gds-sso 7.0.0 → 8.0.0

data/app/controllers/api/user_controller.rb

@@ -1,4 +1,6 @@
-class Api::UserController < ApplicationController
+class Api::UserController < ActionController::Base
+  include GDS::SSO::ControllerMethods
+
   skip_before_filter :verify_authenticity_token
   before_filter :authenticate_user!
   before_filter :require_user_update_permission

data/app/controllers/authentications_controller.rb

@@ -1,4 +1,6 @@
-class AuthenticationsController < ApplicationController
+class AuthenticationsController < ActionController::Base
+  include GDS::SSO::ControllerMethods
+
   before_filter :authenticate_user!, :only => :callback
   skip_before_filter :require_signin_permission!
   layout false

data/lib/gds-sso/version.rb

@@ -1,5 +1,5 @@
 module GDS
   module SSO
-    VERSION = "7.0.0"
+    VERSION = "8.0.0"
   end
 end

data/spec/internal/log/test.log

@@ -10479,3 +10479,385 @@ Authenticating with gds_bearer_token strategy
 ' WHERE "users"."id" = 11
    (5.4ms)  commit transaction
 Completed 200 OK in 59.7ms (Views: 0.2ms | ActiveRecord: 14.3ms)
+Connecting to database specified by database.yml
+   (0.8ms)  select sqlite_version(*)
+   (9.1ms)  DROP TABLE "users"
+   (3.7ms)  CREATE TABLE "users" ("id" INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL, "name" varchar(255) NOT NULL, "uid" varchar(255) NOT NULL, "email" varchar(255) NOT NULL, "remotely_signed_out" boolean, "permissions" text, "organisation_slug" varchar(255)) 
+   (0.1ms)  begin transaction
+  SQL (2.0ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d30"]]
+   (4.3ms)  commit transaction
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33399"]]
+   (3.3ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d30"}
+  Rendered /home/jenkins/workspace/govuk_gds_sso/app/views/authorisations/unauthorised.html.erb within layouts/unauthorised (0.8ms)
+Completed 403 Forbidden in 7.3ms (Views: 6.7ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d38521"]]
+   (3.7ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35691"]]
+   (5.6ms)  commit transaction
+Processing by Api::UserController#update as HTML
+  Parameters: {"uid"=>"a1s2d38521"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d38521' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "email" = 'user@domain.com', "name" = 'Joshua Marshall', "permissions" = '---
+- signin
+- new permission
+', "organisation_slug" = 'justice-league' WHERE "users"."id" = 3
+   (5.1ms)  commit transaction
+Completed 200 OK in 13.7ms (ActiveRecord: 5.6ms)
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 3]]
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d33671"]]
+   (4.9ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d32493"]]
+   (3.7ms)  commit transaction
+WARNING: Can't mass-assign protected attributes: uid, name, permissions
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d33671"}
+Completed 403 Forbidden in 1.6ms (Views: 1.0ms | ActiveRecord: 0.0ms)
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35466"]]
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d35920"]]
+   (3.8ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"nonexistent-user"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'nonexistent-user' LIMIT 1
+Completed 200 OK in 1.0ms (ActiveRecord: 0.2ms)
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "old@domain.com"], ["name", "Moshua Jarshall"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "a1s2d37861"]]
+   (3.2ms)  commit transaction
+   (0.0ms)  begin transaction
+  SQL (0.1ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "ssopushuser@legit.com"], ["name", "SSO Push user"], ["organisation_slug", nil], ["permissions", "---\n- signin\n- user_update_permission\n"], ["remotely_signed_out", nil], ["uid", "a1s2d39982"]]
+   (3.7ms)  commit transaction
+Processing by Api::UserController#reauth as HTML
+  Parameters: {"uid"=>"a1s2d37861"}
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'a1s2d37861' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 9
+   (2.8ms)  commit transaction
+Completed 200 OK in 7.0ms (ActiveRecord: 3.2ms)
+  User Load (0.5ms)  SELECT "users".* FROM "users" WHERE "users"."id" = ? LIMIT 1  [["id", 9]]
+Started GET "/" for 127.0.0.1 at 2013-11-20 14:30:54 +0000
+Processing by ExampleController#index as HTML
+Completed 200 OK in 2.0ms (Views: 1.6ms | ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:54 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 2.5ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:54 +0000
+Started GET "/auth/gds/callback?code=94b49da83ee8c04736957844427d13597b8d95e4467a2f62c1cca8b7b3e2d958&state=d50fb63941cae6102dcca09f21637cf363b2a7d34691668f" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"94b49da83ee8c04736957844427d13597b8d95e4467a2f62c1cca8b7b3e2d958", "state"=>"d50fb63941cae6102dcca09f21637cf363b2a7d34691668f"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+  SQL (0.2ms)  INSERT INTO "users" ("email", "name", "organisation_slug", "permissions", "remotely_signed_out", "uid") VALUES (?, ?, ?, ?, ?, ?)  [["email", "test@example-client.com"], ["name", "Test User"], ["organisation_slug", nil], ["permissions", "---\n- signin\n"], ["remotely_signed_out", nil], ["uid", "integration-uid"]]
