chore: release v2.5.0

fix(mobile): indicators not showing on thumbnail tile after asset change in viewer (#25297 )
* fixed indicators staying hidden * remove logs * explanation comment * move import to correct place * revert accidental change in null handling
2026-01-20 16:43:16 -08:00 · 2026-01-20 20:05:05 +00:00 · 2026-01-20 14:02:54 -06:00 · 2026-01-20 09:22:28 -06:00 · 2026-01-20 13:18:54 +01:00 · 2026-01-20 11:20:27 +00:00
1152 changed files with 103493 additions and 22987 deletions
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -29,6 +29,12 @@
      ]
    }
  },
+  "features": {
+    "ghcr.io/devcontainers/features/docker-in-docker:2": {
+      // https://github.com/devcontainers/features/issues/1466
+      "moby": false
+    }
+  },
  "forwardPorts": [3000, 9231, 9230, 2283],
  "portsAttributes": {
    "3000": {
--- a/.github/.nvmrc
+++ b/.github/.nvmrc
@@ -1 +1 @@
-24.11.0
+24.13.0
--- a/.github/package.json
+++ b/.github/package.json
@@ -4,6 +4,6 @@
    "format:fix": "prettier --write ."
  },
  "devDependencies": {
-    "prettier": "^3.5.3"
+    "prettier": "^3.7.4"
  }
 }
--- a/.github/workflows/build-mobile.yml
+++ b/.github/workflows/build-mobile.yml
@@ -30,18 +30,6 @@ on:
        required: true
      IOS_CERTIFICATE_PASSWORD:
        required: true
-      IOS_PROVISIONING_PROFILE:
-        required: true
-      IOS_PROVISIONING_PROFILE_SHARE_EXTENSION:
-        required: true
-      IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION:
-        required: true
-      IOS_DEVELOPMENT_PROVISIONING_PROFILE:
-        required: true
-      IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION:
-        required: true
-      IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION:
-        required: true
      FASTLANE_TEAM_ID:
        required: true
  pull_request:
@@ -96,7 +84,7 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          ref: ${{ inputs.ref || github.sha }}
          persist-credentials: false
@@ -108,14 +96,14 @@ jobs:
        working-directory: ./mobile
        run: printf "%s" $KEY_JKS | base64 -d > android/key.jks

-      - uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
+      - uses: actions/setup-java@f2beeb24e141e01a676f977032f5a29d81c9e27e # v5.1.0
        with:
          distribution: 'zulu'
          java-version: '17'

      - name: Restore Gradle Cache
        id: cache-gradle-restore
-        uses: actions/cache/restore@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
+        uses: actions/cache/restore@9255dc7a253b0ccc959486e2bca901246202afeb # v5.0.1
        with:
          path: |
            ~/.gradle/caches
@@ -165,14 +153,14 @@ jobs:
          fi

      - name: Publish Android Artifact
-        uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
+        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
        with:
          name: release-apk-signed
          path: mobile/build/app/outputs/flutter-apk/*.apk

      - name: Save Gradle Cache
        id: cache-gradle-save
-        uses: actions/cache/save@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
+        uses: actions/cache/save@9255dc7a253b0ccc959486e2bca901246202afeb # v5.0.1
        if: github.ref == 'refs/heads/main'
        with:
          path: |
@@ -194,7 +182,7 @@ jobs:

    steps:
      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
        with:
          ref: ${{ inputs.ref || github.sha }}
          persist-credentials: false
@@ -222,6 +210,7 @@ jobs:
        uses: ruby/setup-ruby@v1
        with:
          ruby-version: '3.3'
+          bundler-cache: true
          working-directory: ./mobile/ios

      - name: Install CocoaPods dependencies
@@ -229,13 +218,6 @@ jobs:
        run: |
          pod install

-      - name: Install Fastlane
-        working-directory: ./mobile/ios
-        run: |
-          gem install bundler
-          bundle config set --local path 'vendor/bundle'
-          bundle install
-
      - name: Create API Key
        env:
          API_KEY_ID: ${{ secrets.APP_STORE_CONNECT_API_KEY_ID }}
@@ -246,35 +228,14 @@ jobs:
          mkdir -p ~/.appstoreconnect/private_keys
          echo "$API_KEY_CONTENT" | base64 --decode > ~/.appstoreconnect/private_keys/AuthKey_${API_KEY_ID}.p8

-      - name: Import Certificate and Provisioning Profiles
+      - name: Import Certificate
        env:
          IOS_CERTIFICATE_P12: ${{ secrets.IOS_CERTIFICATE_P12 }}
-          IOS_CERTIFICATE_PASSWORD: ${{ secrets.IOS_CERTIFICATE_PASSWORD }}
-          IOS_PROVISIONING_PROFILE: ${{ secrets.IOS_PROVISIONING_PROFILE }}
-          IOS_PROVISIONING_PROFILE_SHARE_EXTENSION: ${{ secrets.IOS_PROVISIONING_PROFILE_SHARE_EXTENSION }}
-          IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION: ${{ secrets.IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION }}
-          IOS_DEVELOPMENT_PROVISIONING_PROFILE: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE }}
-          IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION }}
-          IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION }}
-          ENVIRONMENT: ${{ inputs.environment || 'development' }}
        working-directory: ./mobile/ios
        run: |
          # Decode certificate
          echo "$IOS_CERTIFICATE_P12" | base64 --decode > certificate.p12

-          # Decode provisioning profiles based on environment
-          if [[ "$ENVIRONMENT" == "development" ]]; then
-            echo "$IOS_DEVELOPMENT_PROVISIONING_PROFILE" | base64 --decode > profile_dev.mobileprovision
-            echo "$IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION" | base64 --decode > profile_dev_share.mobileprovision
-            echo "$IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION" | base64 --decode > profile_dev_widget.mobileprovision
-            ls -lh profile_dev*.mobileprovision
-          else
-            echo "$IOS_PROVISIONING_PROFILE" | base64 --decode > profile.mobileprovision
-            echo "$IOS_PROVISIONING_PROFILE_SHARE_EXTENSION" | base64 --decode > profile_share.mobileprovision
-            echo "$IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION" | base64 --decode > profile_widget.mobileprovision
-            ls -lh profile*.mobileprovision
-          fi
-
      - name: Create keychain and import certificate
        env:
          KEYCHAIN_PASSWORD: ${{ secrets.IOS_CERTIFICATE_PASSWORD }}
@@ -325,7 +286,7 @@ jobs:
          security delete-keychain build.keychain || true

      - name: Upload IPA artifact
-        uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
+        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
        with:
          name: ios-release-ipa
          path: mobile/ios/Runner.ipa
--- a/.github/workflows/cache-cleanup.yml
+++ b/.github/workflows/cache-cleanup.yml
@@ -25,7 +25,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Check out code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
--- a/.github/workflows/cli.yml
+++ b/.github/workflows/cli.yml
@@ -35,7 +35,7 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -44,7 +44,7 @@ jobs:
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './cli/.nvmrc'
          registry-url: 'https://registry.npmjs.org'
@@ -78,7 +78,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -87,7 +87,7 @@ jobs:
        uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3.7.0

      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
+        uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0

      - name: Login to GitHub Container Registry
        uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
@@ -105,7 +105,7 @@ jobs:

      - name: Generate docker image tags
        id: metadata
-        uses: docker/metadata-action@318604b99e75e41977312d83839a89be02ca4893 # v5.9.0
+        uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0
        with:
          flavor: |
            latest=false
--- a/.github/workflows/close-duplicates.yml
+++ b/.github/workflows/close-duplicates.yml
@@ -35,7 +35,7 @@ jobs:
    needs: [get_body, should_run]
    if: ${{ needs.should_run.outputs.should_run == 'true' }}
    container:
-      image: ghcr.io/immich-app/mdq:main@sha256:9c905a4ff69f00c4b2f98b40b6090ab3ab18d1a15ed1379733b8691aa1fcb271
+      image: ghcr.io/immich-app/mdq:main@sha256:ab9f163cd5d5cec42704a26ca2769ecf3f10aa8e7bae847f1d527cdf075946e6
    outputs:
      checked: ${{ steps.get_checkbox.outputs.checked }}
    steps:
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -50,14 +50,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout repository
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}

      # Initializes the CodeQL tools for scanning.
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2
+        uses: github/codeql-action/init@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
        with:
          languages: ${{ matrix.language }}
          # If you wish to specify custom queries, you can do so here or in a config file.
@@ -70,7 +70,7 @@ jobs:
      # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
      # If this step fails, then you should remove it and run the build manually (see below)
      - name: Autobuild
-        uses: github/codeql-action/autobuild@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2
+        uses: github/codeql-action/autobuild@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9

      # ℹ️ Command-line programs to run using the OS shell.
      # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -83,6 +83,6 @@ jobs:
      #   ./location_of_script_within_repo/buildscript.sh

      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2
+        uses: github/codeql-action/analyze@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
        with:
          category: '/language:${{matrix.language}}'
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -132,7 +132,7 @@ jobs:
            suffixes: '-rocm'
            platforms: linux/amd64
            runner-mapping: '{"linux/amd64": "mich"}'
-    uses: immich-app/devtools/.github/workflows/multi-runner-build.yml@47a2ee86898ccff51592d6572391fb1abcd7f782 # multi-runner-build-workflow-v2.0.1
+    uses: immich-app/devtools/.github/workflows/multi-runner-build.yml@0477486d82313fba68f7c82c034120a4b8981297 # multi-runner-build-workflow-v2.1.0
    permissions:
      contents: read
      actions: read
@@ -155,7 +155,7 @@ jobs:
    name: Build and Push Server
    needs: pre-job
    if: ${{ fromJSON(needs.pre-job.outputs.should_run).server == true }}
-    uses: immich-app/devtools/.github/workflows/multi-runner-build.yml@47a2ee86898ccff51592d6572391fb1abcd7f782 # multi-runner-build-workflow-v2.0.1
+    uses: immich-app/devtools/.github/workflows/multi-runner-build.yml@0477486d82313fba68f7c82c034120a4b8981297 # multi-runner-build-workflow-v2.1.0
    permissions:
      contents: read
      actions: read
--- a/.github/workflows/docs-build.yml
+++ b/.github/workflows/docs-build.yml
@@ -60,16 +60,17 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
+          fetch-depth: 0

      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './docs/.nvmrc'
          cache: 'pnpm'
@@ -85,7 +86,7 @@ jobs:
        run: pnpm build

      - name: Upload build output
-        uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
+        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
        with:
          name: docs-build-output
          path: docs/build/
--- a/.github/workflows/docs-deploy.yml
+++ b/.github/workflows/docs-deploy.yml
@@ -125,13 +125,13 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}

      - name: Setup Mise
-        uses: immich-app/devtools/actions/use-mise@cd24790a7f5f6439ac32cc94f5523cb2de8bfa8c # use-mise-action-v1.1.0
+        uses: immich-app/devtools/actions/use-mise@b868e6e7c8cc212beec876330b4059e661ee44bb # use-mise-action-v1.1.1

      - name: Load parameters
        id: parameters
--- a/.github/workflows/docs-destroy.yml
+++ b/.github/workflows/docs-destroy.yml
@@ -23,13 +23,13 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}

