+/*
+ * UpLoad User Image (avatar or photo or whatever)
+ */
+void cmd_ului(char *cmdbuf)
+{
+ long data_length;
+ char mimetype[SIZ];
+ char username[USERNAME_SIZE];
+ char userconfigroomname[ROOMNAMELEN];
+
+ if (CtdlAccessCheck(ac_logged_in_or_guest)) return;
+
+ if (num_parms(cmdbuf) < 2)
+ {
+ cprintf("%d Usage error\n", ERROR + ILLEGAL_VALUE);
+ return;
+ }
+
+ data_length = extract_long(cmdbuf, 0);
+ extract_token(mimetype, cmdbuf, 1, '|', sizeof mimetype);
+ extract_token(username, cmdbuf, 2, '|', sizeof username);
+
+ if (data_length < 20) {
+ cprintf("%d That's an awfully small file. Try again.\n", ERROR + ILLEGAL_VALUE);
+ return;
+ }
+
+ if (strncasecmp(mimetype, "image/", 6)) {
+ cprintf("%d Only image files are permitted.\n", ERROR + ILLEGAL_VALUE);
+ return;
+ }
+
+ if (IsEmptyStr(username)) {
+ safestrncpy(username, CC->curr_user, sizeof username);
+ }
+
+ // Normal users can only change their own photo
+ if ( (strcasecmp(username, CC->curr_user)) && (CC->user.axlevel < AxAideU) && (!CC->internal_pgm) ) {
+ cprintf("%d Higher access required to change another user's photo.\n", ERROR + HIGHER_ACCESS_REQUIRED);
+ }
+
+ // Check to make sure the user exists
+ struct ctdluser usbuf;
+ if (CtdlGetUser(&usbuf, username) != 0) { // check for existing user, don't lock it yet
+ cprintf("%d %s not found.\n", ERROR + NO_SUCH_USER , username);
+ return;
+ }
+ CtdlMailboxName(userconfigroomname, sizeof userconfigroomname, &usbuf, USERCONFIGROOM);
+
+ char *unencoded_data = malloc(data_length + 1);
+ if (!unencoded_data) {
+ cprintf("%d Could not allocate %ld bytes of memory\n", ERROR + INTERNAL_ERROR , data_length);
+ return;
+ }
+
+ cprintf("%d %ld\n", SEND_BINARY, data_length);
+ client_read(unencoded_data, data_length);
+
+ // We've got the data read from the client, now save it.
+ char *encoded_data = malloc((data_length * 2) + 100);
+ if (encoded_data) {
+ sprintf(encoded_data, "Content-type: %s\nContent-transfer-encoding: base64\n\n", mimetype);
+ CtdlEncodeBase64(&encoded_data[strlen(encoded_data)], unencoded_data, data_length, 1);
+ long new_msgnum = quickie_message("Citadel", NULL, NULL, userconfigroomname, encoded_data, FMT_RFC822, "Photo uploaded by user");
+
+ if (CtdlGetUserLock(&usbuf, username) == 0) { // lock it this time
+ long old_msgnum = usbuf.msgnum_pic;
+ syslog(LOG_DEBUG, "Message %ld is now the photo for %s", new_msgnum, username);
+ usbuf.msgnum_pic = new_msgnum;
+ CtdlPutUserLock(&usbuf);
+ if (old_msgnum > 0) {
+ syslog(LOG_DEBUG, "Deleting old message %ld from %s", old_msgnum, userconfigroomname);
+ CtdlDeleteMessages(userconfigroomname, &old_msgnum, 1, "");
+ }
+ }
+
+ free(encoded_data);
+ }
+
+ free(unencoded_data);
+}