+   (8.3ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.6ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 52.7ms (ActiveRecord: 13.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.3ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Started GET "/auth/gds/callback?code=f2b470e4474e0181a0d85640e7828557f309da794e20e0d6abc192506752b00e&state=c689f6cf3ec2f43f3a049b488355be3040c299fb675218e8" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"f2b470e4474e0181a0d85640e7828557f309da794e20e0d6abc192506752b00e", "state"=>"c689f6cf3ec2f43f3a049b488355be3040c299fb675218e8"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.2ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.5ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 18.5ms (ActiveRecord: 11.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.2ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.1ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:55 +0000
+Started GET "/auth/gds/callback?code=a195d299fe7d3e4025a61bf323f93fa58883c1630541fe5809a467b273cbad8c&state=0d3fe1d91f57fe9c22ff7171434307e4f7e1d147510abd35" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"a195d299fe7d3e4025a61bf323f93fa58883c1630541fe5809a467b273cbad8c", "state"=>"0d3fe1d91f57fe9c22ff7171434307e4f7e1d147510abd35"}
+Authenticating with gds_sso strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.9ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.3ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 15.9ms (ActiveRecord: 8.8ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.6ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Started GET "/auth/gds/callback?code=d58c2e091aa4ec965597c72cbeceede0f1af55e812553a504d38a0835ad0265f&state=1bd40a98ca256e04b18b341bdc66136aaa4da75ae9d67239" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d58c2e091aa4ec965597c72cbeceede0f1af55e812553a504d38a0835ad0265f", "state"=>"1bd40a98ca256e04b18b341bdc66136aaa4da75ae9d67239"}
+Authenticating with gds_sso strategy
+  User Load (0.3ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.0ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.9ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 16.4ms (ActiveRecord: 8.5ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 3.0ms (Views: 0.4ms | ActiveRecord: 0.1ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Started GET "/auth/gds/callback?code=b342dd186aa423d41e9879699f944a60e8300db31c4f233636fbccc67c1f43c6&state=12b16eac46d26a58dc292961bf8cc5da00393bc2f6f9a158" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"b342dd186aa423d41e9879699f944a60e8300db31c4f233636fbccc67c1f43c6", "state"=>"12b16eac46d26a58dc292961bf8cc5da00393bc2f6f9a158"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.3ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Redirected to http://www.example-client.com/this_requires_signin_permission
+Completed 302 Found in 15.2ms (ActiveRecord: 8.2ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#this_requires_signin_permission as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 2.6ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:56 +0000
+Started GET "/auth/gds/callback?code=e5757e3e1de4fb1bd706b7c8fe06dfea4ce87e71439ec2cc07187ca2d26510c8&state=ab2367a1ec78cbda089f19d9e838ce40effc7d861db5270e" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"e5757e3e1de4fb1bd706b7c8fe06dfea4ce87e71439ec2cc07187ca2d26510c8", "state"=>"ab2367a1ec78cbda089f19d9e838ce40effc7d861db5270e"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (2.8ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 14.5ms (ActiveRecord: 7.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "remotely_signed_out" = 't', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (2.8ms)  commit transaction
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Filter chain halted as :authenticate_user! rendered or redirected
+Completed 403 Forbidden in 2.6ms (Views: 1.8ms | ActiveRecord: 0.1ms)
+Started GET "/auth/gds/sign_out" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by AuthenticationsController#sign_out as HTML
+Redirected to http://localhost:4567/users/sign_out
+Completed 302 Found in 0.4ms (ActiveRecord: 0.0ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Started GET "/auth/gds/callback?code=7d342ff8a9c155f28d5e0055b72e5b56a7b63719a844a4d1fa5b58c54862500f&state=7b3cb1f8e1ae130e198767fed75b4931fc33c9e892c400c1" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"7d342ff8a9c155f28d5e0055b72e5b56a7b63719a844a4d1fa5b58c54862500f", "state"=>"7b3cb1f8e1ae130e198767fed75b4931fc33c9e892c400c1"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (5.5ms)  commit transaction
