Give users the ability to issue GitHub style personal access tokens within your app, which can be used to authenticate with your API. We'll also be attaching abilities (permissions) to tokens and creating a clean way to check these in your API controllers.