il y a 10 ans · 9bfa42b31b
--- a/Sources/Load.php
+++ b/Sources/Load.php
@@ -1197,7 +1197,7 @@ function loadMemberContext($user, $display_custom_fields = false)
 
 			'posts' => $profile['posts'] > 500000 ? $txt['geek'] : comma_format($profile['posts']),
 
 			'avatar' => array(
 
 				'name' => $profile['avatar'],
 
-				'image' => $profile['avatar'] == '' ? ($profile['id_attach'] > 0 ? '<img class="avatar" src="' . (empty($profile['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $profile['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $profile['filename']) . '" alt="" />' : '') : (stristr($profile['avatar'], 'http://') || stristr($profile['avatar'], 'https://') ? '<img class="avatar" src="' . $profile['avatar'] . '" alt="" />' : '<img class="avatar" src="' . $modSettings['avatar_url'] . '/' . $smcFunc['htmlspecialchars']($profile['avatar']) . '" alt="" />'),
 
+				'image' => $profile['avatar'] == '' ? $profile['id_attach'] > 0 ? '<img class="avatar" src="' . (empty($profile['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $profile['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $profile['filename']) . '" alt="" />' : '') : (stristr($profile['avatar'], 'http://') || stristr($profile['avatar'], 'https://') ? '<img class="avatar" src="' . $profile['avatar'] . '" alt="" />' : '<img class="avatar" src="' . $modSettings['avatar_url'] . '/' . $smcFunc['htmlspecialchars']($profile['avatar']) . '" alt="" />'),
 
 				'href' => $profile['avatar'] == '' ? ($profile['id_attach'] > 0 ? (empty($profile['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $profile['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $profile['filename']) : '') : (stristr($profile['avatar'], 'http://') || stristr($profile['avatar'], 'https://') ? $profile['avatar'] : $modSettings['avatar_url'] . '/' . $profile['avatar']),
 
 				'url' => $profile['avatar'] == '' ? '' : (stristr($profile['avatar'], 'http://') || stristr($profile['avatar'], 'https://') ? $profile['avatar'] : $modSettings['avatar_url'] . '/' . $profile['avatar'])
 
 			),
--- a/Sources/ManageAttachments.php
+++ b/Sources/ManageAttachments.php
@@ -47,7 +47,6 @@ function ManageAttachments()
 
 		'byAge' => 'RemoveAttachmentByAge',
 
 		'bySize' => 'RemoveAttachmentBySize',
 
 		'maintenance' => 'MaintainFiles',
 
-		'moveAvatars' => 'MoveAvatars',
 
 		'repair' => 'RepairAttachments',
 
 		'remove' => 'RemoveAttachment',
 
 		'removeall' => 'RemoveAllAttachments',
@@ -272,12 +271,13 @@ function ManageAttachmentSettings($return_config = false)
 
 function ManageAvatarSettings($return_config = false)
 
 {
 
 	global $txt, $context, $modSettings, $sourcedir, $scripturl;
 
+	global $boarddir, $boardurl;
 
 
 
 	// Perform a test to see if the GD module or ImageMagick are installed.
 
 	$testImg = get_extension_funcs('gd') || class_exists('Imagick');
 
 
 
 	$context['valid_avatar_dir'] = is_dir($modSettings['avatar_directory']);
 
-	$context['valid_custom_avatar_dir'] = empty($modSettings['custom_avatar_enabled']) || (!empty($modSettings['custom_avatar_dir']) && is_dir($modSettings['custom_avatar_dir']) && is_writable($modSettings['custom_avatar_dir']));
 
+	$context['valid_custom_avatar_dir'] = !empty($modSettings['custom_avatar_dir']) && is_dir($modSettings['custom_avatar_dir']) && is_writable($modSettings['custom_avatar_dir']);
 
 
 
 	$config_vars = array(
 
 		// Server stored avatars!
@@ -305,13 +305,12 @@ function ManageAvatarSettings($return_config = false)
 
 			array('text', 'avatar_max_width_upload', 'subtext' => $txt['zero_for_no_limit'], 6),
 
 			array('text', 'avatar_max_height_upload', 'subtext' => $txt['zero_for_no_limit'], 6),
 
 			array('check', 'avatar_resize_upload', 'subtext' => $txt['avatar_resize_upload_note']),
 
+			array('check', 'avatar_download_png'),
 
 			array('check', 'avatar_reencode'),
 
 		'',
 
 			array('warning', 'avatar_paranoid_warning'),
 
 			array('check', 'avatar_paranoid'),
 
 		'',
 
-			array('check', 'avatar_download_png'),
 
-			array('select', 'custom_avatar_enabled', array($txt['option_attachment_dir'], $txt['option_specified_dir']), 'onchange' => 'fUpdateStatus();'),
 
 			array('text', 'custom_avatar_dir', 40, 'subtext' => $txt['custom_avatar_dir_desc'], 'invalid' => !$context['valid_custom_avatar_dir']),
 
 			array('text', 'custom_avatar_url', 40),
 
 	);
@@ -329,9 +328,18 @@ function ManageAvatarSettings($return_config = false)
 
 	{
 
 		checkSession();
 
 
 
-		// Just incase the admin forgot to set both custom avatar values, we disable it to prevent errors.
 