      - name: Setup Mise
-        uses: immich-app/devtools/actions/use-mise@cd24790a7f5f6439ac32cc94f5523cb2de8bfa8c # use-mise-action-v1.1.0
+        uses: immich-app/devtools/actions/use-mise@b868e6e7c8cc212beec876330b4059e661ee44bb # use-mise-action-v1.1.1

      - name: Destroy Docs Subdomain
        env:
--- a/.github/workflows/fix-format.yml
+++ b/.github/workflows/fix-format.yml
@@ -16,13 +16,13 @@ jobs:
    steps:
      - name: Generate a token
        id: generate-token
-        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: 'Checkout'
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          ref: ${{ github.event.pull_request.head.ref }}
          token: ${{ steps.generate-token.outputs.token }}
@@ -32,7 +32,7 @@ jobs:
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
--- a/.github/workflows/merge-translations.yml
+++ b/.github/workflows/merge-translations.yml
@@ -31,7 +31,7 @@ jobs:
      - name: Generate a token
        id: generate_token
        if: ${{ inputs.skip != true }}
-        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}
--- a/.github/workflows/prepare-release.yml
+++ b/.github/workflows/prepare-release.yml
@@ -45,30 +45,31 @@ jobs:
    needs: [merge_translations]
    outputs:
      ref: ${{ steps.push-tag.outputs.commit_long_sha }}
+      version: ${{ steps.output.outputs.version }}
    permissions: {} # No job-level permissions are needed because it uses the app-token
    steps:
      - name: Generate a token
        id: generate-token
-        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          token: ${{ steps.generate-token.outputs.token }}
          persist-credentials: true
          ref: main

      - name: Install uv
-        uses: astral-sh/setup-uv@85856786d1ce8acfbcc2f13a5f3fbd6b938f9f41 # v7.1.2
+        uses: astral-sh/setup-uv@681c641aba71e4a1c380be3ab5e12ad51f415867 # v7.1.6

      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
@@ -80,13 +81,16 @@ jobs:
          MOBILE_BUMP: ${{ inputs.mobileBump }}
        run: misc/release/pump-version.sh -s "${SERVER_BUMP}" -m "${MOBILE_BUMP}"

+      - id: output
+        run: echo "version=$IMMICH_VERSION" >> $GITHUB_OUTPUT
+
      - name: Commit and tag
        id: push-tag
        uses: EndBug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 # v9.1.4
        with:
          default_author: github_actions
-          message: 'chore: version ${{ env.IMMICH_VERSION }}'
-          tag: ${{ env.IMMICH_VERSION }}
+          message: 'chore: version ${{ steps.output.outputs.version }}'
+          tag: ${{ steps.output.outputs.version }}
          push: true

  build_mobile:
@@ -119,35 +123,35 @@ jobs:

  prepare_release:
    runs-on: ubuntu-latest
-    needs: build_mobile
+    needs: [build_mobile, bump_version]
    permissions:
      actions: read # To download the app artifact
      # No content permissions are needed because it uses the app-token
    steps:
      - name: Generate a token
        id: generate-token
-        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          token: ${{ steps.generate-token.outputs.token }}
          persist-credentials: false

      - name: Download APK
-        uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
        with:
          name: release-apk-signed
          github-token: ${{ steps.generate-token.outputs.token }}

      - name: Create draft release
-        uses: softprops/action-gh-release@6da8fa9354ddfdc4aeace5fc48d7f679b5214090 # v2.4.1
+        uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
        with:
          draft: true
-          tag_name: ${{ env.IMMICH_VERSION }}
+          tag_name: ${{ needs.bump_version.outputs.version }}
          token: ${{ steps.generate-token.outputs.token }}
          generate_release_notes: true
          body_path: misc/release/notes.tmpl
--- a/.github/workflows/release-pr.yml
+++ b/.github/workflows/release-pr.yml
@@ -17,26 +17,26 @@ jobs:
    steps:
      - name: Generate a token
        id: generate-token
-        uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2.1.4
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          token: ${{ steps.generate-token.outputs.token }}
          persist-credentials: true
          ref: main

      - name: Install uv
-        uses: astral-sh/setup-uv@85856786d1ce8acfbcc2f13a5f3fbd6b938f9f41 # v7.1.2
+        uses: astral-sh/setup-uv@681c641aba71e4a1c380be3ab5e12ad51f415867 # v7.1.6

      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
@@ -159,7 +159,7 @@ jobs:

      - name: Create PR
        id: create-pr
-        uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v7.0.8
+        uses: peter-evans/create-pull-request@98357b18bf14b5342f975ff684046ec3b2a07725 # v8.0.0
        with:
          token: ${{ steps.generate-token.outputs.token }}
          commit-message: 'chore: release ${{ steps.bump-type.outputs.next }}'
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -0,0 +1,148 @@
+name: release.yml
+on:
+  pull_request:
+    types: [closed]
+    paths:
+      - CHANGELOG.md
+
+jobs:
+  # Maybe double check PR source branch?
+
+  merge_translations:
+    uses: ./.github/workflows/merge-translations.yml
+    permissions:
+      pull-requests: write
+    secrets:
+      PUSH_O_MATIC_APP_ID: ${{ secrets.PUSH_O_MATIC_APP_ID }}
+      PUSH_O_MATIC_APP_KEY: ${{ secrets.PUSH_O_MATIC_APP_KEY }}
+      WEBLATE_TOKEN: ${{ secrets.WEBLATE_TOKEN }}
+
+  build_mobile:
+    uses: ./.github/workflows/build-mobile.yml
+    needs: merge_translations
+    permissions:
+      contents: read
+    secrets:
+      KEY_JKS: ${{ secrets.KEY_JKS }}
+      ALIAS: ${{ secrets.ALIAS }}
+      ANDROID_KEY_PASSWORD: ${{ secrets.ANDROID_KEY_PASSWORD }}
+      ANDROID_STORE_PASSWORD: ${{ secrets.ANDROID_STORE_PASSWORD }}
+      # iOS secrets
+      APP_STORE_CONNECT_API_KEY_ID: ${{ secrets.APP_STORE_CONNECT_API_KEY_ID }}
+      APP_STORE_CONNECT_API_KEY_ISSUER_ID: ${{ secrets.APP_STORE_CONNECT_API_KEY_ISSUER_ID }}
+      APP_STORE_CONNECT_API_KEY: ${{ secrets.APP_STORE_CONNECT_API_KEY }}
+      IOS_CERTIFICATE_P12: ${{ secrets.IOS_CERTIFICATE_P12 }}
+      IOS_CERTIFICATE_PASSWORD: ${{ secrets.IOS_CERTIFICATE_PASSWORD }}
+      IOS_PROVISIONING_PROFILE: ${{ secrets.IOS_PROVISIONING_PROFILE }}
+      IOS_PROVISIONING_PROFILE_SHARE_EXTENSION: ${{ secrets.IOS_PROVISIONING_PROFILE_SHARE_EXTENSION }}misc/release/notes.tmpl
+      IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION: ${{ secrets.IOS_PROVISIONING_PROFILE_WIDGET_EXTENSION }}
+      IOS_DEVELOPMENT_PROVISIONING_PROFILE: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE }}
+      IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE_SHARE_EXTENSION }}
+      IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION: ${{ secrets.IOS_DEVELOPMENT_PROVISIONING_PROFILE_WIDGET_EXTENSION }}
+      FASTLANE_TEAM_ID: ${{ secrets.FASTLANE_TEAM_ID }}
+    with:
+      ref: main
+      environment: production
+
+  prepare_release:
+    runs-on: ubuntu-latest
+    needs: build_mobile
+    permissions:
+      actions: read # To download the app artifact
+    steps:
+      - name: Generate a token
+        id: generate-token
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
+        with:
+          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
+          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}
+
+      - name: Checkout
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+        with:
+          token: ${{ steps.generate-token.outputs.token }}
+          persist-credentials: false
+          ref: main
+
+      - name: Extract changelog
+        id: changelog
+        run: |
+          CHANGELOG_PATH=$RUNNER_TEMP/changelog.md
+          sed -n '1,/^---$/p' CHANGELOG.md | head -n -1 > $CHANGELOG_PATH
+          echo "path=$CHANGELOG_PATH" >> $GITHUB_OUTPUT
+          VERSION=$(sed -n 's/^# //p' $CHANGELOG_PATH)
+          echo "version=$VERSION" >> $GITHUB_OUTPUT
+
+      - name: Download APK
+        uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
+        with:
+          name: release-apk-signed
+          github-token: ${{ steps.generate-token.outputs.token }}
+
+      - name: Create draft release
+        uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
+        with:
+          tag_name: ${{ steps.version.outputs.result }}
+          token: ${{ steps.generate-token.outputs.token }}
+          body_path: ${{ steps.changelog.outputs.path }}
+          draft: true
+          files: |
+            docker/docker-compose.yml
+            docker/example.env
+            docker/hwaccel.ml.yml
+            docker/hwaccel.transcoding.yml
+            docker/prometheus.yml
+            *.apk
+
+      - name: Rename Outline document
+        uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0
+        continue-on-error: true
+        env:
+          OUTLINE_API_KEY: ${{ secrets.OUTLINE_API_KEY }}
+          VERSION: ${{ steps.changelog.outputs.version }}
+        with:
+          github-token: ${{ steps.generate-token.outputs.token }}
+          script: |
+            const outlineKey = process.env.OUTLINE_API_KEY;
+            const version = process.env.VERSION;
+            const parentDocumentId = 'da856355-0844-43df-bd71-f8edce5382d9';
+            const baseUrl = 'https://outline.immich.cloud';
+
+            const listResponse = await fetch(`${baseUrl}/api/documents.list`, {
+              method: 'POST',
+              headers: {
+                'Authorization': `Bearer ${outlineKey}`,
+                'Content-Type': 'application/json'
+              },
+              body: JSON.stringify({ parentDocumentId })
+            });
+
+            if (!listResponse.ok) {
+              throw new Error(`Outline list failed: ${listResponse.statusText}`);
+            }
+
+            const listData = await listResponse.json();
+            const allDocuments = listData.data || [];
+            const document = allDocuments.find(doc => doc.title === 'next');
+
+            if (document) {
+              console.log(`Found document 'next', renaming to '${version}'...`);
+
+              const updateResponse = await fetch(`${baseUrl}/api/documents.update`, {
+                method: 'POST',
+                headers: {
+                  'Authorization': `Bearer ${outlineKey}`,
+                  'Content-Type': 'application/json'
+                },
+                body: JSON.stringify({
+                  id: document.id,
+                  title: version
+                })
+              });
+
+              if (!updateResponse.ok) {
+                throw new Error(`Failed to rename document: ${updateResponse.statusText}`);
+              }
+            } else {
+              console.log('No document titled "next" found to rename');
+            }
--- a/.github/workflows/sdk.yml
+++ b/.github/workflows/sdk.yml
@@ -22,7 +22,7 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -31,7 +31,7 @@ jobs:
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0

