class Devise::Strategies::TokenAuthenticatable

def params_auth_hash

Try both scoped and non scoped keys. 
def params_auth_hash
  if params[scope].kind_of?(Hash) && params[scope].has_key?(authentication_keys.first)
    params[scope]
  else
    params
  end
end