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "remotely_signed_out" = 'f', "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.2ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 17.0ms (ActiveRecord: 9.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.3ms (Views: 0.4ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Started GET "/auth/gds/callback?code=d203fea4883f3cc90956568ba3f44e28c92f6640a534de4f98275457a5d2611b&state=9d4ba4ac0610ae4fdda47787dd1c0ae695600e37ac8f2838" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"d203fea4883f3cc90956568ba3f44e28c92f6640a534de4f98275457a5d2611b", "state"=>"9d4ba4ac0610ae4fdda47787dd1c0ae695600e37ac8f2838"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.1ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.7ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.1ms (ActiveRecord: 8.4ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-21 10:35:57 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-21 10:35:57 +0000
+Started GET "/auth/gds/callback?code=5d74961a5fcc8c4db4c1b8edb21df757906519f007d6d62a34aa4632f27a3fdc&state=559a10b186a8b7176ce23ce560574add41b0edc44f8bf837" for 127.0.0.1 at 2013-11-21 10:35:57 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"5d74961a5fcc8c4db4c1b8edb21df757906519f007d6d62a34aa4632f27a3fdc", "state"=>"559a10b186a8b7176ce23ce560574add41b0edc44f8bf837"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.4ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 14.2ms (ActiveRecord: 7.6ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-21 10:35:57 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.2ms | ActiveRecord: 0.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Processing by ExampleController#restricted as HTML
+Authenticating with gds_sso strategy
+Completed   in 0.2ms
+Started GET "/auth/gds" for 127.0.0.1 at 2013-11-20 14:30:57 +0000
+Started GET "/auth/gds/callback?code=8ac161ec2542dfe691ea22b445915eb149a3921d25b988acdca09eaa4f2e9031&state=22e4d483aa076cdf22ea178d8c1b94e761671d2f0ad0c16c" for 127.0.0.1 at 2013-11-20 14:30:58 +0000
+Processing by AuthenticationsController#callback as HTML
+  Parameters: {"code"=>"8ac161ec2542dfe691ea22b445915eb149a3921d25b988acdca09eaa4f2e9031", "state"=>"22e4d483aa076cdf22ea178d8c1b94e761671d2f0ad0c16c"}
+Authenticating with gds_sso strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.1ms)  begin transaction
+   (0.2ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.7ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.0ms)  commit transaction
+Redirected to http://www.example-client.com/restricted
+Completed 302 Found in 16.0ms (ActiveRecord: 8.2ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 1.1ms (Views: 0.3ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-21 10:25:58 +0000
+Processing by ExampleController#restricted as HTML
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+Completed 200 OK in 0.9ms (Views: 0.1ms | ActiveRecord: 0.1ms)
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:58 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+Completed   in 7.0ms
+Started GET "/restricted" for 127.0.0.1 at 2013-11-20 14:30:58 +0000
+Processing by ExampleController#restricted as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.1ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.8ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (3.7ms)  commit transaction
+Completed 200 OK in 35.4ms (Views: 0.2ms | ActiveRecord: 8.0ms)
+Started GET "/this_requires_signin_permission" for 127.0.0.1 at 2013-11-20 14:30:58 +0000
+Processing by ExampleController#this_requires_signin_permission as JSON
+Authenticating with gds_bearer_token strategy
+  User Load (0.2ms)  SELECT "users".* FROM "users" WHERE "users"."uid" = 'integration-uid' LIMIT 1
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.6ms)  commit transaction
+   (0.0ms)  begin transaction
+   (0.1ms)  UPDATE "users" SET "permissions" = '---
+- signin
+' WHERE "users"."id" = 11
+   (4.2ms)  commit transaction
+Completed 200 OK in 40.8ms (Views: 0.2ms | ActiveRecord: 9.3ms)

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: gds-sso
 version: !ruby/object:Gem::Version
-  version: 7.0.0
+  version: 8.0.0
   prerelease: 
 platform: ruby
 authors:
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-11-08 00:00:00.000000000 Z
+date: 2013-11-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -172,6 +172,22 @@ dependencies:
     - - '='
       - !ruby/object:Gem::Version
         version: 0.3.0
+- !ruby/object:Gem::Dependency
+  name: mechanize
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.6.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.6.0
 - !ruby/object:Gem::Dependency
   name: combustion
   requirement: !ruby/object:Gem::Requirement
@@ -316,7 +332,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 784448743188679554
+      hash: -3993035806094094543
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
@@ -325,7 +341,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: 784448743188679554
+      hash: -3993035806094094543
 requirements: []
 rubyforge_project: gds-sso
 rubygems_version: 1.8.23