Relaxed image upload auth.

# Conflicts:
#	src/com/controllers/MaintenanceManager.js
#	src/com/controllers/SettingsIndex.js

brain/controller/APIControl.inc.php

@@ -188,21 +188,30 @@ class APIControl
 
         break;
       case "settings":
-        $token = $request->getHeader("fipamo-access-token");
+        if (isset($body)) {
-        if (Session::verifyToken($token[0])) {
+          $postBody = $body;
-          if (isset($body)) {
+        } else {
-            $postBody = $body;
+          $postBody = null;
-          } else {
+        }
-            $postBody = null;
+        $task = $args["fourth"];
-          }
+        if ($task == "add-feature-background" || $task == "add-avatar") {
-
           $result = SettingsAPI::handleSettingsTask($request, $args, $postBody);
         } else {
-          $result = [
+          $token = $request->getHeader("fipamo-access-token");
-            "message" => "API access denied, homie",
+          if (Session::verifyToken($token[0])) {
-            "type" => "API_ERROR",
+            $result = SettingsAPI::handleSettingsTask(
-          ];
+              $request,
+              $args,
+              $postBody
+            );
+          } else {
+            $result = [
+              "message" => "API access denied, homie",
+              "type" => "API_ERROR",
+            ];
+          }
         }
+
         break;
       case "mailer":
         $result = MailerAPI::handleMail($request, $body, $response);