-		if (isset($_POST['custom_avatar_enabled']) && $_POST['custom_avatar_enabled'] == 1 && (empty($_POST['custom_avatar_dir']) || empty($_POST['custom_avatar_url'])))
 
-			$_POST['custom_avatar_enabled'] = 0;
 
+		// These settings cannot be left empty!
 
+		if (empty($_POST['custom_avatar_dir']))
 
+			$_POST['custom_avatar_dir'] = $boarddir .'/custom_avatar';
 
+
 
+		if (empty($_POST['custom_avatar_url']))
 
+			$_POST['custom_avatar_url'] = $boardurl .'/custom_avatar';
 
+
 
+		if (empty($_POST['avatar_directory']))
 
+			$_POST['avatar_directory'] = $boarddir .'/avatars';
 
+
 
+		if (empty($_POST['avatar_url']))
 
+			$_POST['avatar_url'] = $boardurl .'/avatars';
 
 
 
 		call_integration_hook('integrate_save_avatar_settings');
 
 
@@ -341,7 +349,7 @@ function ManageAvatarSettings($return_config = false)
 
 	}
 
 
 
 	// Attempt to figure out if the admin is trying to break things.
 
-	$context['settings_save_onclick'] = 'return document.getElementById(\'custom_avatar_enabled\').value == 1 && (document.getElementById(\'custom_avatar_dir\').value == \'\' || document.getElementById(\'custom_avatar_url\').value == \'\') ? confirm(\'' . $txt['custom_avatar_check_empty'] . '\') : true;';
 
+	$context['settings_save_onclick'] = 'return (document.getElementById(\'custom_avatar_dir\').value == \'\' || document.getElementById(\'custom_avatar_url\').value == \'\') ? confirm(\'' . $txt['custom_avatar_check_empty'] . '\') : true;';
 
 
 
 	// We need this for the in-line permissions
 
 	createToken('admin-mp');
@@ -765,59 +773,6 @@ function MaintainFiles()
 
 	}
 
 }
 
 
 
-/**
 
- * Move avatars from their current location, to the custom_avatar_dir folder.
 
- * Called from the maintenance screen by ?action=admin;area=manageattachments;sa=moveAvatars.
 
- */
 
-function MoveAvatars()
 
-{
 
-	global $modSettings, $smcFunc;
 
-
 
-	// First make sure the custom avatar dir is writable.
 
-	if (!is_writable($modSettings['custom_avatar_dir']))
 
-	{
 
-		// Try to fix it.
 
-		@chmod($modSettings['custom_avatar_dir'], 0777);
 
-
 
-		// Guess that didn't work?
 
-		if (!is_writable($modSettings['custom_avatar_dir']))
 
-			fatal_lang_error('attachments_no_write', 'critical');
 
-	}
 
-
 
-	$request = $smcFunc['db_query']('', '
 
-		SELECT id_attach, id_folder, id_member, filename, file_hash
 
-		FROM {db_prefix}attachments
 
-		WHERE attachment_type = {int:attachment_type}
 
-			AND id_member > {int:guest_id_member}',
 
-		array(
 
-			'attachment_type' => 0,
 
-			'guest_id_member' => 0,
 
-		)
 
-	);
 
-	$updatedAvatars = array();
 
-	while ($row = $smcFunc['db_fetch_assoc']($request))
 
-	{
 
-		$filename = getAttachmentFilename($row['filename'], $row['id_attach'], $row['id_folder'], false, $row['file_hash']);
 
-
 
-		if (rename($filename, $modSettings['custom_avatar_dir'] . '/' . $row['filename']))
 
-			$updatedAvatars[] = $row['id_attach'];
 
-	}
 
-	$smcFunc['db_free_result']($request);
 
-
 
-	if (!empty($updatedAvatars))
 
-		$smcFunc['db_query']('', '
 
-			UPDATE {db_prefix}attachments
 
-			SET attachment_type = {int:attachment_type}
 
-			WHERE id_attach IN ({array_int:updated_avatars})',
 
-			array(
 
-				'updated_avatars' => $updatedAvatars,
 
-				'attachment_type' => 1,
 
-			)
 
-		);
 
-
 
-	redirectexit('action=admin;area=manageattachments;sa=maintenance');
 
-}
 
-
 
 /**
 
  * Remove attachments older than a given age.
 