      # Setup .npmrc file to publish to npm
-      - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+      - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './open-api/typescript-sdk/.nvmrc'
          registry-url: 'https://registry.npmjs.org'
--- a/.github/workflows/static_analysis.yml
+++ b/.github/workflows/static_analysis.yml
@@ -55,7 +55,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -69,7 +69,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -77,7 +77,7 @@ jobs:
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
@@ -114,14 +114,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './cli/.nvmrc'
          cache: 'pnpm'
@@ -161,14 +161,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './cli/.nvmrc'
          cache: 'pnpm'
@@ -203,14 +203,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './web/.nvmrc'
          cache: 'pnpm'
@@ -247,14 +247,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './web/.nvmrc'
          cache: 'pnpm'
@@ -285,22 +285,22 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './web/.nvmrc'
          cache: 'pnpm'
          cache-dependency-path: '**/pnpm-lock.yaml'
      - name: Install dependencies
-        run: pnpm --filter=immich-web install --frozen-lockfile
+        run: pnpm --filter=immich-i18n install --frozen-lockfile
      - name: Format
-        run: pnpm --filter=immich-web format:i18n
+        run: pnpm --filter=immich-i18n format:fix
      - name: Find file changes
        uses: tj-actions/verify-changed-files@a1c6acee9df209257a246f2cc6ae8cb6581c1edf # v20.0.4
        id: verify-changed-files
@@ -333,14 +333,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './e2e/.nvmrc'
          cache: 'pnpm'
@@ -379,7 +379,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          submodules: 'recursive'
@@ -387,7 +387,7 @@ jobs:
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
@@ -418,7 +418,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          submodules: 'recursive'
@@ -426,7 +426,7 @@ jobs:
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './e2e/.nvmrc'
          cache: 'pnpm'
@@ -473,7 +473,7 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          submodules: 'recursive'
@@ -481,7 +481,7 @@ jobs:
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './e2e/.nvmrc'
          cache: 'pnpm'
@@ -500,8 +500,16 @@ jobs:
        run: docker compose build
        if: ${{ !cancelled() }}
      - name: Run e2e tests (web)
+        env:
+          CI: true
        run: npx playwright test
        if: ${{ !cancelled() }}
+      - name: Archive test results
+        uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
+        if: success() || failure()
+        with:
+          name: e2e-web-test-results-${{ matrix.runner }}
+          path: e2e/playwright-report/
  success-check-e2e:
    name: End-to-End Tests Success
    needs: [e2e-tests-server-cli, e2e-tests-web]
@@ -526,7 +534,7 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -558,17 +566,14 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Install uv
-        uses: astral-sh/setup-uv@85856786d1ce8acfbcc2f13a5f3fbd6b938f9f41 # v7.1.2
-      - uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
-        # TODO: add caching when supported (https://github.com/actions/setup-python/pull/818)
-        # with:
-        #   python-version: 3.11
-        #   cache: 'uv'
+        uses: astral-sh/setup-uv@681c641aba71e4a1c380be3ab5e12ad51f415867 # v7.1.6
+        with:
+          python-version: 3.11
      - name: Install dependencies
        run: |
          uv sync --extra cpu
@@ -602,14 +607,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './.github/.nvmrc'
          cache: 'pnpm'
@@ -631,7 +636,7 @@ jobs:
          app-id: ${{ secrets.PUSH_O_MATIC_APP_ID }}
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

-      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
@@ -653,14 +658,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
@@ -715,14 +720,14 @@ jobs:
          private-key: ${{ secrets.PUSH_O_MATIC_APP_KEY }}

      - name: Checkout code
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
        with:
          persist-credentials: false
          token: ${{ steps.token.outputs.token }}
      - name: Setup pnpm
        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0
      - name: Setup Node
-        uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
        with:
          node-version-file: './server/.nvmrc'
          cache: 'pnpm'
--- a/.github/workflows/weblate-lock.yml
+++ b/.github/workflows/weblate-lock.yml
@@ -36,8 +36,7 @@ jobs:
          github-token: ${{ steps.token.outputs.token }}
          filters: |
            i18n:
-              - 'i18n/!(en)**\.json'
-          exclude-branches: 'chore/translations'
+              - modified: 'i18n/!(en)**\.json'
          skip-force-logic: 'true'

