def authorize!(cls = nil, *args, only: [], except: [])
cls = cls || controller_name.classify.constantize
before_action(only: only, except: except) do
res = MarbleGate.access(self, params[:action], *args).for_authorizer?(cls)
raise MarbleGate::AccessDenied unless res
end
end