  * Called from the maintenance screen by
--- a/Sources/Profile-Modify.php
+++ b/Sources/Profile-Modify.php
@@ -1989,7 +1989,7 @@ function alert_configuration($memID)
 
 		if (empty($alert_types[$group]))
 
 			unset ($alert_types[$group]);
 
 	}
 
-	
 
+
 
 	// Slightly different for group requests
 
 	$request = $smcFunc['db_query']('', '
 
 		SELECT COUNT(*)
@@ -1999,9 +1999,9 @@ function alert_configuration($memID)
 
 			'memID' => $memID,
 
 		)
 
 	);
 
-	
 
+
 
 	list($can_mod) = $smcFunc['db_fetch_row']($request);
 
-	
 
+
 
 	if (!isset($perms_cache['manage_membergroups']))
 
 	{
 
 		$members = membersAllowedTo('manage_membergroups');
@@ -2913,26 +2913,9 @@ function profileSaveAvatarData(&$value)
 
 
 
 	require_once($sourcedir . '/ManageAttachments.php');
 
 
 
-	// We need to know where we're going to be putting it..
 
-	if (!empty($modSettings['custom_avatar_enabled']))
 
-	{
 
-		$uploadDir = $modSettings['custom_avatar_dir'];
 
-		$id_folder = 1;
 
-	}
 
-	elseif (!empty($modSettings['currentAttachmentUploadDir']))
 
-	{
 
-		if (!is_array($modSettings['attachmentUploadDir']))
 
-			$modSettings['attachmentUploadDir'] = unserialize($modSettings['attachmentUploadDir']);
 
-
 
-		// Just use the current path for temp files.
 
-		$uploadDir = $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']];
 
-		$id_folder = $modSettings['currentAttachmentUploadDir'];
 
-	}
 
-	else
 
-	{
 
-		$uploadDir = $modSettings['attachmentUploadDir'];
 
-		$id_folder = 1;
 
-	}
 
+	// We're going to put this on a nice custom dir.
 
+	$uploadDir = $modSettings['custom_avatar_dir'];
 
+	$id_folder = 1;
 
 
 
 	$downloadedExternalAvatar = false;
 
 	if ($value == 'external' && allowedTo('profile_remote_avatar') && (stripos($_POST['userpicpersonal'], 'http://') === 0 || stripos($_POST['userpicpersonal'], 'https://') === 0) && strlen($_POST['userpicpersonal']) > 7 && !empty($modSettings['avatar_download_external']))
@@ -2956,6 +2939,7 @@ function profileSaveAvatarData(&$value)
 
 		}
 
 	}
 
 
 
+	// Removes whatever attachment there was before updating
 
 	if ($value == 'none')
 
 	{
 
 		$profile_vars['avatar'] = '';
@@ -2967,6 +2951,8 @@ function profileSaveAvatarData(&$value)
 
 
 
 		removeAttachments(array('id_member' => $memID));
 
 	}
 
+
 
+	// An avatar from the server-stored galleries.
 
 	elseif ($value == 'server_stored' && allowedTo('profile_server_avatar'))
 
 	{
 
 		$profile_vars['avatar'] = strtr(empty($_POST['file']) ? (empty($_POST['cat']) ? '' : $_POST['cat']) : $_POST['file'], array('&amp;' => '&'));
@@ -2990,14 +2976,13 @@ function profileSaveAvatarData(&$value)
 
 		// Remove any attached avatar...
 
 		removeAttachments(array('id_member' => $memID));
 
 
 
-		// @todo http://www.simplemachines.org/community/index.php?topic=462089.msg3226650#msg3226650
 
 		$profile_vars['avatar'] = str_replace(' ', '%20', preg_replace('~action(?:=|%3d)(?!dlattach)~i', 'action-', $_POST['userpicpersonal']));
 
 
 
 		if ($profile_vars['avatar'] == 'http://' || $profile_vars['avatar'] == 'http:///')
 
 			$profile_vars['avatar'] = '';
 
 		// Trying to make us do something we'll regret?
 
 		elseif (substr($profile_vars['avatar'], 0, 7) != 'http://' && substr($profile_vars['avatar'], 0, 8) != 'https://')
 
-			return 'bad_avatar';
 
+			return 'bad_avatar_invalid_url';
 
 		// Should we check dimensions?
 
 		elseif (!empty($modSettings['avatar_max_height_external']) || !empty($modSettings['avatar_max_width_external']))
 
 		{
@@ -3008,7 +2993,7 @@ function profileSaveAvatarData(&$value)
 
 			{
 
 				// Houston, we have a problem. The avatar is too large!!
 
 				if ($modSettings['avatar_action_too_large'] == 'option_refuse')
 
-					return 'bad_avatar';
 
+					return 'bad_avatar_too_large';
 
 				elseif ($modSettings['avatar_action_too_large'] == 'option_download_and_resize')
 
 				{
 
 					// @todo remove this if appropriate
@@ -3072,12 +3057,16 @@ function profileSaveAvatarData(&$value)
 
 					$cur_profile['filename'] = $modSettings['new_avatar_data']['filename'];
 
 					$cur_profile['attachment_type'] = $modSettings['new_avatar_data']['type'];
 
 				}
 
+
 
+				// Admin doesn't want to resize large avatars, can't do much about it but to tell you to use a different one :(
 
 				else
 
 				{
 
 					@unlink($_FILES['attachment']['tmp_name']);
 
-					return 'bad_avatar';
 
+					return 'bad_avatar_too_large';
 
 				}
 
 			}
 
+
 
+			// So far, so good, checks lies ahead!
 
 			elseif (is_array($sizes))
 
 			{
 
 				// Now try to find an infection.
@@ -3088,7 +3077,7 @@ function profileSaveAvatarData(&$value)
 
 					if (empty($modSettings['avatar_reencode']) || (!reencodeImage($_FILES['attachment']['tmp_name'], $sizes[2])))
 
 					{
 
 						@unlink($_FILES['attachment']['tmp_name']);
 
-						return 'bad_avatar';
 
+						return 'bad_avatar_fail_reencode';
 
 					}
 
 					// We were successful. However, at what price?
 