  enforce-lock:
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -52,7 +52,7 @@
  },
  "cSpell.words": ["immich"],
  "editor.formatOnSave": true,
-  "eslint.validate": ["javascript", "svelte"],
+  "eslint.validate": ["javascript", "typescript", "svelte"],
  "explorer.fileNesting.enabled": true,
  "explorer.fileNesting.patterns": {
    "*.dart": "${capture}.g.dart,${capture}.gr.dart,${capture}.drift.dart",
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -0,0 +1,281 @@
+
+# v2.5.0
+
+# v2.4.0
+
+## Highlights
+
+Welcome to the release `v2.4.0` of Immich. This release focuses on bug fixes, QoL improvements, and polished UI components across mobile and the web. Let's dive right in.
+
+* Show the owner's name in the shared album
+* Command palette
+* Change search type directly in the search bar
+* Better action button placement in the mobile asset viewer
+* Notable fix: fix an issue where metadata extraction could fail on high concurrency
+
+### Show the owner's name in the shared album.
+
+On the web, in shared albums, you can now toggle an option to display the asset's owner name at the bottom right corner of the thumbnail.
+
+ ![](/api/attachments.redirect?id=3e4d661e-4015-4b04-b8f3-a055e9d4db01 " =1071x758")
+
+### Command palette
+
+The web app now has an integrated command palette, which can be opened  with `ctrl + k` on Windows/Linux or `cmd + k` on macOS. The first iteration of this lets you quickly navigate between administration pages by typing the name of the page you want to go to. It also already supports some common actions when on the respective admin pages, many of which also support shortcuts. Have a look around and check them out! 
+
+ ![](/api/attachments.redirect?id=d6bc1387-f2cb-45c1-9287-4ee8176dfb41 " =748x652")
+
+### Change search type directly in the search bar
+
+You can now click on the pill from the search bar to select a different search type without opening the search filter panel.
+
+ ![](/api/attachments.redirect?id=97a90b16-8b08-4292-bcb5-46aa75c01043 " =1033x199")
+
+
+### Better placement of action buttons in the mobile asset viewer
+
+Previously, to perform a specific action on the asset, you needed first to swipe up to open the detail panel, then swipe all the way to the right and tap the action. It limits the discoverability of some actions. To help resolve that issue, all the action buttons in the detail panel are now moved to the drop-down menu when tapping on the vertical dot icon (or kebab menu), along with some buttons that used to be on the top bar, clearing up space to display more useful information when viewing the asset.
+
+
+ ![](/api/attachments.redirect?id=f68f8af5-2aaf-4625-821f-6c129da7fed3 " =342x741")
+
+## What's Changed
+
+### 🫥 Deprecated Changes
+
+* feat: queues by @jrasm91 in <https://github.com/immich-app/immich/pull/24142>
+
+### 🚀 Features
+
+* feat: improve performance: don't sort timeline buckets from server by @midzelis in <https://github.com/immich-app/immich/pull/24032>
+* feat: command palette by @danieldietzler in <https://github.com/immich-app/immich/pull/23693>
+* feat(web): Shared album owner labels by @xCJPECKOVERx and @idubnori in <https://github.com/immich-app/immich/pull/21171>
+* feat(mobile): persist album sorting & layout in settings by @YarosMallorca in <https://github.com/immich-app/immich/pull/22133>
+* feat: queue detail page by @jrasm91 in <https://github.com/immich-app/immich/pull/24352>
+* chore(mobile): add kebabu menu in asset viewer by @idubnori in <https://github.com/immich-app/immich/pull/24387>
+* feat(mobile): create new album from add to modal by @YarosMallorca in <https://github.com/immich-app/immich/pull/24431>
+* feat(mobile): move buttons in the bottom sheet to the kebabu menu by @idubnori in <https://github.com/immich-app/immich/pull/24175>
+
+### 🌟 Enhancements
+
+* feat(web): allow navigating the map with arrow keys by @lukashass in <https://github.com/immich-app/immich/pull/24080>
+* feat: separate camera and lens info in detail panel by @fabianbees in <https://github.com/immich-app/immich/pull/23670>
+* feat(web): shared link card tweaks by @jrasm91 in <https://github.com/immich-app/immich/pull/24192>
+* feat(server): exclude syncthing folders from external libraries by @SaphuA in <https://github.com/immich-app/immich/pull/24240>
+* feat(web): search type selection dropdown by @YarosMallorca in <https://github.com/immich-app/immich/pull/24091>
+* feat: header context menu by @jrasm91 in <https://github.com/immich-app/immich/pull/24374>
+* feat(mobile): move top bar buttons into kebabu menu in AssetViewer by @idubnori in <https://github.com/immich-app/immich/pull/24461>
+* feat(web): asset selection bar in tags view by @YarosMallorca in <https://github.com/immich-app/immich/pull/24522>
+* feat(web): slideshow feature on shared albums by @YarosMallorca in <https://github.com/immich-app/immich/pull/24598>
+* feat: replace heart icons to thumbs-up across activity by @idubnori in <https://github.com/immich-app/immich/pull/24590>
+
+### 🐛 Bug fixes
+
+* fix: effect loop by @jrasm91 in <https://github.com/immich-app/immich/pull/24014>
+* fix: do not clear hash on updated_at change by @shenlong-tanwen in <https://github.com/immich-app/immich/pull/24039>
+* fix: disable animation "add to" action menu by @bwees in <https://github.com/immich-app/immich/pull/24040>
+* fix: Use correct app store link by @Mraedis in <https://github.com/immich-app/immich/pull/24062>
+* fix: show archived assets in favorite page by @bwees in <https://github.com/immich-app/immich/pull/24052>
+* fix(mobile): first video memory on page doesn't play by @YarosMallorca in <https://github.com/immich-app/immich/pull/23906>
+* feat(web): show detected faces in spherical photos by @meesfrensel in <https://github.com/immich-app/immich/pull/23974>
+* fix: add users to album by @danieldietzler in <https://github.com/immich-app/immich/pull/24133>
+* fix(server): sanitize DB_URL for pg_dumpall to remove unknown query params by @lutostag in <https://github.com/immich-app/immich/pull/23333>
+* fix: use proper updatedAt value in local assets by @shenlong-tanwen in <https://github.com/immich-app/immich/pull/24137>
+* fix: albums page reactivity loops by @danieldietzler in <https://github.com/immich-app/immich/pull/24046>
+* fix: getAspectRatio fallback to db width and height by @shenlong-tanwen in <https://github.com/immich-app/immich/pull/24131>
+* fix(web): fix support & feedback modal wrapping by @Snowknight26 in <https://github.com/immich-app/immich/pull/24018>
+* fix: don't get OCR data in shared link by @alextran1502 in <https://github.com/immich-app/immich/pull/24152>
+* fix: duration extraction by @jrasm91 in <https://github.com/immich-app/immich/pull/24178>
+* fix(ml): Upgrade ONNX Runtime to v1.22.1 to fix ROCm build failures by @LukaPrebil in <https://github.com/immich-app/immich/pull/24045>
+* fix: update timeline-manager after archive actions by @midzelis in <https://github.com/immich-app/immich/pull/24010>
+* fix: theme switcher by @jrasm91 in <https://github.com/immich-app/immich/pull/24209>
+* fix: label 'for' attributes in user-api-key-grid by @kimsey0 in <https://github.com/immich-app/immich/pull/24232>
+* fix(mobile): enable backup text overflows by @YarosMallorca in <https://github.com/immich-app/immich/pull/24227>
+* fix(web): integrate zoom toggle button into panorama photo viewer by @meesfrensel in <https://github.com/immich-app/immich/pull/24189>
+* fix(web): use full tag path when creating nested subtags by @NiklasvonM in <https://github.com/immich-app/immich/pull/24249>
+* fix: only generate memory based on users assets by @alextran1502 in <https://github.com/immich-app/immich/pull/24151>
+* fix(mobile): docs link by @mmomjian in <https://github.com/immich-app/immich/pull/24277>
+* fix(server): use bigrams for cjk by @mertalev in <https://github.com/immich-app/immich/pull/24285>
+* fix(ml): do not upscale preview by @mertalev in <https://github.com/immich-app/immich/pull/24322>
+* fix(web): open onboarding documentation link in new tab by @carbonemys in <https://github.com/immich-app/immich/pull/24289>
+* fix(mobile): use correct timezone displayed in the info sheet by @kao-byte in <https://github.com/immich-app/immich/pull/24310>
+* fix(web): folder view sort oder by @etnoy in <https://github.com/immich-app/immich/pull/24337>
+* fix(server): do not delete offline assets by @mertalev in <https://github.com/immich-app/immich/pull/24355>
+* fix: exposure info and better readability by @alextran1502 in <https://github.com/immich-app/immich/pull/24344>
+* fix: Adjust the zoom level by @jforseth210 in <https://github.com/immich-app/immich/pull/24353>
+* fix: local full sync on Android on resume by @alextran1502 in <https://github.com/immich-app/immich/pull/24348>
+* fix(web): Add minimum content size to logo for consistent visual on small screens by @kiloomar in <https://github.com/immich-app/immich/pull/24372>
+* fix: use adjustment time in iOS for hash reset by @shenlong-tanwen in <https://github.com/immich-app/immich/pull/24047>
+* fix(server): update exiftool-vendored to v34 for more robust metadata extraction by @skatsubo in <https://github.com/immich-app/immich/pull/24424>
+* fix(mobile): cannot create album while name field is focused by @YarosMallorca in <https://github.com/immich-app/immich/pull/24449>
+* fix(web): \[album table view\] long album title overflows table row by @simonkub in <https://github.com/immich-app/immich/pull/24450>
+* fix(mobile): fix overflow text in backup card by @YarosMallorca in <https://github.com/immich-app/immich/pull/24448>
+* fix(mobile): timeline bottom padding on selection by @YarosMallorca in <https://github.com/immich-app/immich/pull/24480>
+* feat(mobile): Localized backup upload details page by @ArnyminerZ in <https://github.com/immich-app/immich/pull/21136>
+* fix(mobile): iOS local permission dialog extra whitespace by @kurtmckee in <https://github.com/immich-app/immich/pull/24491>
+* fix(mobile): versionStatus.message text overflow by @idubnori in <https://github.com/immich-app/immich/pull/24504>
+* fix(server): prevent metadata extraction failures on large video files by @hubert-taieb in <https://github.com/immich-app/immich/pull/24094>
+* fix(web): show inferred timezone in date editor by @skatsubo in <https://github.com/immich-app/immich/pull/24513>
+* fix(mobile): local videos with '#' don't play on android by @YarosMallorca in <https://github.com/immich-app/immich/pull/24373>
+* fix: refresh appear in list after asset is added to a current or new album by @alextran1502 in <https://github.com/immich-app/immich/pull/24523>
+* fix(mobile): birthday off by one day on remote by @YarosMallorca in <https://github.com/immich-app/immich/pull/24527>
+* fix(web): download panel being hidden by admin sidebar by @diogotcorreia in <https://github.com/immich-app/immich/pull/24583>
+* fix(web): recent search doesn't use search type by @YarosMallorca in <https://github.com/immich-app/immich/pull/24578>
+* fix(server): only extract image's duration if format supports animation by @meesfrensel in <https://github.com/immich-app/immich/pull/24587>
+* fix(mobile): local delete missing from sheet on some routes  by @YarosMallorca in <https://github.com/immich-app/immich/pull/24505>
+* fix(mobile): better UI for metadata panel by @kao-byte in <https://github.com/immich-app/immich/pull/24428>
+* fix: shared link expiration and small styling by @alextran1502 in <https://github.com/immich-app/immich/pull/24566>
+
+### 📚 Documentation
+
+* docs: DB_STORAGE_TYPE is only used by the database container by @dionysius in <https://github.com/immich-app/immich/pull/24215>
+* fix(docs): build `cli` for e2e tests by @roschaefer in <https://github.com/immich-app/immich/pull/24184>
+* docs(faq): add more info on archiving by @etnoy in <https://github.com/immich-app/immich/pull/24326>
+* fix(docs): server and machine-learning use IMMICH_HOST and IMMICH_PORT by @dionysius in <https://github.com/immich-app/immich/pull/24335>
+* fix: prevent OOM on nginx reverse proxy servers by @NicholasFlamy in <https://github.com/immich-app/immich/pull/24351>
+* fix(docs): obsolete docs about rootless docker by @roschaefer in <https://github.com/immich-app/immich/pull/24376>
+* fix(docs): websockets in nginx example by @fourthwall in <https://github.com/immich-app/immich/pull/24411>
+* fix(docs): slow upload speed with example nginx reverse proxy config by @goalie2002 in <https://github.com/immich-app/immich/pull/24490>
+* fix(docs): typo in maintenance mode command by @bartvanvelden in <https://github.com/immich-app/immich/pull/24518>
+
+### 🌐 Translations
+
+* chore: add new language requests by @danieldietzler in <https://github.com/immich-app/immich/pull/23991>
+
+## New Contributors
+
+* @ujjwal123123 made their first contribution in <https://github.com/immich-app/immich/pull/24101>
+* @lutostag made their first contribution in <https://github.com/immich-app/immich/pull/23333>
+* @LukaPrebil made their first contribution in <https://github.com/immich-app/immich/pull/24045>
+* @kimsey0 made their first contribution in <https://github.com/immich-app/immich/pull/24232>
+* @SaphuA made their first contribution in <https://github.com/immich-app/immich/pull/24240>
+* @dionysius made their first contribution in <https://github.com/immich-app/immich/pull/24215>
+* @NiklasvonM made their first contribution in <https://github.com/immich-app/immich/pull/24249>
+* @kao-byte made their first contribution in <https://github.com/immich-app/immich/pull/24098>
+* @carbonemys made their first contribution in <https://github.com/immich-app/immich/pull/24289>
+* @kiloomar made their first contribution in <https://github.com/immich-app/immich/pull/24372>
+* @fourthwall made their first contribution in <https://github.com/immich-app/immich/pull/24411>
+* @simonkub made their first contribution in <https://github.com/immich-app/immich/pull/24450>
+* @ArnyminerZ made their first contribution in <https://github.com/immich-app/immich/pull/21136>
+* @kurtmckee made their first contribution in <https://github.com/immich-app/immich/pull/24491>
+* @hubert-taieb made their first contribution in <https://github.com/immich-app/immich/pull/24094>
+* @bartvanvelden made their first contribution in <https://github.com/immich-app/immich/pull/24518>
+
+**Full Changelog**: <https://github.com/immich-app/immich/compare/v2.3.1...v2.4.0>
+
+<!-- Release notes generated using configuration in .github/release.yml at main -->
+
+## What's Changed
+### 🚀 Features
+* feat: workflow ui by @alextran1502 in https://github.com/immich-app/immich/pull/24190
+* feat: disable admin setup by @jrasm91 in https://github.com/immich-app/immich/pull/24628
