gds-sso 5.0.0 → 6.0.0

data/README.md

@@ -38,16 +38,15 @@ It should have the following fields:
     string   "name"
     string   "email"
     string   "uid"
+    string   "organisation"
     array    "permissions"
-    array    "organisations"
     boolean  "remotely_signed_out", :default => false
 
 You also need to include `GDS::SSO::ControllerMethods` in your ApplicationController
 
-For ActiveRecord, you probably want to declare permissions and organisations as "serialized" like this:
+For ActiveRecord, you probably want to declare permissions as "serialized" like this:
 
     serialize :permissions, Array
-    serialize :organisations, Array
 
 
 ## Use in development mode

data/app/controllers/api/user_controller.rb

@@ -33,7 +33,7 @@ class Api::UserController < ApplicationController
           extra: {
             user: {
               permissions: user_json['permissions'],
-              organisations: user_json['organisations'],
+              organisation: user_json['organisation'],
             }
           })
     end

data/lib/gds-sso/user.rb

@@ -4,7 +4,7 @@ module GDS
   module SSO
     module User
       def included(base)
-        attr_accessible :uid, :email, :name, :permissions, :organisations, as: :oauth
+        attr_accessible :uid, :email, :name, :permissions, :organisation, as: :oauth
       end
 
       def has_permission?(permission)
@@ -19,7 +19,7 @@ module GDS
           'email'         => auth_hash['info']['email'],
           'name'          => auth_hash['info']['name'],
           'permissions'   => auth_hash['extra']['user']['permissions'],
-          'organisations' => auth_hash['extra']['user']['organisations'],
+          'organisation'  => auth_hash['extra']['user']['organisation'],
         }
       end
 

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "5.0.0"
+    VERSION = "6.0.0"
   end
 end

data/lib/gds-sso/warden_config.rb

@@ -110,7 +110,7 @@ Warden::Strategies.add(:gds_bearer_token) do
       'extra' => {
         'user' => {
           'permissions' => input['permissions'],
-          'organisations' => input['organisations'],
+          'organisation' => input['organisation'],
         }
       }
     }

data/spec/controller/api_user_controller_spec.rb

@@ -7,7 +7,7 @@ def user_update_json
       "name" => "Joshua Marshall",
       "email" => "user@domain.com",
       "permissions" => ["signin", "new permission"],
-      "organisations" => ["justice-league"]
+      "organisation" => "justice-league"
     }
   }.to_json
 end
@@ -60,8 +60,8 @@ describe Api::UserController, type: :controller do
       assert_equal "user@domain.com", @user_to_update.email
       expected_permissions = ["signin", "new permission"]
       assert_equal expected_permissions, @user_to_update.permissions
-      expected_organisations = ["justice-league"]
-      assert_equal expected_organisations, @user_to_update.organisations
+      expected_organisation = "justice-league"
+      assert_equal expected_organisation, @user_to_update.organisation
     end
   end
 

data/spec/internal/app/models/user.rb

@@ -2,7 +2,6 @@ class User < ActiveRecord::Base
   include GDS::SSO::User
 
   serialize :permissions, Array
-  serialize :organisations, Array
 
-  attr_accessible :uid, :email, :name, :permissions, :organisations, as: :oauth
+  attr_accessible :uid, :email, :name, :permissions, :organisation, as: :oauth
 end

data/spec/internal/db/schema.rb

@@ -5,6 +5,6 @@ ActiveRecord::Schema.define do
     t.string "email",       :null => false
     t.boolean "remotely_signed_out"
     t.text   "permissions"
-    t.text   "organisations"
+    t.string "organisation"
   end
 end