 					$sizes = @getimagesize($_FILES['attachment']['tmp_name']);
@@ -3111,7 +3100,7 @@ function profileSaveAvatarData(&$value)
 
 				$mime_type = 'image/' . ($extension === 'jpg' ? 'jpeg' : ($extension === 'bmp' ? 'x-ms-bmp' : $extension));
 
 				$destName = 'avatar_' . $memID . '_' . time() . '.' . $extension;
 
 				list ($width, $height) = getimagesize($_FILES['attachment']['tmp_name']);
 
-				$file_hash = empty($modSettings['custom_avatar_enabled']) ? getAttachmentFilename($destName, false, null, true) : '';
 
+				$file_hash = '';
 
 
 
 				// Remove previous attachments this member might have had.
 
 				removeAttachments(array('id_member' => $memID));
@@ -3123,7 +3112,7 @@ function profileSaveAvatarData(&$value)
 
 						'width' => 'int', 'height' => 'int', 'mime_type' => 'string', 'id_folder' => 'int',
 
 					),
 
 					array(
 
-						$memID, (empty($modSettings['custom_avatar_enabled']) ? 0 : 1), $destName, $file_hash, $extension, filesize($_FILES['attachment']['tmp_name']),
 
+						$memID, 1, $destName, $file_hash, $extension, filesize($_FILES['attachment']['tmp_name']),
 
 						(int) $width, (int) $height, $mime_type, $id_folder,
 
 					),
 
 					array('id_attach')
@@ -3131,9 +3120,9 @@ function profileSaveAvatarData(&$value)
 
 
 
 				$cur_profile['id_attach'] = $smcFunc['db_insert_id']('{db_prefix}attachments', 'id_attach');
 
 				$cur_profile['filename'] = $destName;
 
-				$cur_profile['attachment_type'] = empty($modSettings['custom_avatar_enabled']) ? 0 : 1;
 
+				$cur_profile['attachment_type'] = 1;
 
 
 
-				$destinationPath = $uploadDir . '/' . (empty($file_hash) ? $destName : $cur_profile['id_attach'] . '_' . $file_hash);
 
+				$destinationPath = $uploadDir . '/' . (empty($file_hash) ? $destName : $cur_profile['id_attach'] . '_' . $file_hash . '.dat');
 
 				if (!rename($_FILES['attachment']['tmp_name'], $destinationPath))
 
 				{
 
 					// I guess a man can try.
--- a/Sources/Subs-Graphics.php
+++ b/Sources/Subs-Graphics.php
@@ -50,8 +50,8 @@ function downloadAvatar($url, $memID, $max_width, $max_height)
 
 	require_once($sourcedir . '/ManageAttachments.php');
 
 	removeAttachments(array('id_member' => $memID));
 
 
 
-	$id_folder = !empty($modSettings['currentAttachmentUploadDir']) ? $modSettings['currentAttachmentUploadDir'] : 1;
 
-	$avatar_hash = empty($modSettings['custom_avatar_enabled']) ? getAttachmentFilename($destName, false, null, true) : '';
 
+	$id_folder = 1;
 
+	$avatar_hash = '';
 
 	$smcFunc['db_insert']('',
 
 		'{db_prefix}attachments',
 
 		array(
@@ -59,7 +59,7 @@ function downloadAvatar($url, $memID, $max_width, $max_height)
 
 			'id_folder' => 'int',
 
 		),
 
 		array(
 
-			$memID, empty($modSettings['custom_avatar_enabled']) ? 0 : 1, $destName, $avatar_hash, $ext, 1,
 
+			$memID, 1, $destName, $avatar_hash, $ext, 1,
 
 			$id_folder,
 
 		),
 
 		array('id_attach')
@@ -70,10 +70,10 @@ function downloadAvatar($url, $memID, $max_width, $max_height)
 
 	$modSettings['new_avatar_data'] = array(
 
 		'id' => $attachID,
 
 		'filename' => $destName,
 
-		'type' => empty($modSettings['custom_avatar_enabled']) ? 0 : 1,
 
+		'type' => 1,
 
 	);
 
 
 
-	$destName = (empty($modSettings['custom_avatar_enabled']) ? (is_array($modSettings['attachmentUploadDir']) ? $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']] : $modSettings['attachmentUploadDir']) : $modSettings['custom_avatar_dir']) . '/' . $destName . '.tmp';
 
+	$destName = $modSettings['custom_avatar_dir'] . '/' . $destName . '.tmp';
 
 
 
 	// Resize it.
 
 	if (!empty($modSettings['avatar_download_png']))
@@ -86,20 +86,10 @@ function downloadAvatar($url, $memID, $max_width, $max_height)
 
 
 
 	if ($success)
 
 	{
 
-		// Walk the right path.
 