+* feat: free up space by @alextran1502 in https://github.com/immich-app/immich/pull/24999
+* feat: use fastlane sigh to manage signing profiles by @alextran1502 in https://github.com/immich-app/immich/pull/25089
+* feat: image editing by @bwees in https://github.com/immich-app/immich/pull/24155
+* feat: add cloud id during native sync by @shenlong-tanwen in https://github.com/immich-app/immich/pull/20418
+* chore: web editor improvements by @bwees in https://github.com/immich-app/immich/pull/25169
+* feat: restore database backups by @insertish in https://github.com/immich-app/immich/pull/23978
+### 🌟 Enhancements
+* feat: focus jumped-to item in timeline by @bo0tzz in https://github.com/immich-app/immich/pull/24738
+* feat: modal routes by @jrasm91 in https://github.com/immich-app/immich/pull/24726
+* feat: prefer admin settings page over users page by @jrasm91 in https://github.com/immich-app/immich/pull/24780
+* feat: shared link edit by @jrasm91 in https://github.com/immich-app/immich/pull/24783
+* feat(mobile): use tabular figures in backup info card by @wrbl606 in https://github.com/immich-app/immich/pull/24820
+* feat(mobile): album options to kebab menu by @idubnori in https://github.com/immich-app/immich/pull/24204
+* feat: Hide/show controls when zoom state changes by @Lauritz-Tieste in https://github.com/immich-app/immich/pull/24784
+* feat(server): Support camera `make`, `model`, and `lensModel` in Storage Template by @rahul-kumar-saini in https://github.com/immich-app/immich/pull/24650
+* feat(ml): update ONNX Runtime, OpenVINO and ROCm stack by @savely-krasovsky in https://github.com/immich-app/immich/pull/23458
+* chore(server): Vchord 1.0 support by @mmomjian in https://github.com/immich-app/immich/pull/23845
+* feat(web): Add coordinate pair location searching. by @GustavJones in https://github.com/immich-app/immich/pull/24799
+* feat: show asset owners for editors in shared albums by @ama156 in https://github.com/immich-app/immich/pull/24890
+* feat(web): undo delete single asset by @YarosMallorca in https://github.com/immich-app/immich/pull/24439
+* feat(server): implement switchable logging formats (console/json) by @DanielRamosAcosta in https://github.com/immich-app/immich/pull/24791
+* chore(web): bump immich/ui for tooltips by @jrasm91 in https://github.com/immich-app/immich/pull/24632
+* feat(web): star rating keyboard shortcut by @cbochs in https://github.com/immich-app/immich/pull/24620
+* feat: bulk asset metadata endpoints by @jrasm91 in https://github.com/immich-app/immich/pull/25133
+* feat(mobile): 2026 font by @alextran1502 in https://github.com/immich-app/immich/pull/25213
+* feat(web): search albums by description by @YarosMallorca in https://github.com/immich-app/immich/pull/25244
+* feat(web): 2026 font by @alextran1502 in https://github.com/immich-app/immich/pull/25174
+* chore: dart http foreground upload by @alextran1502 in https://github.com/immich-app/immich/pull/24883
+* feat: update intel compute driver by @savely-krasovsky in https://github.com/immich-app/immich/pull/25259
+* feat: download original asset by @danieldietzler in https://github.com/immich-app/immich/pull/25302
+* feat: allow /memory?id= in AndroidManifest by @arne182 in https://github.com/immich-app/immich/pull/25373
+### 🐛 Bug fixes
+* fix(maintenance): prevent enable/disable maintenance CLI hanging on occasion by @insertish in https://github.com/immich-app/immich/pull/24713
+* fix(web): display jxl original by @mertalev in https://github.com/immich-app/immich/pull/24766
+* fix(web): stale album info by @jrasm91 in https://github.com/immich-app/immich/pull/24787
+* fix: album card timezone by @danieldietzler in https://github.com/immich-app/immich/pull/24855
+* fix(web): let slideshow videos play (#19601) by @keanucz in https://github.com/immich-app/immich/pull/24914
+* fix(server): update exiftool-vendored to v34.3 for correct colon-less timezone parsing by @dosten in https://github.com/immich-app/immich/pull/24979
+* fix(mobile): hide delete action for remote-only assets by @skrmc in https://github.com/immich-app/immich/pull/25010
+* fix: import config from json by @MontejoJorge in https://github.com/immich-app/immich/pull/25030
+* fix: search input has incorrect focus state after closing the search filter modal by @alextran1502 in https://github.com/immich-app/immich/pull/24886
+* fix(web): duplicate key error and enable expiration editing for expired shared links by @timonrieger in https://github.com/immich-app/immich/pull/24686
+* fix: shared-link-mapper by @jrasm91 in https://github.com/immich-app/immich/pull/24794
+* fix(server): migrate motion part of live photo by @NikhilAlapati in https://github.com/immich-app/immich/pull/24688
+* fix(web): use asset date for change date popup when single asset selected by @majiayu000 in https://github.com/immich-app/immich/pull/25076
+* fix(web): long text taking more width than expected in duplicate manager by @HemendraSinghShekhawat in https://github.com/immich-app/immich/pull/24547
+* fix(web): broken asset urls if shared link has photos in name by @YarosMallorca in https://github.com/immich-app/immich/pull/24451
+* fix(server): search statistics with personIds returns 500 by @majiayu000 in https://github.com/immich-app/immich/pull/25074
+* fix(web): server stats layout by @meesfrensel in https://github.com/immich-app/immich/pull/25085
+* fix: enter now submits the date modals by @fabb in https://github.com/immich-app/immich/pull/25053
+* fix(web): improve text contrast in minimized upload panel by @majiayu000 in https://github.com/immich-app/immich/pull/25075
+* fix: propagate iCloud Shared Album flag by @alextran1502 in https://github.com/immich-app/immich/pull/25060
+* fix: description does not rerender when navigating between assets by @alextran1502 in https://github.com/immich-app/immich/pull/25137
+* fix(server): avoid upserting empty metadata array by @timonrieger in https://github.com/immich-app/immich/pull/25143
+* fix(server): Document HTTP 200 response for duplicate uploads in OpenAPI by @timonrieger in https://github.com/immich-app/immich/pull/25148
+* fix(web): person asset count doesn't update when navigating by @YarosMallorca in https://github.com/immich-app/immich/pull/24438
+* fix(mobile): remove weird zooming behaviour on videos and play/pause button delay by @goalie2002 in https://github.com/immich-app/immich/pull/24006
+* fix: unlock properties after successful sidecar write by @danieldietzler in https://github.com/immich-app/immich/pull/25168
+* fix(web): show relevant navbar options for partner assets by @YarosMallorca in https://github.com/immich-app/immich/pull/24832
+* fix(web): added background gradient for video time visibility by @HemendraSinghShekhawat in https://github.com/immich-app/immich/pull/25138
+* feat(mobile): do not restore locally deleted assets during trash sync (Android) by @PeterOmbodi in https://github.com/immich-app/immich/pull/24218
+* fix: asset local type casting by @alextran1502 in https://github.com/immich-app/immich/pull/25214
+* fix(web): ocr button not clickable for stacked assets by @YarosMallorca in https://github.com/immich-app/immich/pull/25210
+* fix(web): Handle upload failures from public users by @juliancarrivick in https://github.com/immich-app/immich/pull/24826
+* fix(mobile): prevent system UI from hiding on drag down gesture by @goalie2002 in https://github.com/immich-app/immich/pull/25240
+* fix: migration order by @jrasm91 in https://github.com/immich-app/immich/pull/25249
+* fix(web): redirect to login by @jrasm91 in https://github.com/immich-app/immich/pull/25254
+* fix(mobile): improve asset transition back to timeline by @goalie2002 in https://github.com/immich-app/immich/pull/24485
+* fix: dark mode appbar color by @akashKarmakar02 in https://github.com/immich-app/immich/pull/24976
+* fix(web): add min-width to setting input field by @K0lin in https://github.com/immich-app/immich/pull/25317
+* fix(server): api key update checks by @jrasm91 in https://github.com/immich-app/immich/pull/25363
+* fix(mobile): album selector icon visibility by @ByteSizedMarius in https://github.com/immich-app/immich/pull/25311
+* fix(mobile): indicators not showing on thumbnail tile after asset change in viewer by @goalie2002 in https://github.com/immich-app/immich/pull/25297
+### 📚 Documentation
+* fix: product keys wording in commercial guidelines faq by @bo0tzz in https://github.com/immich-app/immich/pull/24765
+* docs: config options for hardware transcoding by @Javex in https://github.com/immich-app/immich/pull/24853
+* fix: use my.immich.app as url placeholder in docs by @bo0tzz in https://github.com/immich-app/immich/pull/25153
+* chore:  update Thai README (remove "under active development" lines) by @ppnplus in https://github.com/immich-app/immich/pull/25208
+* fix(docs): add missing mermaid dependency and configuration by @bdoerfchen in https://github.com/immich-app/immich/pull/25247
+* chore(docs): update RAM req by @mmomjian in https://github.com/immich-app/immich/pull/25344
+
+## New Contributors
+* @wrbl606 made their first contribution in https://github.com/immich-app/immich/pull/24820
+* @keanucz made their first contribution in https://github.com/immich-app/immich/pull/24914
+* @rahul-kumar-saini made their first contribution in https://github.com/immich-app/immich/pull/24650
+* @dosten made their first contribution in https://github.com/immich-app/immich/pull/24979
+* @GustavJones made their first contribution in https://github.com/immich-app/immich/pull/24799
+* @skrmc made their first contribution in https://github.com/immich-app/immich/pull/25010
+* @ama156 made their first contribution in https://github.com/immich-app/immich/pull/24890
+* @DanielRamosAcosta made their first contribution in https://github.com/immich-app/immich/pull/24791
+* @NikhilAlapati made their first contribution in https://github.com/immich-app/immich/pull/24688
+* @flpcury made their first contribution in https://github.com/immich-app/immich/pull/24867
+* @Javex made their first contribution in https://github.com/immich-app/immich/pull/24853
+* @majiayu000 made their first contribution in https://github.com/immich-app/immich/pull/25076
+* @HemendraSinghShekhawat made their first contribution in https://github.com/immich-app/immich/pull/24547
+* @cbochs made their first contribution in https://github.com/immich-app/immich/pull/24620
+* @fabb made their first contribution in https://github.com/immich-app/immich/pull/25053
+* @ppnplus made their first contribution in https://github.com/immich-app/immich/pull/25208
+* @juliancarrivick made their first contribution in https://github.com/immich-app/immich/pull/24826
+* @bdoerfchen made their first contribution in https://github.com/immich-app/immich/pull/25247
+* @akashKarmakar02 made their first contribution in https://github.com/immich-app/immich/pull/24976
+* @K0lin made their first contribution in https://github.com/immich-app/immich/pull/25317
+* @NAM-MAN made their first contribution in https://github.com/immich-app/immich/pull/25320
+* @ByteSizedMarius made their first contribution in https://github.com/immich-app/immich/pull/25311
+* @arne182 made their first contribution in https://github.com/immich-app/immich/pull/25373
+
+**Full Changelog**: https://github.com/immich-app/immich/compare/v2.4.1...v2.5.0
+
+---
+
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -0,0 +1,31 @@
+# Contributing to Immich
+
+We appreciate every contribution, and we're happy about every new contributor. So please feel invited to help make Immich a better product!
+
+## Getting started
+
+To get you started quickly we have detailed guides for the dev setup on our [website](https://docs.immich.app/developer/setup). If you prefer, you can also use [Devcontainers](https://docs.immich.app/developer/devcontainers).
+There are also additional resources about Immich's architecture, database migrations, the use of OpenAPI, and more in our [developer documentation](https://docs.immich.app/developer/architecture).
+
+## General
+
+Please try to keep pull requests as focused as possible. A PR should do exactly one thing and not bleed into other, unrelated areas. The smaller a PR, the fewer changes are likely needed, and the quicker it will likely be merged. For larger/more impactful PRs, please reach out to us first to discuss your plans. The best way to do this is through our [Discord](https://discord.immich.app). We have a dedicated `#contributing` channel there. Additionally, please fill out the entire template when opening a PR.
+
+## Finding work
+
+If you are looking for something to work on, there are discussions and issues with a `good-first-issue` label on them. These are always a good starting point. If none of them sound interesting or fit your skill set, feel free to reach out on our Discord. We're happy to help you find something to work on!
+
+## Use of generative AI
+
+We generally discourage PRs entirely generated by an LLM. For any part generated by an LLM, please put extra effort into your self-review. By using generative AI without proper self-review, the time you save ends up being more work we need to put in for proper reviews and code cleanup. Please keep that in mind when submitting code by an LLM. Clearly state the use of LLMs/(generative) AI in your pull request as requested by the template.
+
+## Feature freezes
+
+From time to time, we put a feature freeze on parts of the codebase. For us, this means we won't accept most PRs that make changes in that area. Exempted from this are simple bug fixes that require only minor changes. We will close feature PRs that target a feature-frozen area, even if that feature is highly requested and you put a lot of work into it. Please keep that in mind, and if you're ever uncertain if a PR would be accepted, reach out to us first (e.g., in the aforementioned `#contributing` channel). We hate to throw away work. Currently, we have feature freezes on:
+
+* Sharing/Asset ownership
+* (External) libraries
+
+## Non-code contributions
+
+If you want to contribute to Immich but you don't feel comfortable programming in our tech stack, there are other ways you can help the team. All our translations are done through [Weblate](https://hosted.weblate.org/projects/immich). These rely entirely on the community; if you speak a language that isn't fully translated yet, submitting translations there is greatly appreciated! If you like helping others, answering Q&A discussions here on GitHub and replying to people on our Discord is also always appreciated.
--- a/3
+++ b/3
@@ -17,6 +17,9 @@ dev-docs:
 e2e:
 	@trap 'make e2e-down' EXIT; COMPOSE_BAKE=true docker compose -f ./e2e/docker-compose.yml up --remove-orphans

