class TokenPolicy < ApplicationPolicy class Scope < Scope def resolve if user scope.where('tokens.user_id = ?', user.id) else scope.where(id: nil).where('id IS NOT ?', nil) # to just return none end end end def create? user.present? end def my_tokens? user.present? end def destroy? user.present? && record.user == user end end