-		if (!empty($modSettings['currentAttachmentUploadDir']))
 
-		{
 
-			if (!is_array($modSettings['attachmentUploadDir']))
 
-				$modSettings['attachmentUploadDir'] = unserialize($modSettings['attachmentUploadDir']);
 
-			$path = $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']];
 
-		}
 
-		else
 
-			$path = $modSettings['attachmentUploadDir'];
 
-
 
 		// Remove the .tmp extension from the attachment.
 
-		if (rename($destName . '.tmp', empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash))
 
+		if (rename($destName . '.tmp', empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash . '.dat'))
 
 		{
 
-			$destName = empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash;
 
+			$destName = empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash . '.dat';
 
 			list ($width, $height) = getimagesize($destName);
 
 			$mime_type = 'image/' . $ext;
 
 
--- a/Sources/Subs.php
+++ b/Sources/Subs.php
@@ -3350,7 +3350,7 @@ function getAttachmentFilename($filename, $attachment_id, $dir = null, $new = fa
 
 		return sha1(md5($filename . time()) . mt_rand());
 
 
 
 	// Grab the file hash if it wasn't added.
 
-	// @todo: Locate all places that don't call a hash and fix that.
 
+	// Left this for legacy.
 
 	if ($file_hash === '')
 
 	{
 
 		$request = $smcFunc['db_query']('', '
--- a/Themes/default/ManageAttachments.template.php
+++ b/Themes/default/ManageAttachments.template.php
@@ -24,8 +24,6 @@ function template_avatar_settings_below()
 
 		document.getElementById("avatar_max_width_external").disabled = document.getElementById("avatar_download_external").checked;
 
 		document.getElementById("avatar_max_height_external").disabled = document.getElementById("avatar_download_external").checked;
 
 		document.getElementById("avatar_action_too_large").disabled = document.getElementById("avatar_download_external").checked;
 
-		document.getElementById("custom_avatar_dir").disabled = document.getElementById("custom_avatar_enabled").value == 0;
 
-		document.getElementById("custom_avatar_url").disabled = document.getElementById("custom_avatar_enabled").value == 0;
 
 
 
 	}
 
 	addLoadEvent(fUpdateStatus);
--- a/Themes/default/languages/Admin.english.php
+++ b/Themes/default/languages/Admin.english.php
@@ -465,7 +465,6 @@ $txt['avatar_upload_groups'] = 'Membergroups allowed to upload an avatar to the
 
 $txt['avatar_external_url_groups'] = 'Membergroups allowed to select an external URL';
 
 $txt['avatar_select_permission'] = 'Select permissions for each group';
 
 $txt['avatar_download_external'] = 'Download avatar at given URL';
 
-$txt['custom_avatar_enabled'] = 'Upload avatars to...';
 
 $txt['option_attachment_dir'] = 'Attachment directory';
 
 $txt['option_specified_dir'] = 'Specific directory...';
 
 $txt['custom_avatar_dir'] = 'Upload directory';
--- a/Themes/default/languages/Errors.english.php
+++ b/Themes/default/languages/Errors.english.php
@@ -334,7 +334,10 @@ $txt['profile_error_email_taken'] = 'Another user is already registered with tha
 
 $txt['profile_error_no_password'] = 'You did not enter your password';
 
 $txt['profile_error_bad_new_password'] = 'The new passwords you entered do not match';
 
 $txt['profile_error_bad_password'] = 'The password you entered was not correct';
 
-$txt['profile_error_bad_avatar'] = 'The avatar you have selected is either too large or not an avatar';
 
+$txt['profile_error_bad_avatar'] = 'The avatar you have selected is not a valid image';
 
+$txt['profile_error_bad_avatar_invalid_url'] = 'The url you specified is invalid, please check it.';
 
+$txt['profile_error_bad_avatar_too_large'] = 'The image you\'re trying to use surpasses the max width/height settings, please use a smaller one.';
 
+$txt['profile_error_bad_avatar_fail_reencode'] = 'The image you uploaded was corrupted and the attempt to restored failed to do so.';
 
 $txt['profile_error_password_short'] = 'Your password must be at least ' . (empty($modSettings['password_strength']) ? 4 : 8) . ' characters long.';
 
 $txt['profile_error_password_restricted_words'] = 'Your password must not contain your username, email address or other commonly used words.';
 
 $txt['profile_error_password_chars'] = 'Your password must contain a mix of upper and lower case letters, as well as digits.';
--- a/custom_avatar/blank.png
+++ b/custom_avatar/blank.png
--- a/custom_avatar/index.php
+++ b/custom_avatar/index.php
@@ -0,0 +1,18 @@
 
+<?php
 
+
 
+/**
 
+ * This file is here solely to protect your avatars directory.
 
