class ApiController < ActionController::API
  rescue_from CanCan::AccessDenied do |exception|
    Rails.logger.debug "Access denied on #{exception.action} #{exception.subject.inspect}"
    head :forbidden
  end

  <% if options[:doorkeeper_oauth] %>
  before_action :doorkeeper_authorize!, unless: :anonymous_action?
  
  def current_resource_owner
    User.find(doorkeeper_token.resource_owner_id) if doorkeeper_token&.accessible?
  end
  alias_method :current_user, :current_resource_owner
  
  protected
  def anonymous_action?
    false
  end
  <% else %>
  def current_user
    nil
  end
  <% end %>
end