+e2e-dev:
+	@trap 'make e2e-down' EXIT; COMPOSE_BAKE=true docker compose -f ./e2e/docker-compose.dev.yml up --remove-orphans
+
 e2e-update:
 	@trap 'make e2e-down' EXIT; COMPOSE_BAKE=true docker compose -f ./e2e/docker-compose.yml up --build -V --remove-orphans

--- a/README.md
+++ b/README.md
@@ -118,16 +118,16 @@ Read more about translations [here](https://docs.immich.app/developer/translatio

 ## Star history

-<a href="https://star-history.com/#immich-app/immich&Date">
+<a href="https://star-history.com/#immich-app/immich&type=date&legend=top-left">
 <picture>
-   <source media="(prefers-color-scheme: dark)" srcset="https://api.star-history.com/svg?repos=immich-app/immich&type=Date&theme=dark" />
-   <source media="(prefers-color-scheme: light)" srcset="https://api.star-history.com/svg?repos=immich-app/immich&type=Date" />
-   <img alt="Star History Chart" src="https://api.star-history.com/svg?repos=immich-app/immich&type=Date" width="100%" />
+   <source media="(prefers-color-scheme: dark)" srcset="https://api.star-history.com/svg?repos=immich-app/immich&type=date&theme=dark" />
+   <source media="(prefers-color-scheme: light)" srcset="https://api.star-history.com/svg?repos=immich-app/immich&type=date" />
+   <img alt="Star History Chart" src="https://api.star-history.com/svg?repos=immich-app/immich&type=date" width="100%" />
 </picture>
 </a>

 ## Contributors

-<a href="https://github.com/alextran1502/immich/graphs/contributors">
+<a href="https://github.com/immich-app/immich/graphs/contributors">
  <img src="https://contrib.rocks/image?repo=immich-app/immich" width="100%"/>
 </a>
--- a/cli/.nvmrc
+++ b/cli/.nvmrc
@@ -1 +1 @@
-24.11.0
+24.13.0
--- a/cli/Dockerfile
+++ b/cli/Dockerfile
@@ -1,4 +1,4 @@
-FROM node:22.16.0-alpine3.20@sha256:2289fb1fba0f4633b08ec47b94a89c7e20b829fc5679f9b7b298eaa2f1ed8b7e AS core
+FROM node:24.1.0-alpine3.20@sha256:8fe019e0d57dbdce5f5c27c0b63d2775cf34b00e3755a7dea969802d7e0c2b25 AS core

 WORKDIR /usr/src/app
 COPY package* pnpm* .pnpmfile.cjs ./
--- a/cli/package.json
+++ b/cli/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@immich/cli",
-  "version": "2.2.101",
+  "version": "2.2.106",
  "description": "Command Line Interface (CLI) for Immich",
  "type": "module",
  "exports": "./dist/index.js",
@@ -20,7 +20,7 @@
    "@types/lodash-es": "^4.17.12",
    "@types/micromatch": "^4.0.9",
    "@types/mock-fs": "^4.13.1",
-    "@types/node": "^22.19.0",
+    "@types/node": "^24.10.8",
    "@vitest/coverage-v8": "^3.0.0",
    "byte-size": "^9.0.0",
    "cli-progress": "^3.12.0",
@@ -28,15 +28,15 @@
    "eslint": "^9.14.0",
    "eslint-config-prettier": "^10.1.8",
    "eslint-plugin-prettier": "^5.1.3",
-    "eslint-plugin-unicorn": "^60.0.0",
+    "eslint-plugin-unicorn": "^62.0.0",
    "globals": "^16.0.0",
    "mock-fs": "^5.2.0",
-    "prettier": "^3.2.5",
+    "prettier": "^3.7.4",
    "prettier-plugin-organize-imports": "^4.0.0",
    "typescript": "^5.3.3",
    "typescript-eslint": "^8.28.0",
    "vite": "^7.0.0",
-    "vite-tsconfig-paths": "^5.0.0",
+    "vite-tsconfig-paths": "^6.0.0",
    "vitest": "^3.0.0",
    "vitest-fetch-mock": "^0.4.0",
    "yaml": "^2.3.1"
@@ -69,6 +69,6 @@
    "micromatch": "^4.0.8"
  },
  "volta": {
-    "node": "24.11.0"
+    "node": "24.13.0"
  }
 }
--- a/cli/src/utils.spec.ts
+++ b/cli/src/utils.spec.ts
@@ -299,7 +299,7 @@ describe('crawl', () => {
          .map(([file]) => file);

        // Compare file's content instead of path since a file can be represent in multiple ways.
-        expect(actual.map((path) => readContent(path)).sort()).toEqual(expected.sort());
+        expect(actual.map((path) => readContent(path)).toSorted()).toEqual(expected.toSorted());
      });
    }
  });
--- a/cli/src/utils.ts
+++ b/cli/src/utils.ts
@@ -160,7 +160,7 @@ export const crawl = async (options: CrawlOptions): Promise<string[]> => {
    ignore: [`**/${exclusionPattern}`],
  });
  globbedFiles.push(...crawledFiles);
-  return globbedFiles.sort();
+  return globbedFiles.toSorted();
 };

 export const sha1 = (filepath: string) => {
--- a/cli/tsconfig.json
+++ b/cli/tsconfig.json
@@ -9,7 +9,7 @@
    "experimentalDecorators": true,
    "allowSyntheticDefaultImports": true,
    "resolveJsonModule": true,
-    "target": "es2022",
+    "target": "es2023",
    "sourceMap": true,
    "outDir": "./dist",
    "incremental": true,
--- a/deployment/mise.toml
+++ b/deployment/mise.toml
@@ -1,6 +1,6 @@
 [tools]
-terragrunt = "0.91.2"
-opentofu = "1.10.6"
+terragrunt = "0.93.10"
+opentofu = "1.10.7"

 [tasks."tg:fmt"]
 run = "terragrunt hclfmt"
--- a/docker/docker-compose.dev.yml
+++ b/docker/docker-compose.dev.yml
@@ -58,10 +58,6 @@ services:
      IMMICH_THIRD_PARTY_BUG_FEATURE_URL: https://github.com/immich-app/immich/issues
      IMMICH_THIRD_PARTY_DOCUMENTATION_URL: https://docs.immich.app
      IMMICH_THIRD_PARTY_SUPPORT_URL: https://docs.immich.app/community-guides
-    ulimits:
-      nofile:
-        soft: 1048576
-        hard: 1048576
    ports:
      - 9230:9230
      - 9231:9231
@@ -100,10 +96,6 @@ services:
      - app-node_modules:/usr/src/app/node_modules
      - sveltekit:/usr/src/app/web/.svelte-kit
      - coverage:/usr/src/app/web/coverage
-    ulimits:
-      nofile:
-        soft: 1048576
-        hard: 1048576
    restart: unless-stopped
    depends_on:
      immich-server:
@@ -135,7 +127,7 @@ services:

  redis:
    container_name: immich_redis
-    image: docker.io/valkey/valkey:8@sha256:81db6d39e1bba3b3ff32bd3a1b19a6d69690f94a3954ec131277b9a26b95b3aa
+    image: docker.io/valkey/valkey:9@sha256:546304417feac0874c3dd576e0952c6bb8f06bb4093ea0c9ca303c73cf458f63
    healthcheck:
      test: redis-cli ping || exit 1

@@ -154,6 +146,8 @@ services:
    ports:
      - 5432:5432
    shm_size: 128mb
+    healthcheck:
+      disable: false
  # set IMMICH_TELEMETRY_INCLUDE=all in .env to enable metrics
  # immich-prometheus:
  #   container_name: immich_prometheus
--- a/docker/docker-compose.prod.yml
+++ b/docker/docker-compose.prod.yml
@@ -56,7 +56,7 @@ services:

  redis:
    container_name: immich_redis
-    image: docker.io/valkey/valkey:8@sha256:81db6d39e1bba3b3ff32bd3a1b19a6d69690f94a3954ec131277b9a26b95b3aa
+    image: docker.io/valkey/valkey:9@sha256:546304417feac0874c3dd576e0952c6bb8f06bb4093ea0c9ca303c73cf458f63
    healthcheck:
      test: redis-cli ping || exit 1
    restart: always
@@ -77,13 +77,15 @@ services:
      - 5432:5432
    shm_size: 128mb
    restart: always
+    healthcheck:
+      disable: false

  # set IMMICH_TELEMETRY_INCLUDE=all in .env to enable metrics
  immich-prometheus:
    container_name: immich_prometheus
    ports:
      - 9090:9090
-    image: prom/prometheus@sha256:49214755b6153f90a597adcbff0252cc61069f8ab69ce8411285cd4a560e8038
+    image: prom/prometheus@sha256:1f0f50f06acaceb0f5670d2c8a658a599affe7b0d8e78b898c1035653849a702
    volumes:
      - ./prometheus.yml:/etc/prometheus/prometheus.yml
      - prometheus-data:/prometheus
@@ -95,7 +97,7 @@ services:
    command: ['./run.sh', '-disable-reporting']
    ports:
      - 3000:3000
-    image: grafana/grafana:12.2.1-ubuntu@sha256:797530c642f7b41ba7848c44cfda5e361ef1f3391a98bed1e5d448c472b6826a
+    image: grafana/grafana:12.3.1-ubuntu@sha256:d57f1365197aec34c4d80869d8ca45bb7787c7663904950dab214dfb40c1c2fd
    volumes:
      - grafana-data:/var/lib/grafana

--- a/docker/docker-compose.yml
+++ b/docker/docker-compose.yml
@@ -49,7 +49,7 @@ services:

  redis:
    container_name: immich_redis
-    image: docker.io/valkey/valkey:8@sha256:81db6d39e1bba3b3ff32bd3a1b19a6d69690f94a3954ec131277b9a26b95b3aa
+    image: docker.io/valkey/valkey:9@sha256:546304417feac0874c3dd576e0952c6bb8f06bb4093ea0c9ca303c73cf458f63
    healthcheck:
      test: redis-cli ping || exit 1
    restart: always
@@ -69,6 +69,8 @@ services:
      - ${DB_DATA_LOCATION}:/var/lib/postgresql/data
    shm_size: 128mb
    restart: always
+    healthcheck:
+      disable: false

 volumes:
  model-cache:
--- a/docs/.nvmrc
+++ b/docs/.nvmrc
@@ -1 +1 @@
-24.11.0
+24.13.0
--- a/docs/docs/FAQ.mdx
+++ b/docs/docs/FAQ.mdx
@@ -22,7 +22,7 @@ For organizations seeking to resell Immich, we have established the following gu

 - Do not misrepresent your reseller site or services as being officially affiliated with or endorsed by Immich or our development team.

- For small resellers who wish to contribute financially to Immich's development, we recommend directing your customers to purchase licenses directly from us rather than attempting to broker revenue-sharing arrangements. We ask that you refrain from misrepresenting reseller activities as directly supporting our development work.
+- For small resellers who wish to contribute financially to Immich's development, we recommend directing your customers to purchase product keys directly from us rather than attempting to broker revenue-sharing arrangements. We ask that you refrain from misrepresenting reseller activities as directly supporting our development work.

 When in doubt or if you have an edge case scenario, we encourage you to contact us directly via email to discuss the use of our trademark. We can provide clear guidance on what is acceptable and what is not. You can reach out at: questions@immich.app

@@ -133,9 +133,9 @@ There are a few different scenarios that can lead to this situation. The solutio
 The job is only automatically run once per asset after upload. If metadata extraction originally failed, the jobs were cleared/canceled, etc.,
 the job may not have run automatically the first time.