+ */
 
+
 
+// Look for Settings.php....
 
+if (file_exists(dirname(dirname(__FILE__)) . '/Settings.php'))
 
+{
 
+	// Found it!
 
+	require(dirname(dirname(__FILE__)) . '/Settings.php');
 
+	header('Location: ' . $boardurl);
 
+}
 
+// Can't find it... just forget it.
 
+else
 
+	exit;
 
+
 
+?>
--- a/index.php
+++ b/index.php
@@ -77,7 +77,8 @@ if (isset($_GET['scheduled']))
 
 	require_once($sourcedir . '/ScheduledTasks.php');
 
 	AutoTask();
 
 }
 
-// Displaying attached avatars
 
+
 
+// Displaying attached avatars, legacy.
 
 elseif (isset($_GET['action']) && $_GET['action'] == 'dlattach' && isset($_GET['type']) && $_GET['type'] == 'avatar')
 
 {
 
 	require_once($sourcedir. '/Avatar.php');
--- a/other/install.php
+++ b/other/install.php
@@ -540,6 +540,7 @@ function CheckFilesWritable()
 
 	$writable_files = array(
 
 		'attachments',
 
 		'avatars',
 
+		'custom_avatar',
 
 		'cache',
 
 		'Packages',
 
 		'Smileys',
--- a/other/install_2-1_mysql.sql
+++ b/other/install_2-1_mysql.sql
@@ -1806,6 +1806,8 @@ VALUES ('smfVersion', '{$smf_version}'),
 
 	('banLastUpdated', '0'),
 
 	('smileys_dir', '{$boarddir}/Smileys'),
 
 	('smileys_url', '{$boardurl}/Smileys'),
 
+	('custom_avatar_dir', '{$boarddir}/custom_avatar'),
 
+	('custom_avatar_url', '{$boardurl}/custom_avatar'),
 
 	('avatar_directory', '{$boarddir}/avatars'),
 
 	('avatar_url', '{$boardurl}/avatars'),
 
 	('avatar_max_height_external', '65'),
--- a/other/install_2-1_postgresql.sql
+++ b/other/install_2-1_postgresql.sql
@@ -2317,6 +2317,8 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('autoLinkUrls', '1');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('banLastUpdated', '0');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_dir', '{$boarddir}/Smileys');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_url', '{$boardurl}/Smileys');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_dir', '{$boarddir}/custom_avatar');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_url', '{$boardurl}/custom_avatar');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_directory', '{$boarddir}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_url', '{$boardurl}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_max_height_external', '65');
--- a/other/install_2-1_sqlite.sql
+++ b/other/install_2-1_sqlite.sql
@@ -1949,6 +1949,8 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('autoLinkUrls', '1');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('banLastUpdated', '0');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_dir', '{$boarddir}/Smileys');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_url', '{$boardurl}/Smileys');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_dir', '{$boarddir}/custom_avatar');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_url', '{$boardurl}/custom_avatar');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_directory', '{$boarddir}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_url', '{$boardurl}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_max_height_external', '65');
--- a/other/install_2-1_sqlite3.sql
+++ b/other/install_2-1_sqlite3.sql
@@ -1949,6 +1949,8 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('autoLinkUrls', '1');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('banLastUpdated', '0');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_dir', '{$boarddir}/Smileys');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('smileys_url', '{$boardurl}/Smileys');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_dir', '{$boarddir}/custom_avatar');
 
+INSERT INTO {$db_prefix}settings (variable, value) VALUES ('custom_avatar_url', '{$boardurl}/custom_avatar');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_directory', '{$boarddir}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_url', '{$boardurl}/avatars');
 
 INSERT INTO {$db_prefix}settings (variable, value) VALUES ('avatar_max_height_external', '65');
--- a/other/upgrade.php
+++ b/other/upgrade.php
@@ -1015,6 +1015,16 @@ function WelcomeLogin()
 
 		$boarddir . '/Settings_bak.php',
 
 	);
 
 
 
+	$custom_av_dir = !empty($modSettings['custom_avatar_dir']) ? $modSettings['custom_avatar_dir'] : $GLOBALS['boarddir'] .'/custom_avatar';
 
+
 
+	// This little fellow has to cooperate...
 
+	if (!is_writable($custom_av_dir))
 
+		@chmod($custom_av_dir, 0777);
 
+
 
+	// Are we good now?
 