data/spec/internal/log/test.log

@@ -5803,3 +5803,2387 @@ Authenticating with gds_bearer_token strategy
 ' WHERE "users"."id" = 11
    (3.2ms)  commit transaction
 Completed 200 OK in 52.9ms (Views: 0.2ms | ActiveRecord: 15.2ms)
+Connecting to database specified by database.yml
+   (0.7ms)  select sqlite_version(*)
+   (5.4ms)  DROP TABLE "users"
+   (2.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisations" text) 
+   (0.1ms)  begin transaction
+  SQL (2.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37997"]]
+   (5.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38980"]]
+   (4.2ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d37997"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.9ms)
+Completed 403 Forbidden in 6.7ms (Views: 6.0ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38131"]]
+   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37630"]]
+   (4.2ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38131"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d38131' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisations" = '---
+- justice-league
+' WHERE "users"."id" = 3
+   (3.8ms)  commit transaction
+Completed 200 OK in 14.4ms (ActiveRecord: 4.3ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37589"]]
+   (3.8ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37011"]]
+   (3.4ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d37589"}
+Completed 403 Forbidden in 1.8ms (Views: 1.1ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39992"]]
+   (3.2ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34549"]]
+   (4.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38686"]]
+   (4.2ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36824"]]
+   (4.4ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38686"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d38686' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 9
+   (3.7ms)  commit transaction
+Completed 200 OK in 8.2ms (ActiveRecord: 4.2ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-01 10:22:44 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.1ms (Views: 1.7ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:44 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:44 +0000
+Started GET "/auth/gds/callback?code=19cef20cb286a2ff7b4de41c4a2856936a71efcfe97f62b74d1ac15b4fbd8a47&state=6b736556fc2c41f6d0bebcc1aeb10410b1415e756f9731b0" for 127.0.0.1 at 2013-11-01 10:22:45 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"19cef20cb286a2ff7b4de41c4a2856936a71efcfe97f62b74d1ac15b4fbd8a47", "state"=>"6b736556fc2c41f6d0bebcc1aeb10410b1415e756f9731b0"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisations", "--- []\n"], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (4.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.2ms (ActiveRecord: 8.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:45 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:45 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:45 +0000
+Started GET "/auth/gds/callback?code=3d3b93cfc9d21d02de05eabbf2b4202b18ec4cba473467c7a8899b44cb61a3ce&state=f24a2ec7e37c4511cc52e566a067a06125e84040b06e3ede" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"3d3b93cfc9d21d02de05eabbf2b4202b18ec4cba473467c7a8899b44cb61a3ce", "state"=>"f24a2ec7e37c4511cc52e566a067a06125e84040b06e3ede"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.1ms (ActiveRecord: 8.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Started GET "/auth/gds/callback?code=59aabfa79506ddc2bee2274974b612be2d4009de0e20b612c51e1e60128468f5&state=4944aac86f8eaecf0b17135970c398f11d140ca6d78b87f3" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"59aabfa79506ddc2bee2274974b612be2d4009de0e20b612c51e1e60128468f5", "state"=>"4944aac86f8eaecf0b17135970c398f11d140ca6d78b87f3"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.6ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.7ms (ActiveRecord: 7.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Started GET "/auth/gds/callback?code=f49cd39986b224f1c5a27707a75477cdfbc7d26ebc3599af0adb40905ab22fbf&state=9037843d24c2e9f4c1f6790829cd43c6da24d79a8ddef812" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f49cd39986b224f1c5a27707a75477cdfbc7d26ebc3599af0adb40905ab22fbf", "state"=>"9037843d24c2e9f4c1f6790829cd43c6da24d79a8ddef812"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.3ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 18.4ms (ActiveRecord: 7.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Started GET "/auth/gds/callback?code=08386c1211961032856d3e5acef34fbb4a52155a0d8893341417b60cc4b54924&state=6c66bcb259de8ac93d6bdc30eb50c90e024cb4a414612719" for 127.0.0.1 at 2013-11-01 10:22:46 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"08386c1211961032856d3e5acef34fbb4a52155a0d8893341417b60cc4b54924", "state"=>"6c66bcb259de8ac93d6bdc30eb50c90e024cb4a414612719"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (11.6ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 26.3ms (ActiveRecord: 16.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.6ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Started GET "/auth/gds/callback?code=59c38590490837d6a2d48b1a0ba2b464aed00a17e9bf25972ed1f73fb5040a91&state=d28cf0af4aad3eeab77870f6973633d8a7574983119703cd" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"59c38590490837d6a2d48b1a0ba2b464aed00a17e9bf25972ed1f73fb5040a91", "state"=>"d28cf0af4aad3eeab77870f6973633d8a7574983119703cd"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.7ms (ActiveRecord: 9.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.9ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.6ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Started GET "/auth/gds/callback?code=5d37a488b73eb055168e88714076e408407f6d15ad9fc67404c24e4d3cd98962&state=d21d673b2fa4350c231a7c68d19d89a9b2aa24bd1cac7721" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5d37a488b73eb055168e88714076e408407f6d15ad9fc67404c24e4d3cd98962", "state"=>"d21d673b2fa4350c231a7c68d19d89a9b2aa24bd1cac7721"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.9ms (ActiveRecord: 7.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Started GET "/auth/gds/callback?code=52d0ff9b3efe8abde60d3e9e6dfae8f04d67e78818c088bdc0dde0d75f0ba8c2&state=42d5515d89d93bcdc9f7f1c9487dc3749d448d91b8009d06" for 127.0.0.1 at 2013-11-01 10:22:47 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"52d0ff9b3efe8abde60d3e9e6dfae8f04d67e78818c088bdc0dde0d75f0ba8c2", "state"=>"42d5515d89d93bcdc9f7f1c9487dc3749d448d91b8009d06"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.0ms (ActiveRecord: 7.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 06:27:48 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-02 06:27:48 +0000
