Update specs for sudo behavior

app/models/oauth_access_token.rb

@@ -2,5 +2,13 @@ class OauthAccessToken < Doorkeeper::AccessToken
   belongs_to :resource_owner, class_name: 'User'
   belongs_to :application, class_name: 'Doorkeeper::Application'
 
-  alias_method :user, :resource_owner
+  alias_attribute :user, :resource_owner
+
+  def scopes=(value)
+    if value.is_a?(Array)
+      super(Doorkeeper::OAuth::Scopes.from_array(value).to_s)
+    else
+      super
+    end
+  end
 end

lib/api/helpers.rb

@@ -396,7 +396,7 @@ module API
     def sudo!
       return unless sudo_identifier
 
-      raise UnauthorizedError unless initial_current_user
+      unauthorized! unless initial_current_user
 
       unless initial_current_user.admin?
         forbidden!('Must be admin to use sudo')
@@ -409,10 +409,7 @@ module API
       validate_access_token!(scopes: [:sudo])
 
       sudoed_user = find_user(sudo_identifier)
-
-      unless sudoed_user
-        not_found!("No user id or username for: #{sudo_identifier}")
-      end
+      not_found!("User with ID or username '#{sudo_identifier}'") unless sudoed_user
 
       @current_user = sudoed_user
     end