+ def current_ability
+ Ability.new(current_user).merge(granted_capability)
+ end
+
+ def granted_capability
+ Capability.new(current_user, current_token)
+ end
+
+ def deny_access(_exception)
+ if current_user
+ set_locale
+ report_error t("oauth.permissions.missing"), :forbidden
+ else
+ require_user
+ end
+ end
+