+Started GET "/auth/gds/callback?code=902097aabfd85b3c61d45350c2878d9528eb09549a158bf85134e0b64cad5ad0&state=879f144564d8bb18e8639558df153002f84db8e2a2f5098c" for 127.0.0.1 at 2013-11-02 06:27:48 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"902097aabfd85b3c61d45350c2878d9528eb09549a158bf85134e0b64cad5ad0", "state"=>"879f144564d8bb18e8639558df153002f84db8e2a2f5098c"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.9ms (ActiveRecord: 7.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 06:27:48 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Started GET "/auth/gds/callback?code=851fe8f0c7f5481b3e0a01a84fa76ab1690bf2d819941467a9bc3e2b95bfe84e&state=8e3d6b258ad1e3b1865946ad1042d688376e8b370124cec5" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"851fe8f0c7f5481b3e0a01a84fa76ab1690bf2d819941467a9bc3e2b95bfe84e", "state"=>"8e3d6b258ad1e3b1865946ad1042d688376e8b370124cec5"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.7ms (ActiveRecord: 8.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 06:17:48 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.3ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.8ms)  commit transaction
+Completed 200 OK in 41.6ms (Views: 0.2ms | ActiveRecord: 7.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 10:22:48 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.8ms)  commit transaction
+Completed 200 OK in 43.1ms (Views: 0.2ms | ActiveRecord: 7.7ms)
+Connecting to database specified by database.yml
+   (0.7ms)  select sqlite_version(*)
+   (28.4ms)  DROP TABLE "users"
+   (13.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisations" text) 
+   (0.1ms)  begin transaction
+  SQL (1.9ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39893"]]
+   (20.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35649"]]
+   (48.1ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39893"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 16.4ms (Views: 5.6ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31171"]]
+   (16.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37785"]]
+   (20.1ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d31171"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d31171' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisations" = '---
+- justice-league
+' WHERE "users"."id" = 3
+   (16.1ms)  commit transaction
+Completed 200 OK in 35.8ms (ActiveRecord: 16.5ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38789"]]
+   (17.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32212"]]
+   (13.2ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d38789"}
+Completed 403 Forbidden in 1.9ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3419"]]
+   (16.7ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38493"]]
+   (26.4ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.7ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31001"]]
+   (20.9ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33036"]]
+   (11.9ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d31001"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d31001' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 9
+   (21.4ms)  commit transaction
+Completed 200 OK in 53.9ms (ActiveRecord: 21.8ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-01 17:03:56 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:56 +0000
+Started GET "/auth/gds/callback?code=783e3b3d0a3ddb2cc1adbf81a4c5577d3151c5dfd5430c93ea92e11c41db39d0&state=d002c1df400ea2ab8550b77b474c5ab2727b475fdcd45a0c" for 127.0.0.1 at 2013-11-01 17:03:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"783e3b3d0a3ddb2cc1adbf81a4c5577d3151c5dfd5430c93ea92e11c41db39d0", "state"=>"d002c1df400ea2ab8550b77b474c5ab2727b475fdcd45a0c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisations", "--- []\n"], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (11.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 22.2ms (ActiveRecord: 14.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:57 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:57 +0000
+Started GET "/auth/gds/callback?code=73f1527c59d3efcac3eb14321cea19b5307e50feeb12e5348bf2732fe6f2d4a0&state=afe2ab60b511ef06e29654ad6cccdf7366254dd87003d5e0" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"73f1527c59d3efcac3eb14321cea19b5307e50feeb12e5348bf2732fe6f2d4a0", "state"=>"afe2ab60b511ef06e29654ad6cccdf7366254dd87003d5e0"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (5.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 22.0ms (ActiveRecord: 10.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Started GET "/auth/gds/callback?code=b58c58c80f8dbc7f27635cd17034fc7d8dd713c3b215f8527e4a3a1df9fd3f3d&state=5b700227a2439edeaf116c502d3f18c7a52a75a53410eeb5" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b58c58c80f8dbc7f27635cd17034fc7d8dd713c3b215f8527e4a3a1df9fd3f3d", "state"=>"5b700227a2439edeaf116c502d3f18c7a52a75a53410eeb5"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (14.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (12.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 37.8ms (ActiveRecord: 27.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:58 +0000
+Started GET "/auth/gds/callback?code=5561e9afe84d3e4c8ef3538e547cf682cb9fcf7278e7bd3635966a1dbe1262f6&state=902086e3bdfcad9629273f070fd8ff5a9ddc763ffee127d1" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5561e9afe84d3e4c8ef3538e547cf682cb9fcf7278e7bd3635966a1dbe1262f6", "state"=>"902086e3bdfcad9629273f070fd8ff5a9ddc763ffee127d1"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (2.6ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (13.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (12.1ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 45.3ms (ActiveRecord: 28.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.5ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Started GET "/auth/gds/callback?code=dbd272eb65fb3376d60373f9f25bc0f61b3dfe5d0f4a9d3cf708ece5c7fc2048&state=eb61df8ff7f3a508d16a83447e73dda12a11c423fb0a22ac" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"dbd272eb65fb3376d60373f9f25bc0f61b3dfe5d0f4a9d3cf708ece5c7fc2048", "state"=>"eb61df8ff7f3a508d16a83447e73dda12a11c423fb0a22ac"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (13.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (10.2ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 33.8ms (ActiveRecord: 23.7ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.5ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Started GET "/auth/gds/callback?code=f6c5de21f80bb0e6cb0b9ed3de22e27c53bf23cd06d409cfd16e3603a9bda6ed&state=da77b372e42e46ee3203caa239e4a5a0741496628b8d2d86" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f6c5de21f80bb0e6cb0b9ed3de22e27c53bf23cd06d409cfd16e3603a9bda6ed", "state"=>"da77b372e42e46ee3203caa239e4a5a0741496628b8d2d86"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (11.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (11.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 34.9ms (ActiveRecord: 23.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (8.7ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.8ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-01 17:03:59 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.5ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Started GET "/auth/gds/callback?code=10dea31bf59fc792dd100e38bc02e9e2917e319fe52ee5adc3b07a952c27176d&state=cb5c1358cdf199402249d647eb86b62fcb3fc76e4c880be2" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"10dea31bf59fc792dd100e38bc02e9e2917e319fe52ee5adc3b07a952c27176d", "state"=>"cb5c1358cdf199402249d647eb86b62fcb3fc76e4c880be2"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (8.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (5.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 25.5ms (ActiveRecord: 15.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Started GET "/auth/gds/callback?code=5970f14d47f292a3ffb28f516a506a2f17431fb50ccacc770bd49fc78591639f&state=4ef9e2e606da002f74837fccd49404d83d2ffddb31bdf082" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5970f14d47f292a3ffb28f516a506a2f17431fb50ccacc770bd49fc78591639f", "state"=>"4ef9e2e606da002f74837fccd49404d83d2ffddb31bdf082"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (12.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (9.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.5ms (ActiveRecord: 21.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:00 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 13:09:00 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-02 13:09:00 +0000
