module API class Avatar < Grape::API resource :avatar do desc 'Return avatar url for a user' do success Entities::Avatar end params do requires :email, type: String, desc: 'Public email address of the user' optional :size, type: Integer, desc: 'Single pixel dimension for Gravatar images' end get do forbidden!('Unauthorized access') unless can?(current_user, :read_users_list) user = User.find_by_public_email(params[:email]) user ||= User.new(email: params[:email]) present user, with: Entities::Avatar, size: params[:size] end end end end