Add client/user/scope to model#generateAuthorizationCode

Add client/user/scope to model#generateAuthorizationCode, similar to #303. 

This would require some restructuring of AuthorizeHandler#handle but would enable the use of JWTs as authorization codes.