+Started GET "/auth/gds/callback?code=42e2cfed4ab7e8da0a33599bfd4cdcf757a96db59dd6ade5b15e50f05de4e4c7&state=34242a3bc5f857bcc3bb3628da94e405293e67b01fa3bd8c" for 127.0.0.1 at 2013-11-02 13:09:00 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"42e2cfed4ab7e8da0a33599bfd4cdcf757a96db59dd6ade5b15e50f05de4e4c7", "state"=>"34242a3bc5f857bcc3bb3628da94e405293e67b01fa3bd8c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (8.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (9.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 28.5ms (ActiveRecord: 18.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 13:09:00 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Started GET "/auth/gds/callback?code=7ef5aca29251a16e126031031bcca28cbbeda5d8d0a706cc838aa3969437c26c&state=cad5120c1e3a7966ef53334f646da574bbfb57123a3bc51d" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7ef5aca29251a16e126031031bcca28cbbeda5d8d0a706cc838aa3969437c26c", "state"=>"cad5120c1e3a7966ef53334f646da574bbfb57123a3bc51d"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.2ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (17.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (43.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 71.6ms (ActiveRecord: 61.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-02 12:59:01 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.3ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (13.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (10.7ms)  commit transaction
+Completed 200 OK in 65.7ms (Views: 0.2ms | ActiveRecord: 24.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-01 17:04:01 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (28.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (12.9ms)  commit transaction
+Completed 200 OK in 86.5ms (Views: 0.3ms | ActiveRecord: 41.8ms)
+Connecting to database specified by database.yml
+   (0.9ms)  select sqlite_version(*)
+   (27.9ms)  DROP TABLE "users"
+   (25.8ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisations" text) 
+   (0.1ms)  begin transaction
+  SQL (2.7ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33803"]]
+   (55.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37045"]]
+   (10.9ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33803"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (1.0ms)
+Completed 403 Forbidden in 11.9ms (Views: 11.0ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33573"]]
+   (19.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32330"]]
+   (18.6ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33573"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d33573' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisations" = '---
+- justice-league
+' WHERE "users"."id" = 3
+   (28.3ms)  commit transaction
+Completed 200 OK in 81.1ms (ActiveRecord: 28.9ms)
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32740"]]
+   (41.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d36164"]]
+   (4.0ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32740"}
+Completed 403 Forbidden in 1.9ms (Views: 1.1ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33633"]]
+   (7.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38848"]]
+   (10.7ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 41.5ms (ActiveRecord: 0.3ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisations", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3284"]]
+   (13.2ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisations", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34514"]]
+   (13.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3284"}
+  User Load (0.5ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3284' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 9
+   (21.2ms)  commit transaction
+Completed 200 OK in 38.6ms (ActiveRecord: 22.0ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 13:35:36 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.2ms (Views: 1.8ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:36 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 3.0ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:36 +0000
+Started GET "/auth/gds/callback?code=c924c344f013ac3797688378590a04ba1ae9e2535aa518175936391a25c4ac96&state=bf5e8ac85b6f4e19a6220542feed27e0c0f6feaf9ff2d540" for 127.0.0.1 at 2013-11-04 13:35:37 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"c924c344f013ac3797688378590a04ba1ae9e2535aa518175936391a25c4ac96", "state"=>"bf5e8ac85b6f4e19a6220542feed27e0c0f6feaf9ff2d540"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisations", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisations", "--- \n...\n"], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (11.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (9.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.0ms (ActiveRecord: 22.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.4ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Started GET "/auth/gds/callback?code=5149176e9f78cec19aa81c9ac198ce84cee8d96cfd4998df9b55408636975691&state=eff59d764e0b66133a525e95067b7b1913d40dcadb9c59c6" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5149176e9f78cec19aa81c9ac198ce84cee8d96cfd4998df9b55408636975691", "state"=>"eff59d764e0b66133a525e95067b7b1913d40dcadb9c59c6"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 23.6ms (ActiveRecord: 9.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Started GET "/auth/gds/callback?code=f5cbae037a6fcb5df817ba1efd0149b6b4bb8dcbfa385be7392b63fa1468e5e2&state=28c0e8113f6630b03ba8129a04d9cb967a135143533537d6" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f5cbae037a6fcb5df817ba1efd0149b6b4bb8dcbfa385be7392b63fa1468e5e2", "state"=>"28c0e8113f6630b03ba8129a04d9cb967a135143533537d6"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (8.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 32.3ms (ActiveRecord: 19.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:38 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.9ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Started GET "/auth/gds/callback?code=db845a35036e072dc94380573da97d77ccfc53fcdee56ec85522aafc858fa697&state=5ad21eef2d1fdf156d367783f02edfde0e539cb1b1fd8856" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"db845a35036e072dc94380573da97d77ccfc53fcdee56ec85522aafc858fa697", "state"=>"5ad21eef2d1fdf156d367783f02edfde0e539cb1b1fd8856"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.4ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (15.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (10.3ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 82.1ms (ActiveRecord: 26.8ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Started GET "/auth/gds/callback?code=46977a946d0f03f12a04708b5be78f8466e950fb5fbb165746b78419eb3bccd1&state=5cf8b2dacc6ad26554852baf90d6c58bf2bf98f06eba17e3" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"46977a946d0f03f12a04708b5be78f8466e950fb5fbb165746b78419eb3bccd1", "state"=>"5cf8b2dacc6ad26554852baf90d6c58bf2bf98f06eba17e3"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (11.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 38.8ms (ActiveRecord: 23.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:39 +0000