+	if(!is_writable($custom_av_dir))
 
+		return throw_error(sprintf('The directory: %1$s has to be writable to continue the upgrade. Please make sure permissions are correctly set to allow this.', $custom_av_dir));
 
+
 
 	require_once($sourcedir . '/Security.php');
 
 
 
 	// Check the cache directory.
@@ -1409,7 +1419,7 @@ function BackupDatabase()
 
 
 
 	// Some useful stuff here.
 
 	db_extend();
 
-	
 
+
 
 	// Might need this as well
 
 	db_extend('packages');
 
 
--- a/other/upgrade_2-1_mysql.sql
+++ b/other/upgrade_2-1_mysql.sql
@@ -67,6 +67,14 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('topic_move_any', '1'
 
 
 
 ---# Converting legacy attachments.
 
 ---{
 
+
 
+// Need to know a few things first.
 
+$custom_av_dir = !empty($modSettings['custom_avatar_dir']) ? $modSettings['custom_avatar_dir'] : $GLOBALS['boarddir'] .'/custom_avatar';
 
+
 
+// This little fellow has to cooperate...
 
+if (!is_writable($custom_av_dir))
 
+	@chmod($custom_av_dir, 0777);
 
+
 
 $request = upgrade_query("
 
 	SELECT MAX(id_attach)
 
 	FROM {$db_prefix}attachments");
@@ -140,8 +148,17 @@ while (!$is_done)
 
 			$newFile = $currentFolder . '/' . $row['id_attach'] . '_' . $row['file_hash'] .'.dat';
 
 		}
 
 
 
-		// And we try to move it.
 
-		rename($oldFile, $newFile);
 
+		// Check if the av is an attachment
 
+		if ($row['id_member'] != 0)
 
+			if (rename($oldFile, $custom_av_dir . '/' . $row['filename']))
 
+				upgrade_query("
 
+					UPDATE {$db_prefix}attachments
 
+					SET file_hash = '', attachment_type = 1
 
+					WHERE id_attach = $row[id_attach]");
 
+
 
+		// Just a regular attachment.
 
+		else
 
+			rename($oldFile, $newFile);
 
 
 
 		// Only update this if it was successful and the file was using the old system.
 
 		if (empty($row['file_hash']) && !empty($fileHash) && file_exists($newFile) && !file_exists($oldFile))
--- a/other/upgrade_2-1_postgresql.sql
+++ b/other/upgrade_2-1_postgresql.sql
@@ -40,7 +40,7 @@ if (!isset($modSettings['allow_no_censored']))
 
 		WHERE variable='allow_no_censored'
 
 		AND id_theme = 1 OR id_theme = '$modSettings[theme_default]'
 
 	");
 
-	
 
+
 
 	// Is it set for either "default" or the one they've set as default?
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
@@ -50,7 +50,7 @@ if (!isset($modSettings['allow_no_censored']))
 
 				INSERT INTO {$db_prefix}settings
 
 				VALUES ('allow_no_censored', 1)
 
 			");
 
-			
 
+
 
 			// Don't do this twice...
 
 			break;
 
 		}
@@ -69,6 +69,14 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('topic_move_any', '1'
 
 
 
 ---# Converting legacy attachments.
 
 ---{
 
+
 
+// Need to know a few things first.
 
+$custom_av_dir = !empty($modSettings['custom_avatar_dir']) ? $modSettings['custom_avatar_dir'] : $GLOBALS['boarddir'] .'/custom_avatar';
 
+
 
+// This little fellow has to cooperate...
 
+if (!is_writable($custom_av_dir))
 
+	@chmod($custom_av_dir, 0777);
 
+
 
 $request = upgrade_query("
 
 	SELECT MAX(id_attach)
 
 	FROM {$db_prefix}attachments");
@@ -142,8 +150,17 @@ while (!$is_done)
 
 			$newFile = $currentFolder . '/' . $row['id_attach'] . '_' . $row['file_hash'] .'.dat';
 
 		}
 
 
 
-		// And we try to move it.
 
-		rename($oldFile, $newFile);
 
+		// Check if the av is an attachment
 
+		if ($row['id_member'] != 0)
 
+			if (rename($oldFile, $custom_av_dir . '/' . $row['filename']))
 
+				upgrade_query("
 
+					UPDATE {$db_prefix}attachments
 
+					SET file_hash = '', attachment_type = 1
 
+					WHERE id_attach = $row[id_attach]");
 
+
 
+		// Just a regular attachment.
 
+		else
 
+			rename($oldFile, $newFile);
 
 
 
 		// Only update this if it was successful and the file was using the old system.
 
 		if (empty($row['file_hash']) && !empty($fileHash) && file_exists($newFile) && !file_exists($oldFile))
@@ -788,7 +805,7 @@ $request = upgrade_query("
 
 	SELECT id_group, add_deny
 
 	FROM {$db_prefix}permissions
 
 	WHERE permission = 'profile_identity_own'");
 
-	
 
+
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
 
 		$inserts[] = "($row[id_group], 'profile_password_own', $row[add_deny])";
@@ -818,7 +835,7 @@ $request = upgrade_query("
 
 	SELECT id_group, add_deny
 
 	FROM {$db_prefix}permissions
 
 	WHERE permission = 'profile_extra_own'");
 
