Avatar uploading is nearly working.

app/Http/Controllers/UserController.php

@@ -5,6 +5,7 @@ namespace App\Http\Controllers;
 use App\Models\ForUser;
 
 use Illuminate\Support\Facades\DB;
+use Illuminate\Support\Facades\Storage;
 use Illuminate\Http\Request;
 use Illuminate\Contracts\Routing\ResponseFactory;
 use Illuminate\Support\Facades\Log;
@@ -425,6 +426,47 @@ class UserController extends Controller {
         }
     }
 
+    public function avatarUpload(Request $request) { // /api/rpc/user/user/avatarupload
+        $check = $this->objAuth->checkLegit($request->username, $request->password);
+
+        if ($check == 0) {
+            return 'Err!';
+        }
+        else {
+            $valid = $this->objAuth->getPermissions($request->username, $request->password);
+
+            if ($valid['usr_editprofile'] == 1) {
+                if (isset($request->filename)) {
+                    if (!is_dir("assets/avatars/".$check)) {
+                        if (!mkdir("assets/avatars/".$check, 0755, true)) {
+                            return "Could not make folder ".$check."<br />";
+                        }
+                    }
+
+                    $img_dir = "assets/avatars/".$check."/";
+                    $image = $img_dir . $request->filename;
+                    $imageFileType = array(
+                        'image/png',
+                        'image/jpeg',
+                        'image/gif'
+                    );
+
+                    if (!in_array($request->filetype, $imageFileType)) {
+                       return "Only JPG, PNG, JPEG, and GIF are allowed.";
+                    }
+
+                    $fname = 'assets/avatars/'.$check.'/'.$request->filename;
+                    Storage::disk('public')->put($fname, $request->file('avatar'));
+
+                    return $request->filename;
+                }
+            }
+            else {
+                return 'Permission denied.';
+            }
+        }
+    }
+
     public function editUser(Request $request) { // /api/rpc/user/user/edit
         $check = $this->objAuth->checkLegit($request->username, $request->password);
 

routes/class/user.php

@@ -35,4 +35,5 @@ Route::post('/api/rpc/user/user/updateuserstatus', 'UserController@updateUserSta
 Route::post('/api/rpc/user/user/updateuseronline', 'UserController@updateUserOnline');
 Route::post('/api/rpc/user/user/updatetotalpostcount', 'UserController@updateTotalPostCount');
 Route::post('/api/rpc/user/user/updatetotaltopiccount', 'UserController@updateTotalTopicCount');
+Route::post('/api/rpc/user/user/avatarupload', 'UserController@avatarUpload');
 Route::post('/api/rpc/user/user/edit', 'UserController@editUser');