+Started GET "/auth/gds/callback?code=5304ce7d9ae885a8717df3df14a9fcde3edd44aa45a86fcf7d1834631b66ec0c&state=b850762192cd08f0e41161d3d74af73b1467fb89e82b3890" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5304ce7d9ae885a8717df3df14a9fcde3edd44aa45a86fcf7d1834631b66ec0c", "state"=>"b850762192cd08f0e41161d3d74af73b1467fb89e82b3890"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 21.5ms (ActiveRecord: 7.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.4ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 3.5ms (Views: 2.5ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.5ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Started GET "/auth/gds/callback?code=5100a93cc32eab9e5e894b0e3d13b3f1bcb9c7b44152ae5de207f63bd6e31c01&state=f7adfa7f325a9164b7e6967889c9b8b1ccf465d266980501" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5100a93cc32eab9e5e894b0e3d13b3f1bcb9c7b44152ae5de207f63bd6e31c01", "state"=>"f7adfa7f325a9164b7e6967889c9b8b1ccf465d266980501"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (2.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 19.6ms (ActiveRecord: 7.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:40 +0000
+Started GET "/auth/gds/callback?code=ad65be581d1ab8a638a5057bd5f7a70cbc31e7205f9091a35890c32474eb2ff7&state=ccd2d6677c3bcd6f57a37131b6ef0383d6a2d3ef1ab3bfef" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ad65be581d1ab8a638a5057bd5f7a70cbc31e7205f9091a35890c32474eb2ff7", "state"=>"ccd2d6677c3bcd6f57a37131b6ef0383d6a2d3ef1ab3bfef"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.1ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (21.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 49.0ms (ActiveRecord: 34.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.5ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 09:40:41 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 09:40:41 +0000
+Started GET "/auth/gds/callback?code=905ab228cd06f1d95893d1181cc714485e08ad20487804643a9d0d2b76c0982f&state=df4a40e9724487352946017ef3f2d81ec8f97ef3afa0cf8e" for 127.0.0.1 at 2013-11-05 09:40:41 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"905ab228cd06f1d95893d1181cc714485e08ad20487804643a9d0d2b76c0982f", "state"=>"df4a40e9724487352946017ef3f2d81ec8f97ef3afa0cf8e"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 22.1ms (ActiveRecord: 9.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 09:40:41 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Started GET "/auth/gds/callback?code=2ae6829fccff7ea7f3bcb1d30ac4a3184e863b28f841574197ce2c6be87ef384&state=aae51d3ec744ed1b721da7e44270017e30deb4470dba4ec5" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2ae6829fccff7ea7f3bcb1d30ac4a3184e863b28f841574197ce2c6be87ef384", "state"=>"aae51d3ec744ed1b721da7e44270017e30deb4470dba4ec5"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.5ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (11.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 104.1ms (ActiveRecord: 26.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 09:30:41 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:41 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 9.5ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 13:35:42 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Completed 200 OK in 93.0ms (Views: 0.3ms | ActiveRecord: 8.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 13:35:42 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "organisations" = '--- 
+...
+', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+', "organisations" = '--- []
+' WHERE "users"."id" = 11
+   (3.0ms)  commit transaction
+Completed 200 OK in 64.6ms (Views: 0.3ms | ActiveRecord: 8.1ms)
+Connecting to database specified by database.yml
+   (9.4ms)  select sqlite_version(*)
+   (18.4ms)  DROP TABLE "users"
+   (22.4ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) 
+   (0.1ms)  begin transaction
+  SQL (2.0ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33738"]]
+   (15.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38282"]]
+   (36.1ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33738"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 6.5ms (Views: 5.8ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37717"]]
+   (30.0ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.3ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35830"]]
+   (14.7ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d37717"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d37717' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+   (49.3ms)  commit transaction
+Completed 200 OK in 68.0ms (ActiveRecord: 49.7ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37217"]]
+   (17.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38341"]]
+   (13.0ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d37217"}
+Completed 403 Forbidden in 47.2ms (Views: 46.5ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32075"]]
+   (12.9ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37620"]]
+   (13.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32086"]]
+   (19.1ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37436"]]
+   (9.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d32086"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d32086' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (11.0ms)  commit transaction
+Completed 200 OK in 38.7ms (ActiveRecord: 11.5ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 14:23:21 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:21 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:21 +0000
+Started GET "/auth/gds/callback?code=da384a83b3a6568061805b1947fb87be96e8d711b420bc3b3c23b37dacccc0e8&state=8b6cacbd94812266a8bb4f3bb07fdeb88ea5716f6b41632f" for 127.0.0.1 at 2013-11-04 14:23:22 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"da384a83b3a6568061805b1947fb87be96e8d711b420bc3b3c23b37dacccc0e8", "state"=>"8b6cacbd94812266a8bb4f3bb07fdeb88ea5716f6b41632f"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (14.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (32.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 53.4ms (ActiveRecord: 47.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Started GET "/auth/gds/callback?code=247818afb618c42c890acf505dbc83052d563755822ae81615b282b13ed33f4b&state=c31cc2876a5a4a9d57be33616d0e0493868a5f3d62913c5c" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"247818afb618c42c890acf505dbc83052d563755822ae81615b282b13ed33f4b", "state"=>"c31cc2876a5a4a9d57be33616d0e0493868a5f3d62913c5c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (20.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (28.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 56.7ms (ActiveRecord: 49.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:23 +0000
