17174bb338bb97be21972c1ba", "state"=>"ff8ab90e60f71a6b01bd9a3587edc804104ea2b498836926"}
+  Parameters: {"code"=>"3cc841f99bd9671ac4c438e180fc75d673d03ec4ec2cc8530a57dc0808a85636", "state"=>"73e1d6169f3c0306576790af575565e609ec82ed21b29afb"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 1]]
-   (6.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 11ms (ActiveRecord: 6.8ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 1ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:47 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0ms (ActiveRecord: 0.0ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:47 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:19 +0000
-Started GET "/auth/gds/callback?code=e8e93eacd2cfd06665dc343aed1a0b89b0ba609be336b99159cf58d9e0f000c8&state=453d14f4e3327c6132f8bc5ce231d3cc7c4e1b5a6d335669" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
+Started GET "/auth/gds/callback?code=1709a44002caba24e98cefb94073ac312d1e9b463fe95da71dbe4c321fb09775&state=94bbe288e7277ffc065829a9d43c29fac33d58274556d9e3" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"e8e93eacd2cfd06665dc343aed1a0b89b0ba609be336b99159cf58d9e0f000c8", "state"=>"453d14f4e3327c6132f8bc5ce231d3cc7c4e1b5a6d335669"}
+  Parameters: {"code"=>"1709a44002caba24e98cefb94073ac312d1e9b463fe95da71dbe4c321fb09775", "state"=>"94bbe288e7277ffc065829a9d43c29fac33d58274556d9e3"}
 Authenticating with gds_sso strategy
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
+  User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:47 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
+Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:47 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
-Started GET "/auth/gds/callback?code=110078bd2324d66ccdb485fb5e843adf07b264085fb986f8a3263b4e9f85267b&state=9941d26bd73d4ad1e52c3a0fcb54a94f185c6f6dbf77fcb9" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-12 14:16:47 +0000
+Started GET "/auth/gds/callback?code=0d06776b6f2e79773057046e66d6cbe4c283f3b0bfe3554f100b9c8a396265bd&state=911257c9e8dfddbc886f074faf5bcb3619c1f8dbb90cacd5" for 127.0.0.1 at 2017-12-12 14:16:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"110078bd2324d66ccdb485fb5e843adf07b264085fb986f8a3263b4e9f85267b", "state"=>"9941d26bd73d4ad1e52c3a0fcb54a94f185c6f6dbf77fcb9"}
+  Parameters: {"code"=>"0d06776b6f2e79773057046e66d6cbe4c283f3b0bfe3554f100b9c8a396265bd", "state"=>"911257c9e8dfddbc886f074faf5bcb3619c1f8dbb90cacd5"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.4ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
+Completed 302 Found in 4ms (ActiveRecord: 0.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-12 14:16:48 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Completed 200 OK in 2ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by ExampleController#restricted as HTML
 Authenticating with gds_sso strategy
 Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
-Started GET "/auth/gds/callback?code=459f1919bbce1a6fddb01cb06c645e16466d233dca1e006079d856f3ea72834a&state=51a3299c4bc40a81a9de747eccea3cd2e3f656016b5cc6b0" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
+Started GET "/auth/gds/callback?code=73b8b1d09e2cacf554292f82e4cd29ca4a82ddfc88963ed02a83816af38e5f51&state=53ef06cd013ccf779d19cab42c99e15631703d6c3e40e74d" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"459f1919bbce1a6fddb01cb06c645e16466d233dca1e006079d856f3ea72834a", "state"=>"51a3299c4bc40a81a9de747eccea3cd2e3f656016b5cc6b0"}
+  Parameters: {"code"=>"73b8b1d09e2cacf554292f82e4cd29ca4a82ddfc88963ed02a83816af38e5f51", "state"=>"53ef06cd013ccf779d19cab42c99e15631703d6c3e40e74d"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-   (0.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
 Completed 302 Found in 4ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
 Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
-Processing by ExampleController#restricted as HTML
-Authenticating with gds_sso strategy
-Completed   in 1ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-09 05:22:20 +0000
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "test@example-client.com"], ["LIMIT", 1]]
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 12]]
+   (5.6ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
 Authenticating with gds_sso strategy
-Completed   in 0ms (ActiveRecord: 0.0ms)
-Started GET "/auth/gds" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
-Started GET "/auth/gds/callback?code=ff39b5d2bc1d38ea11f69c668156fc9119772a163fa8186e9a245717b1f70211&state=45d5479b2a870b9f5838f7645c3be3cd6da1ed6e8b0b475a" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
+Completed   in 1ms (ActiveRecord: 0.1ms)
+Started GET "/auth/gds" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
+Started GET "/auth/gds/callback?code=42c26fd0aef0bf0ade1e701e9fdd5bbb31f98b8f05e86abba8279d6dfc5cc243&state=b568d95a82bfe8323baf2ac2320a6296a4983cc2b2e3b8d1" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by AuthenticationsController#callback as HTML
-  Parameters: {"code"=>"ff39b5d2bc1d38ea11f69c668156fc9119772a163fa8186e9a245717b1f70211", "state"=>"45d5479b2a870b9f5838f7645c3be3cd6da1ed6e8b0b475a"}
+  Parameters: {"code"=>"42c26fd0aef0bf0ade1e701e9fdd5bbb31f98b8f05e86abba8279d6dfc5cc243", "state"=>"b568d95a82bfe8323baf2ac2320a6296a4983cc2b2e3b8d1"}
 Authenticating with gds_sso strategy