-### How can I hide photos from the timeline?
+### How can I hide a photo or video from the timeline?

-You can _archive_ them.
+You can _archive_ them. This will hide the asset from the main timeline and folder view, but it will still show up in searches. All archived assets can be found in the _Archive_ view

 ### How can I backup data from Immich?

--- a/docs/docs/administration/backup-and-restore.md
+++ b/docs/docs/administration/backup-and-restore.md
@@ -41,7 +41,7 @@ By default, Immich will keep the last 14 database dumps and create a new dump ev

 #### Trigger Dump

-You are able to trigger a database dump in the [admin job status page](http://my.immich.app/admin/jobs-status).
+You are able to trigger a database dump in the [admin job status page](http://my.immich.app/admin/queues).
 Visit the page, open the "Create job" modal from the top right, select "Create Database Dump" and click "Confirm".
 A job will run and trigger a dump, you can verify this worked correctly by checking the logs or the `backups/` folder.
 This dumps will count towards the last `X` dumps that will be kept based on your settings.
--- a/docs/docs/administration/maintenance-mode.md
+++ b/docs/docs/administration/maintenance-mode.md
@@ -0,0 +1,18 @@
+# Maintenance Mode
+
+Maintenance mode is used to perform administrative tasks such as restoring backups to Immich.
+
+You can enter maintenance mode by either:
+
+- Selecting "enable maintenance mode" in system settings in administration.
+- Running the enable maintenance mode [administration command](./server-commands.md).
+
+## Logging in during maintenance
+
+Maintenance mode uses a separate login system which is handled automatically behind the scenes in most cases. Enabling maintenance mode in settings will automatically log you into maintenance mode when the server comes back up.
+
+If you find that you've been logged out, you can:
+
+- Open the logs for the Immich server and look for _"🚧 Immich is in maintenance mode, you can log in using the following URL:"_
+- Run the enable maintenance mode [administration command](./server-commands.md) again, this will give you a new URL to login with.
+- Run the disable maintenance mode [administration command](./server-commands.md) then re-enter through system settings.
--- a/docs/docs/administration/postgres-standalone.md
+++ b/docs/docs/administration/postgres-standalone.md
@@ -22,7 +22,7 @@ Immich is known to work with Postgres versions `>= 14, < 19`.
 VectorChord is known to work with pgvector versions `>= 0.7, < 0.9`.

 The Immich server will check the VectorChord version on startup to ensure compatibility, and refuse to start if a compatible version is not found.
-The current accepted range for VectorChord is `>= 0.3, < 0.6`.
+The current accepted range for VectorChord is `>= 0.3, < 2.0`.
 :::

 ## Specifying the connection URL
--- a/docs/docs/administration/reverse-proxy.md
+++ b/docs/docs/administration/reverse-proxy.md
@@ -21,6 +21,12 @@ server {
    # allow large file uploads
    client_max_body_size 50000M;

+    # disable buffering uploads to prevent OOM on reverse proxy server and make uploads twice as fast (no pause)
+    proxy_request_buffering off;
+
+    # increase body buffer to avoid limiting upload speed
+    client_body_buffer_size 1024k;
+
    # Set headers
    proxy_set_header Host              $host;
    proxy_set_header X-Real-IP         $remote_addr;
@@ -29,8 +35,6 @@ server {

    # enable websockets: http://nginx.org/en/docs/http/websocket.html
    proxy_http_version 1.1;
-    proxy_set_header   Upgrade    $http_upgrade;
-    proxy_set_header   Connection "upgrade";
    proxy_redirect     off;

    # set timeout
@@ -40,6 +44,8 @@ server {

    location / {
        proxy_pass http://<backend_url>:2283;
+        proxy_set_header   Upgrade    $http_upgrade;
+        proxy_set_header   Connection "upgrade";
    }

    # useful when using Let's Encrypt http-01 challenge
--- a/docs/docs/administration/server-commands.md
+++ b/docs/docs/administration/server-commands.md
@@ -2,17 +2,19 @@

 The `immich-server` docker image comes preinstalled with an administrative CLI (`immich-admin`) that supports the following commands:

-| Command                  | Description                                                   |
-| ------------------------ | ------------------------------------------------------------- |
-| `help`                   | Display help                                                  |
-| `reset-admin-password`   | Reset the password for the admin user                         |
-| `disable-password-login` | Disable password login                                        |
-| `enable-password-login`  | Enable password login                                         |
-| `enable-oauth-login`     | Enable OAuth login                                            |
-| `disable-oauth-login`    | Disable OAuth login                                           |
-| `list-users`             | List Immich users                                             |
-| `version`                | Print Immich version                                          |
-| `change-media-location`  | Change database file paths to align with a new media location |
+| Command                    | Description                                                   |
+| -------------------------- | ------------------------------------------------------------- |
+| `help`                     | Display help                                                  |
+| `reset-admin-password`     | Reset the password for the admin user                         |
+| `disable-password-login`   | Disable password login                                        |
+| `enable-password-login`    | Enable password login                                         |
+| `disable-maintenance-mode` | Disable maintenance mode                                      |
+| `enable-maintenance-mode`  | Enable maintenance mode                                       |
+| `enable-oauth-login`       | Enable OAuth login                                            |
+| `disable-oauth-login`      | Disable OAuth login                                           |
+| `list-users`               | List Immich users                                             |
+| `version`                  | Print Immich version                                          |
+| `change-media-location`    | Change database file paths to align with a new media location |

 ## How to run a command

@@ -47,6 +49,23 @@ immich-admin enable-password-login
 Password login has been enabled.
 ```

+Disable Maintenance Mode
+
+```
+immich-admin disable-maintenance-mode
+Maintenance mode has been disabled.
+```
+
+Enable Maintenance Mode
+
+```
+immich-admin enable-maintenance-mode
+Maintenance mode has been enabled.
+
+Log in using the following URL:
+https://my.immich.app/maintenance?token=<token>
+```
+
 Enable OAuth login

 ```
--- a/docs/docs/developer/devcontainers.md
+++ b/docs/docs/developer/devcontainers.md
@@ -256,7 +256,7 @@ The Dev Container supports multiple ways to run tests:

 ```bash
 # Run tests for specific components
-make test-server         # Server unit tests
+make test-server        # Server unit tests
 make test-web           # Web unit tests
 make test-e2e           # End-to-end tests
 make test-cli           # CLI tests
@@ -268,12 +268,13 @@ make test-all           # Runs tests for all components
 make test-medium-dev    # End-to-end tests
 ```

-#### Using NPM Directly
+#### Using PNPM Directly

 ```bash
 # Server tests
 cd /workspaces/immich/server
-pnpm test                # Run all tests
+pnpm test               # Run all tests
+pnpm run test:medium    # Medium tests (integration tests)
 pnpm run test:watch     # Watch mode
 pnpm run test:cov       # Coverage report

@@ -293,21 +294,21 @@ pnpm run test:web       # Run web UI tests
 ```bash
 # Linting
 make lint-server        # Lint server code
-make lint-web          # Lint web code
-make lint-all          # Lint all components
+make lint-web           # Lint web code
+make lint-all           # Lint all components

 # Formatting
 make format-server      # Format server code
-make format-web        # Format web code
-make format-all        # Format all code
+make format-web         # Format web code
+make format-all         # Format all code

 # Type checking
 make check-server       # Type check server
-make check-web         # Type check web
-make check-all         # Check all components
+make check-web          # Type check web
+make check-all          # Check all components

 # Complete hygiene check
-make hygiene-all       # Runs lint, format, check, SQL sync, and audit
+make hygiene-all        # Run lint, format, check, SQL sync, and audit
 ```

 ### Additional Make Commands
@@ -315,21 +316,21 @@ make hygiene-all       # Runs lint, format, check, SQL sync, and audit
 ```bash
 # Build commands
 make build-server       # Build server
-make build-web         # Build web app
-make build-all         # Build everything
+make build-web          # Build web app
+make build-all          # Build everything

 # API generation
-make open-api          # Generate OpenAPI specs
+make open-api           # Generate OpenAPI specs
 make open-api-typescript # Generate TypeScript SDK
-make open-api-dart     # Generate Dart SDK
+make open-api-dart      # Generate Dart SDK