+Started GET "/auth/gds/callback?code=daca9d6df42699141cc6665c2458b028c34abc52a7e2dcae192d0d7cc3158e70&state=88ba47da9f4b0e4465d99f06725693a78355167162261edd" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"daca9d6df42699141cc6665c2458b028c34abc52a7e2dcae192d0d7cc3158e70", "state"=>"88ba47da9f4b0e4465d99f06725693a78355167162261edd"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 21.0ms (ActiveRecord: 14.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Started GET "/auth/gds/callback?code=864332b280784a1ef4ed023971a5c8a1dd779eec99d413c5a9aaf761a84be0d9&state=7ea9cf955c5b3dfc549eb228c874a65d58d8d6d737d3ad7f" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"864332b280784a1ef4ed023971a5c8a1dd779eec99d413c5a9aaf761a84be0d9", "state"=>"7ea9cf955c5b3dfc549eb228c874a65d58d8d6d737d3ad7f"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (6.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 18.7ms (ActiveRecord: 11.3ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Started GET "/auth/gds/callback?code=9951b87914ada58bdd252f5f14a0efbdae3827be977054f5110f4a12445fa3c0&state=6f069f6bbc4e38517ae69ae5bfbe1c4ade501f221ff552b0" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"9951b87914ada58bdd252f5f14a0efbdae3827be977054f5110f4a12445fa3c0", "state"=>"6f069f6bbc4e38517ae69ae5bfbe1c4ade501f221ff552b0"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.3ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 16.1ms (ActiveRecord: 9.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.6ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:24 +0000
+Started GET "/auth/gds/callback?code=210a8e074512d55eee47fea15f4b6c612256fec897b90c1a30ef75dc965baa35&state=8fb1a5502e6fe5c4f6787f234c1d2b0eae7712ed0c0ae778" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"210a8e074512d55eee47fea15f4b6c612256fec897b90c1a30ef75dc965baa35", "state"=>"8fb1a5502e6fe5c4f6787f234c1d2b0eae7712ed0c0ae778"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (28.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (2.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 39.4ms (ActiveRecord: 31.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.6ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Started GET "/auth/gds/callback?code=2761bd4479a57e1217615dfd4c28e36cde7aa992997e995c9bda84ada2e6cd6f&state=4a6dd02c3b775097004818347ab9500ff47899d4bb0488a7" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2761bd4479a57e1217615dfd4c28e36cde7aa992997e995c9bda84ada2e6cd6f", "state"=>"4a6dd02c3b775097004818347ab9500ff47899d4bb0488a7"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 26.8ms (ActiveRecord: 20.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:25 +0000
+Started GET "/auth/gds/callback?code=21b7e3cae3a2a8b24fdec3280ffc7327db7936ada9cceb3c7e5c4f4822efe121&state=96bfe5894629a149f4e37707ed7375e46ecd945783011233" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"21b7e3cae3a2a8b24fdec3280ffc7327db7936ada9cceb3c7e5c4f4822efe121", "state"=>"96bfe5894629a149f4e37707ed7375e46ecd945783011233"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 15.5ms (ActiveRecord: 8.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:28:26 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 10:28:26 +0000
+Started GET "/auth/gds/callback?code=b44b70a671e88bd1373c5534014182b88e68f7934ca2c3cda825e0d2d98ba9db&state=6cfd3f8babc973e1d0a71334ab45cf033260745449163083" for 127.0.0.1 at 2013-11-05 10:28:26 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b44b70a671e88bd1373c5534014182b88e68f7934ca2c3cda825e0d2d98ba9db", "state"=>"6cfd3f8babc973e1d0a71334ab45cf033260745449163083"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 15.6ms (ActiveRecord: 8.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:28:26 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Started GET "/auth/gds/callback?code=ab5ba2021af36a6305da1ad78d21b1b82d6d2dcfe7eb1379305c6ea87d0b1a01&state=07e9222d213b0674a99b9fcc0fb181e92617cda41884df7b" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ab5ba2021af36a6305da1ad78d21b1b82d6d2dcfe7eb1379305c6ea87d0b1a01", "state"=>"07e9222d213b0674a99b9fcc0fb181e92617cda41884df7b"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 30.0ms (ActiveRecord: 22.5ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:18:26 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 6.7ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:23:26 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Completed 200 OK in 39.0ms (Views: 0.2ms | ActiveRecord: 9.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:23:27 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (42.8ms)  commit transaction
+Completed 200 OK in 80.4ms (Views: 0.4ms | ActiveRecord: 47.7ms)
+Connecting to database specified by database.yml
+   (0.8ms)  select sqlite_version(*)
+   (18.3ms)  DROP TABLE "users"
+   (21.9ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) 
+   (0.1ms)  begin transaction
+  SQL (2.0ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39346"]]
+   (20.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37064"]]
+   (16.2ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d39346"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 16.5ms (Views: 15.8ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38640"]]
+   (17.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3740"]]
+   (38.9ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38640"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d38640' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+   (21.4ms)  commit transaction
+Completed 200 OK in 29.8ms (ActiveRecord: 21.9ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39093"]]
+   (49.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34529"]]
+   (16.8ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d39093"}
+Completed 403 Forbidden in 1.8ms (Views: 1.1ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34274"]]
+   (19.6ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37696"]]
+   (11.2ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3396"]]
+   (16.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32083"]]
+   (42.6ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3396"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3396' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (11.8ms)  commit transaction
+Completed 200 OK in 16.2ms (ActiveRecord: 12.2ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 14:24:12 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.4ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:12 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:13 +0000