-	
 
+
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
 
 		$inserts[] = "($row[id_group], 'profile_blurb_own', $row[add_deny])";
@@ -905,7 +922,7 @@ ADD COLUMN in_inbox smallint NOT NULL default '1';
 
 				$inserts[] = array($row['id_member'], $label);
 
 			}
 
 		}
 
-		
 
+
 
 		$smcFunc['db_free_result']($get_labels);
 
 
 
 		if (!empty($inserts))
@@ -968,7 +985,7 @@ ADD COLUMN in_inbox smallint NOT NULL default '1';
 
 					continue;
 
 
 
 				$new_label_info = $label_info_2[$row['id_member']][$a_label];
 
-				$inserts[] = array($row['id_pm'], $new_label_info); 
 
+				$inserts[] = array($row['id_pm'], $new_label_info);
 
 			}
 
 		}
 
 
@@ -1014,7 +1031,7 @@ ADD COLUMN in_inbox smallint NOT NULL default '1';
 
 				array(
 
 					'actions' => $actions,
 
 					'id_rule' => $row['id_rule'],
 
-				)	
 
+				)
 
 			);
 
 		}
 
 
--- a/other/upgrade_2-1_sqlite.sql
+++ b/other/upgrade_2-1_sqlite.sql
@@ -38,7 +38,7 @@ if (!isset($modSettings['allow_no_censored']))
 
 		WHERE variable='allow_no_censored'
 
 		AND id_theme = 1 OR id_theme = '$modSettings[theme_default]'
 
 	");
 
-	
 
+
 
 	// Is it set for either "default" or the one they've set as default?
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
@@ -48,7 +48,7 @@ if (!isset($modSettings['allow_no_censored']))
 
 				INSERT INTO {$db_prefix}settings
 
 				VALUES ('allow_no_censored', 1)
 
 			");
 
-			
 
+
 
 			// Don't do this twice...
 
 			break;
 
 		}
@@ -67,6 +67,14 @@ INSERT INTO {$db_prefix}settings (variable, value) VALUES ('topic_move_any', '1'
 
 
 
 ---# Converting legacy attachments.
 
 ---{
 
+
 
+// Need to know a few things first.
 
+$custom_av_dir = !empty($modSettings['custom_avatar_dir']) ? $modSettings['custom_avatar_dir'] : $GLOBALS['boarddir'] .'/custom_avatar';
 
+
 
+// This little fellow has to cooperate...
 
+if (!is_writable($custom_av_dir))
 
+	@chmod($custom_av_dir, 0777);
 
+
 
 $request = upgrade_query("
 
 	SELECT MAX(id_attach)
 
 	FROM {$db_prefix}attachments");
@@ -140,8 +148,17 @@ while (!$is_done)
 
 			$newFile = $currentFolder . '/' . $row['id_attach'] . '_' . $row['file_hash'] .'.dat';
 
 		}
 
 
 
-		// And we try to move it.
 
-		rename($oldFile, $newFile);
 
+		// Check if the av is an attachment
 
+		if ($row['id_member'] != 0)
 
+			if (rename($oldFile, $custom_av_dir . '/' . $row['filename']))
 
+				upgrade_query("
 
+					UPDATE {$db_prefix}attachments
 
+					SET file_hash = '', attachment_type = 1
 
+					WHERE id_attach = $row[id_attach]");
 
+
 
+		// Just a regular attachment.
 
+		else
 
+			rename($oldFile, $newFile);
 
 
 
 		// Only update this if it was successful and the file was using the old system.
 
 		if (empty($row['file_hash']) && !empty($fileHash) && file_exists($newFile) && !file_exists($oldFile))
@@ -770,7 +787,7 @@ $request = upgrade_query("
 
 	SELECT id_group, add_deny
 
 	FROM {$db_prefix}permissions
 
 	WHERE permission = 'profile_identity_own'");
 
-	
 
+
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
 
 		$inserts[] = "($row[id_group], 'profile_password_own', $row[add_deny])";
@@ -800,7 +817,7 @@ $request = upgrade_query("
 
 	SELECT id_group, add_deny
 
 	FROM {$db_prefix}permissions
 
 	WHERE permission = 'profile_extra_own'");
 
-	
 
+
 
 	while ($row = $smcFunc['db_fetch_assoc']($request))
 
 	{
 
 		$inserts[] = "($row[id_group], 'profile_blurb_own', $row[add_deny])";
@@ -944,7 +961,7 @@ ADD COLUMN in_inbox tinyint(3) NOT NULL default '1';
 
 					continue;
 
 
 
 				$new_label_info = $label_info_2[$row['id_member']][$a_label];
 
-				$inserts[] = array($row['id_pm'], $new_label_info); 
 
+				$inserts[] = array($row['id_pm'], $new_label_info);
 
 			}
 
 		}
 
 
@@ -990,7 +1007,7 @@ ADD COLUMN in_inbox tinyint(3) NOT NULL default '1';
 
 				array(
 
 					'actions' => $actions,
 
 					'id_rule' => $row['id_rule'],
 
-				)	
 
+				)
 
 			);
 
 		}