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["LIMIT", 1]]
    (0.1ms)  begin transaction
    (0.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", false], ["id", 12]]
+   (5.2ms)  commit transaction
 Redirected to http://www.example-client.com/restricted
-Completed 302 Found in 3ms (ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-08 09:17:20 +0000
-Processing by ExampleController#restricted as HTML
-  User Load (0.3ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
-  Rendering text template
-  Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.3ms)
-Started GET "/restricted" for 127.0.0.1 at 2017-12-09 05:12:20 +0000
+Completed 302 Found in 10ms (ActiveRecord: 5.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2017-12-11 18:11:48 +0000
 Processing by ExampleController#restricted as HTML
   User Load (0.2ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? AND "users"."remotely_signed_out" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "integration-uid"], ["remotely_signed_out", false], ["LIMIT", 1]]
   Rendering text template
   Rendered text template (0.0ms)
-Completed 200 OK in 2ms (Views: 0.4ms | ActiveRecord: 0.2ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."email" = ? ORDER BY "users"."id" ASC LIMIT ?  [["email", "user@example.com"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions", "organisation_slug", "organisation_content_id", "disabled") VALUES (?, ?, ?, ?, ?, ?, ?)  [["name", "A Name"], ["uid", "asd"], ["email", "user@example.com"], ["permissions", "---\n- signin\n"], ["organisation_slug", "hmrc"], ["organisation_content_id", "67a2b78d-eee3-45b3-80e2-792e7f71cecc"], ["disabled", nil]]
-   (6.5ms)  commit transaction
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "asd"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-   (0.1ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d34992"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.2ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d34920"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.8ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d34992"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d34992"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  UPDATE "users" SET "email" = ?, "name" = ?, "permissions" = ?, "organisation_slug" = ?, "organisation_content_id" = ? WHERE "users"."id" = ?  [["email", "user@domain.com"], ["name", "Joshua Marshall"], ["permissions", "---\n- signin\n- new permission\n"], ["organisation_slug", "justice-league"], ["organisation_content_id", "aae1319e-5788-4677-998c-f1a53af528d0"], ["id", 3]]
-   (5.3ms)  commit transaction
-Completed 200 OK in 9ms (ActiveRecord: 5.6ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 3], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d36717"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.2ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d34089"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.9ms)  commit transaction
-Processing by Api::UserController#update as HTML
-  Parameters: {"uid"=>"a1s2d36717"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.2ms)
-Completed 403 Forbidden in 8ms (Views: 7.9ms | ActiveRecord: 0.0ms)
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d35029"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.3ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d33609"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.9ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"nonexistent-user"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "nonexistent-user"], ["LIMIT", 1]]
-Completed 200 OK in 1ms (ActiveRecord: 0.1ms)
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d38184"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.3ms)  commit transaction
-   (0.1ms)  begin transaction
-  SQL (0.1ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d38755"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (4.9ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d38184"}
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."uid" = ? ORDER BY "users"."id" ASC LIMIT ?  [["uid", "a1s2d38184"], ["LIMIT", 1]]
-   (0.0ms)  begin transaction
-  SQL (0.1ms)  UPDATE "users" SET "remotely_signed_out" = ? WHERE "users"."id" = ?  [["remotely_signed_out", true], ["id", 9]]
-   (5.2ms)  commit transaction
-Completed 200 OK in 8ms (ActiveRecord: 5.5ms)
-  User Load (0.1ms)  SELECT  "users".* FROM "users" WHERE "users"."id" = ? LIMIT ?  [["id", 9], ["LIMIT", 1]]
-   (0.1ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "Moshua Jarshall"], ["uid", "a1s2d31951"], ["email", "old@domain.com"], ["permissions", "---\n- signin\n"]]
-   (5.8ms)  commit transaction
-   (0.0ms)  begin transaction
-  SQL (0.2ms)  INSERT INTO "users" ("name", "uid", "email", "permissions") VALUES (?, ?, ?, ?)  [["name", "SSO Push user"], ["uid", "a1s2d32948"], ["email", "ssopushuser@legit.com"], ["permissions", "---\n- signin\n- user_update_permission\n"]]
-   (5.2ms)  commit transaction
-Processing by Api::UserController#reauth as HTML
-  Parameters: {"uid"=>"a1s2d31951"}
-  Rendering /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised
-  Rendered /var/lib/jenkins/workspace/gds-sso_master-7MNGHJETCC7W4ACW54GEWCZ7RU2E7EW7NZYEBGCKG2QG3YLPM53Q/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.0ms)
-Completed 403 Forbidden in 1ms (Views: 0.4ms | ActiveRecord: 0.0ms)
+Completed 200 OK in 2ms (Views: 0.3ms | ActiveRecord: 0.2ms)