+Started GET "/auth/gds/callback?code=219c381b0dd7dcc72d8b94f4953d71fad898e19ae9d90e5301b3c61d00257e61&state=e03254afa893379eba7af9b7067aa707d54f5c724bb3a717" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"219c381b0dd7dcc72d8b94f4953d71fad898e19ae9d90e5301b3c61d00257e61", "state"=>"e03254afa893379eba7af9b7067aa707d54f5c724bb3a717"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (11.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 25.8ms (ActiveRecord: 19.7ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Started GET "/auth/gds/callback?code=fc2a55617dfe4c3206bbd851a6caf1fa38b6ef9cb2827be0443339deb244460d&state=87b5d514f91bf94f732b54325bcfbc28d1b84052467a8b8b" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"fc2a55617dfe4c3206bbd851a6caf1fa38b6ef9cb2827be0443339deb244460d", "state"=>"87b5d514f91bf94f732b54325bcfbc28d1b84052467a8b8b"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (6.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.9ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 18.5ms (ActiveRecord: 11.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:14 +0000
+Started GET "/auth/gds/callback?code=d595be836241aa90bc659966e950280f6e8eee76a8846175d37f34741495e586&state=f9954eae5503c4ab937f1d633a67d8c09dfefb6f332cb9f9" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d595be836241aa90bc659966e950280f6e8eee76a8846175d37f34741495e586", "state"=>"f9954eae5503c4ab937f1d633a67d8c09dfefb6f332cb9f9"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 54.1ms (ActiveRecord: 27.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Started GET "/auth/gds/callback?code=af11401593acbe2836a7f30ed7091a19ac4c452f16cb5d5af6ba6c14d3908aa2&state=11cc137198feb6cc9164d3398a2ae1b8021ef2f202b4e8bf" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"af11401593acbe2836a7f30ed7091a19ac4c452f16cb5d5af6ba6c14d3908aa2", "state"=>"11cc137198feb6cc9164d3398a2ae1b8021ef2f202b4e8bf"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (6.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.0ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 18.2ms (ActiveRecord: 10.9ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.6ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:15 +0000
+Started GET "/auth/gds/callback?code=f8992fda1490a2052aadd3c723f40012ae84b99a4cd05606421b3c02a4f347b2&state=2f4776f9fdd2dd9b81d40782e9bf450b748b84b20de9d522" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f8992fda1490a2052aadd3c723f40012ae84b99a4cd05606421b3c02a4f347b2", "state"=>"2f4776f9fdd2dd9b81d40782e9bf450b748b84b20de9d522"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 16.5ms (ActiveRecord: 9.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Started GET "/auth/gds/callback?code=7689fcb22b3bd01f5de29ec4d599bf80e429ce99dbe5b5456d0d14c42f9a09cd&state=6a5f8bd6163c9a71e94ce109f821ada439a2c203973568bf" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7689fcb22b3bd01f5de29ec4d599bf80e429ce99dbe5b5456d0d14c42f9a09cd", "state"=>"6a5f8bd6163c9a71e94ce109f821ada439a2c203973568bf"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.2ms (ActiveRecord: 9.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 3.1ms (Views: 2.0ms | ActiveRecord: 0.2ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.5ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Started GET "/auth/gds/callback?code=8711c02afc7af6dc96b9571a0dc66013be7218a0d04f1d2715284faa2fe22a8a&state=76202f0df8abf11b94352d0a43d8f155f168ec547137df2d" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8711c02afc7af6dc96b9571a0dc66013be7218a0d04f1d2715284faa2fe22a8a", "state"=>"76202f0df8abf11b94352d0a43d8f155f168ec547137df2d"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 15.6ms (ActiveRecord: 7.9ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.5ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:16 +0000
+Started GET "/auth/gds/callback?code=2b6503f62e0d66f9d1f7170db46b11f1108d935438a6d4adf592ec2188219390&state=31502692a82b4a13360950ce8f8dc19d6e92192a5e4963d2" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"2b6503f62e0d66f9d1f7170db46b11f1108d935438a6d4adf592ec2188219390", "state"=>"31502692a82b4a13360950ce8f8dc19d6e92192a5e4963d2"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (6.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.9ms (ActiveRecord: 10.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:29:17 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 10:29:17 +0000
+Started GET "/auth/gds/callback?code=984a073012994ba86b45e73b612d34a30ecea3ec2c6dc3e7a308879077190748&state=7439342f1afd76e73924095793c10d514af78213e2a10d21" for 127.0.0.1 at 2013-11-05 10:29:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"984a073012994ba86b45e73b612d34a30ecea3ec2c6dc3e7a308879077190748", "state"=>"7439342f1afd76e73924095793c10d514af78213e2a10d21"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 14.1ms (ActiveRecord: 7.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:29:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Started GET "/auth/gds/callback?code=c4bfb4d4fe26e2ff3df2e8832fc26cbd9608f0dd53d145b81fd2633307d71911&state=1a557cb732e8355c3c458dae7fe83075a6f588cffe583f0a" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"c4bfb4d4fe26e2ff3df2e8832fc26cbd9608f0dd53d145b81fd2633307d71911", "state"=>"1a557cb732e8355c3c458dae7fe83075a6f588cffe583f0a"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (15.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 35.2ms (ActiveRecord: 27.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.6ms (Views: 0.3ms | ActiveRecord: 0.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:19:17 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.8ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:24:17 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (11.3ms)  commit transaction
+Completed 200 OK in 60.2ms (Views: 0.2ms | ActiveRecord: 25.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:24:18 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (41.2ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (2.6ms)  commit transaction
+Completed 200 OK in 75.8ms (Views: 0.2ms | ActiveRecord: 44.3ms)
+Connecting to database specified by database.yml
+   (0.7ms)  select sqlite_version(*)
+   (45.6ms)  DROP TABLE "users"
+   (15.5ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation" varchar(255)) 
+   (0.1ms)  begin transaction
+  SQL (2.1ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33091"]]
+   (22.5ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39462"]]
+   (10.9ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d33091"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.7ms)
+Completed 403 Forbidden in 6.3ms (Views: 5.6ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d34490"]]
+   (52.8ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33757"]]
+   (30.8ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d34490"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d34490' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.3ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation" = 'justice-league' WHERE "users"."id" = 3
+   (11.5ms)  commit transaction
+Completed 200 OK in 93.5ms (ActiveRecord: 12.0ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3369"]]
+   (21.4ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31828"]]
+   (13.7ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3369"}
+Completed 403 Forbidden in 1.8ms (Views: 1.1ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39171"]]
+   (13.9ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d31827"]]
+   (12.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.1ms (ActiveRecord: 0.2ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3327"]]
+   (12.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d3756"]]
+   (9.5ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d3327"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d3327' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (37.3ms)  commit transaction
+Completed 200 OK in 41.8ms (ActiveRecord: 37.7ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-04 14:25:10 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 1.7ms (Views: 1.3ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:10 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.4ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:10 +0000
+Started GET "/auth/gds/callback?code=195daa2c352cfb52b5e2363712f46cb744afb25a89bf2d657af3ff306e17abbb&state=d9c168d36fd143c46ec076ad1f4b7ca9e2665ef3a786a337" for 127.0.0.1 at 2013-11-04 14:25:11 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"195daa2c352cfb52b5e2363712f46cb744afb25a89bf2d657af3ff306e17abbb", "state"=>"d9c168d36fd143c46ec076ad1f4b7ca9e2665ef3a786a337"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (90.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (66.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 164.2ms (ActiveRecord: 157.3ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:11 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Started GET "/auth/gds/callback?code=418a64021bdea90743bbc15f4dbde9e85ab3a481abd22cef768bf2e02db454ad&state=07f1b3019b1b460802eef4bcf44f1085ee4ecab541dd0cb7" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"418a64021bdea90743bbc15f4dbde9e85ab3a481abd22cef768bf2e02db454ad", "state"=>"07f1b3019b1b460802eef4bcf44f1085ee4ecab541dd0cb7"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.5ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (12.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 35.3ms (ActiveRecord: 27.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Started GET "/auth/gds/callback?code=1b6c2e84095fbf1ee2cf4dc1602b0410927ee58b0d527371522946b9551b5676&state=e51c8ee2d9f788920ff81837b5528c8473cd2a478695af9f" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"1b6c2e84095fbf1ee2cf4dc1602b0410927ee58b0d527371522946b9551b5676", "state"=>"e51c8ee2d9f788920ff81837b5528c8473cd2a478695af9f"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 26.7ms (ActiveRecord: 19.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:12 +0000
+Started GET "/auth/gds/callback?code=3ee1805861eccebbf41264289d92581823668d617880925a5603ac8bf56b67b2&state=488a7d046b1c964ede5d26bbb75df49eb27d255f5da2151a" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"3ee1805861eccebbf41264289d92581823668d617880925a5603ac8bf56b67b2", "state"=>"488a7d046b1c964ede5d26bbb75df49eb27d255f5da2151a"}
+Authenticating with gds_sso strategy
+  User Load (13.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (8.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (2.7ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 32.4ms (ActiveRecord: 25.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.6ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Started GET "/auth/gds/callback?code=7443bac33f0a3d0ac195e532111bce7fe0dba5c155a161cb477ab19d577c1302&state=d7f5341425edae58d9420ac8036c06eeac54debe414665e1" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7443bac33f0a3d0ac195e532111bce7fe0dba5c155a161cb477ab19d577c1302", "state"=>"d7f5341425edae58d9420ac8036c06eeac54debe414665e1"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (21.8ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 33.4ms (ActiveRecord: 26.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.7ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Started GET "/auth/gds/callback?code=5b7bc32cc87b781101e06881b833ebf9af55a8ef017be9f0b5abbd763b690fe5&state=4a3d5484b0d9e338c299d20dc972e7ade3d2ad6ae6f84b5b" for 127.0.0.1 at 2013-11-04 14:25:13 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5b7bc32cc87b781101e06881b833ebf9af55a8ef017be9f0b5abbd763b690fe5", "state"=>"4a3d5484b0d9e338c299d20dc972e7ade3d2ad6ae6f84b5b"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (26.7ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 46.2ms (ActiveRecord: 38.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.0ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.7ms (Views: 1.9ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Started GET "/auth/gds/callback?code=324df068451e6d2c448759a59b92b39c5f65f48c77e694214d86e867b3cf4659&state=9425790bb76ea873961afb695285d44280f1a1d082a4e0d8" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"324df068451e6d2c448759a59b92b39c5f65f48c77e694214d86e867b3cf4659", "state"=>"9425790bb76ea873961afb695285d44280f1a1d082a4e0d8"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.2ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (7.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 28.9ms (ActiveRecord: 21.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.0ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Started GET "/auth/gds/callback?code=ab614bba8928fb33c709a64dbd786af4cbb82c9f0297fdadbfcaf35fb19d6cce&state=b2451a53b894bcac260ca119c19bb213e803a4d50d498216" for 127.0.0.1 at 2013-11-04 14:25:14 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"ab614bba8928fb33c709a64dbd786af4cbb82c9f0297fdadbfcaf35fb19d6cce", "state"=>"b2451a53b894bcac260ca119c19bb213e803a4d50d498216"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (16.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.1ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 38.3ms (ActiveRecord: 30.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:30:15 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-05 10:30:15 +0000
+Started GET "/auth/gds/callback?code=7f6f4e8b7a424b719314c333f47355b079d19dd961c2075ebd14ffad3589b697&state=cb4fd205ee3c9793db3faa693e9401de0650eaf7b5eafb2c" for 127.0.0.1 at 2013-11-05 10:30:15 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7f6f4e8b7a424b719314c333f47355b079d19dd961c2075ebd14ffad3589b697", "state"=>"cb4fd205ee3c9793db3faa693e9401de0650eaf7b5eafb2c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (25.4ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (10.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 43.5ms (ActiveRecord: 36.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:30:15 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Started GET "/auth/gds/callback?code=5daab3185d524d158668bdda6867cba393f7b0c013fb446985a9137e5eb67e92&state=d05cc105225eabc67158e6d525b91c45530f3ebecb4ab7e2" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5daab3185d524d158668bdda6867cba393f7b0c013fb446985a9137e5eb67e92", "state"=>"d05cc105225eabc67158e6d525b91c45530f3ebecb4ab7e2"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.4ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.1ms (ActiveRecord: 9.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-05 10:20:15 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.2ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 6.5ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-04 14:25:15 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (9.1ms)  commit transaction
+Completed 200 OK in 73.9ms (Views: 0.2ms | ActiveRecord: 24.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-04 14:25:16 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (14.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (13.3ms)  commit transaction
+Completed 200 OK in 91.9ms (Views: 0.2ms | ActiveRecord: 28.7ms)