 # Database
-make sql               # Sync database schema
+make sql                # Sync database schema

 # Dependencies
-make install-server    # Install server dependencies
-make install-web      # Install web dependencies
-make install-all      # Install all dependencies
+make install-server     # Install server dependencies
+make install-web        # Install web dependencies
+make install-all        # Install all dependencies
 ```

 ### Debugging
--- a/docs/docs/developer/pr-checklist.md
+++ b/docs/docs/developer/pr-checklist.md
@@ -14,15 +14,15 @@ When contributing code through a pull request, please check the following:
 - [ ] `pnpm run check:typescript` (check typescript)
 - [ ] `pnpm test` (unit tests)

+:::tip AIO
+Run all web checks with `pnpm run check:all`
+:::
+
 ## Documentation

 - [ ] `pnpm run format` (formatting via Prettier)
 - [ ] Update the `_redirects` file if you have renamed a page or removed it from the documentation.

-:::tip AIO
-Run all web checks with `pnpm run check:all`
-:::
-
 ## Server Checks

 - [ ] `pnpm run lint` (linting via ESLint)
--- a/docs/docs/developer/setup.md
+++ b/docs/docs/developer/setup.md
@@ -4,6 +4,10 @@ sidebar_position: 2

 # Setup

+:::warning
+Make sure to read the [`CONTRIBUTING.md`](https://github.com/immich-app/immich/blob/main/CONTRIBUTING.md) before you dive into the code.
+:::
+
 :::note
 If there's a feature you're planning to work on, just give us a heads up in [#contributing](https://discord.com/channels/979116623879368755/1071165397228855327) on [our Discord](https://discord.immich.app) so we can:

@@ -48,7 +52,6 @@ You can access the web from `http://your-machine-ip:3000` or `http://localhost:3
 **Notes:**

 - The "web" development container runs with uid 1000. If that uid does not have read/write permissions on the mounted volumes, you may encounter errors
- In case of rootless docker setup, you need to use root within the container, otherwise you will encounter read/write permission related errors, see comments in `docker/docker-compose.dev.yml`.

 #### Connect web to a remote backend

--- a/docs/docs/developer/testing.md
+++ b/docs/docs/developer/testing.md
@@ -18,6 +18,7 @@ make e2e
 Before you can run the tests, you need to run the following commands _once_:

 - `pnpm install` (in `e2e/`)
+- `pnpm run build` (in `cli/`)
 - `make open-api` (in the project root `/`)

 Once the test environment is running, the e2e tests can be run via:
--- a/docs/docs/features/hardware-transcoding.md
+++ b/docs/docs/features/hardware-transcoding.md
@@ -71,6 +71,22 @@ For RKMPP to work:

 5. (Optional) Enable hardware decoding for optimal performance.

+<details>
+<summary>immich.json</summary>
+
+If you use a [configuration file](/install/config-file.md), use the `accel` option to select the hardware (e.g. `qsv` for Intel or `nvenc` for Nvidia). Set `accelDecode` to `true` if you want hardware decoding.
+
+```json
+{
+  "ffmpeg": {
+    "accel": "qsv",
+    "accelDecode": true
+  }
+}
+```
+
+</details>
+
 #### Single Compose File

 Some platforms, including Unraid and Portainer, do not support multiple Compose files as of writing. As an alternative, you can "inline" the relevant contents of the [`hwaccel.transcoding.yml`][hw-file] file into the `immich-server` service directly.
--- a/docs/docs/features/mobile-app.mdx
+++ b/docs/docs/features/mobile-app.mdx
@@ -95,11 +95,3 @@ Enter the cloud on the top right -> cog wheel on the top right -> select the syn
 If you delete/move photos in the local album on your device, it will not be reflected in the album on the server **even if** you click Sync albums
 It will only reflect files you add.
 :::
-
-If the same asset is in more than one album it will only sync to the first album it's in, after that it won't sync again even if the user clicks sync albums manually.
-To overcome this limitation, the files must be removed from the ignore list by
-App settings -> Advanced -> Duplicate Assets -> Clear
-
-:::info
-Cleaning duplicate assets from the list will cause all the previously uploaded duplicate files to be re-uploaded, the files will not actually be uploaded and will be rejected on the server side (due to duplication) but will be synchronized to the album and at the end will be added to the ignore list again at the end of the synchronization.
-:::
--- a/docs/docs/features/monitoring.md
+++ b/docs/docs/features/monitoring.md
@@ -112,4 +112,40 @@ You can then make a new panel, specifying Prometheus as the data source for it.

 -- TODO: add images and more details here

+## Structured Logging
+
+In addition to Prometheus metrics, Immich supports structured JSON logging which is ideal for log aggregation systems like Grafana Loki, ELK Stack, Datadog, Splunk, and others.
+
+### Configuration
+
+By default, Immich outputs human-readable console logs. To enable JSON logging, set the `IMMICH_LOG_FORMAT` environment variable:
+
+```bash
+IMMICH_LOG_FORMAT=json
+```
+
+:::tip
+The default is `IMMICH_LOG_FORMAT=console` for human-readable logs with colors during development. For production deployments using log aggregation, use `IMMICH_LOG_FORMAT=json`.
+:::
+
+### JSON Log Format
+
+When enabled, logs are output in structured JSON format:
+
+```json
+{"level":"log","pid":36,"timestamp":1766533331507,"message":"Initialized websocket server","context":"WebsocketRepository"}
+{"level":"warn","pid":48,"timestamp":1766533331629,"message":"Unable to open /build/www/index.html, skipping SSR.","context":"ApiService"}
+{"level":"error","pid":36,"timestamp":1766533331690,"message":"Failed to load plugin immich-core:","context":"Error"}
+```
+
+This format includes:
+
+- `level`: Log level (log, warn, error, etc.)
+- `pid`: Process ID
+- `timestamp`: Unix timestamp in milliseconds
+- `message`: Log message
+- `context`: Service or component that generated the log
+
+For more information on log formats, see [`IMMICH_LOG_FORMAT`](/install/environment-variables.md#general).
+
 [prom-file]: https://github.com/immich-app/immich/releases/latest/download/prometheus.yml
--- a/docs/docs/features/searching.md
+++ b/docs/docs/features/searching.md
@@ -1222,4 +1222,4 @@ Feel free to make a feature request if there's a model you want to use that we d
 [huggingface-clip]: https://huggingface.co/collections/immich-app/clip-654eaefb077425890874cd07
 [huggingface-multilingual-clip]: https://huggingface.co/collections/immich-app/multilingual-clip-654eb08c2382f591eeb8c2a7
 [smart-search-settings]: https://my.immich.app/admin/system-settings?isOpen=machine-learning+smart-search
-[job-status-page]: https://my.immich.app/admin/jobs-status
+[job-status-page]: https://my.immich.app/admin/queues
--- a/docs/docs/features/sharing.md
+++ b/docs/docs/features/sharing.md
@@ -33,7 +33,7 @@ You can create a public link to share a group of photos or videos, or an album,
 The public shared link is generated with a random URL, which acts as as a secret to avoid the link being guessed by unwanted parties, for instance.

 ```
-https://immich.yourdomain.com/share/JUckRMxlgpo7F9BpyqGk_cZEwDzaU_U5LU5_oNZp1ETIBa9dpQ0b5ghNm_22QVJfn3k
+https://my.immich.app/share/JUckRMxlgpo7F9BpyqGk_cZEwDzaU_U5LU5_oNZp1ETIBa9dpQ0b5ghNm_22QVJfn3k
 ```

 ### Creating a public share link
--- a/docs/docs/guides/remote-machine-learning.md
+++ b/docs/docs/guides/remote-machine-learning.md
@@ -53,7 +53,7 @@ Version mismatches between both hosts may cause bugs and instability, so remembe

 Adding a new URL to the settings is recommended over replacing the existing URL. This is because it will allow machine learning tasks to be processed successfully when the remote server is down by falling back to the local machine learning container. If you do not want machine learning tasks to be processed locally when the remote server is not available, you can instead replace the existing URL and only provide the remote container's URL. If doing this, you can remove the `immich-machine-learning` section of the local `docker-compose.yml` file to save resources, as this service will never be used.

-Do note that this will mean that Smart Search and Face Detection jobs will fail to be processed when the remote instance is not available. This in turn means that tasks dependent on these features—Duplicate Detection and Facial Recognition—will not run for affected assets. If this occurs, you must manually click the _Missing_ button next to Smart Search and Face Detection in the [Job Status](http://my.immich.app/admin/jobs-status) page for the jobs to be retried.
+Do note that this will mean that Smart Search and Face Detection jobs will fail to be processed when the remote instance is not available. This in turn means that tasks dependent on these features—Duplicate Detection and Facial Recognition—will not run for affected assets. If this occurs, you must manually click the _Missing_ button next to Smart Search and Face Detection in the [Job Status](http://my.immich.app/admin/queues) page for the jobs to be retried.

 ## Load balancing

--- a/docs/docs/install/environment-variables.md
+++ b/docs/docs/install/environment-variables.md
@@ -34,6 +34,7 @@ These environment variables are used by the `docker-compose.yml` file and do **N
 | `TZ`                                | Timezone                                                                                  |        <sup>\*1</sup>        | server                   | microservices      |
 | `IMMICH_ENV`                        | Environment (production, development)                                                     |         `production`         | server, machine learning | api, microservices |
 | `IMMICH_LOG_LEVEL`                  | Log level (verbose, debug, log, warn, error)                                              |            `log`             | server, machine learning | api, microservices |
+| `IMMICH_LOG_FORMAT`                 | Log output format (`console`, `json`)                                                     |          `console`           | server                   | api, microservices |
 | `IMMICH_MEDIA_LOCATION`             | Media location inside the container ⚠️**You probably shouldn't set this**<sup>\*2</sup>⚠️ |           `/data`            | server                   | api, microservices |
 | `IMMICH_CONFIG_FILE`                | Path to config file                                                                       |                              | server                   | api, microservices |
 | `NO_COLOR`                          | Set to `true` to disable color-coded log output                                           |           `false`            | server, machine learning |                    |
@@ -43,6 +44,7 @@ These environment variables are used by the `docker-compose.yml` file and do **N
 | `IMMICH_PROCESS_INVALID_IMAGES`     | When `true`, generate thumbnails for invalid images                                       |                              | server                   | microservices      |
 | `IMMICH_TRUSTED_PROXIES`            | List of comma-separated IPs set as trusted proxies                                        |                              | server                   | api                |
 | `IMMICH_IGNORE_MOUNT_CHECK_ERRORS`  | See [System Integrity](/administration/system-integrity)                                  |                              | server                   | api, microservices |
+| `IMMICH_ALLOW_SETUP`                | When `false` disables the `/auth/admin-sign-up` endpoint                                  |            `true`            | server                   | api                |

 \*1: `TZ` should be set to a `TZ identifier` from [this list][tz-list]. For example, `TZ="Etc/UTC"`.
 `TZ` is used by `exiftool` as a fallback in case the timezone cannot be determined from the image metadata. It is also used for logfile timestamps and cron job execution.
@@ -62,10 +64,10 @@ Information on the current workers can be found [here](/administration/jobs-work

 ## Ports

-| Variable      | Description    |                  Default                   |
-| :------------ | :------------- | :----------------------------------------: |
-| `IMMICH_HOST` | Listening host |                 `0.0.0.0`                  |
-| `IMMICH_PORT` | Listening port | `2283` (server), `3003` (machine learning) |
+| Variable      | Description    |                  Default                   | Containers               |
+| :------------ | :------------- | :----------------------------------------: | :----------------------- |
+| `IMMICH_HOST` | Listening host |                 `0.0.0.0`                  | server, machine learning |
+| `IMMICH_PORT` | Listening port | `2283` (server), `3003` (machine learning) | server, machine learning |

 ## Database

@@ -80,7 +82,7 @@ Information on the current workers can be found [here](/administration/jobs-work
 | `DB_SSL_MODE`                       | Database SSL mode                                                                      |            | server                         |
 | `DB_VECTOR_EXTENSION`<sup>\*2</sup> | Database vector extension (one of [`vectorchord`, `pgvector`, `pgvecto.rs`])           |            | server                         |
 | `DB_SKIP_MIGRATIONS`                | Whether to skip running migrations on startup (one of [`true`, `false`])               |  `false`   | server                         |
-| `DB_STORAGE_TYPE`                   | Optimize concurrent IO on SSDs or sequential IO on HDDs ([`SSD`, `HDD`])<sup>\*3</sup> |   `SSD`    | server                         |
+| `DB_STORAGE_TYPE`                   | Optimize concurrent IO on SSDs or sequential IO on HDDs ([`SSD`, `HDD`])<sup>\*3</sup> |   `SSD`    | database                       |

 \*1: The values of `DB_USERNAME`, `DB_PASSWORD`, and `DB_DATABASE_NAME` are passed to the Postgres container as the variables `POSTGRES_USER`, `POSTGRES_PASSWORD`, and `POSTGRES_DB` in `docker-compose.yml`.

@@ -93,7 +95,7 @@ Information on the current workers can be found [here](/administration/jobs-work
 All `DB_` variables must be provided to all Immich workers, including `api` and `microservices`.

 `DB_URL` must be in the format `postgresql://immichdbusername:immichdbpassword@postgreshost:postgresport/immichdatabasename`.
-You can require SSL by adding `?sslmode=require` to the end of the `DB_URL` string, or require SSL and skip certificate verification by adding `?sslmode=require&sslmode=no-verify`.
+You can require SSL by adding `?sslmode=require` to the end of the `DB_URL` string, or require SSL and skip certificate verification by adding `?sslmode=require&uselibpqcompat=true`. This allows both immich and `pg_dumpall` (the utility used for database backups) to [properly connect](https://github.com/brianc/node-postgres/tree/master/packages/pg-connection-string#tcp-connections) to your database.

 When `DB_URL` is defined, the `DB_HOSTNAME`, `DB_PORT`, `DB_USERNAME`, `DB_PASSWORD` and `DB_DATABASE_NAME` database variables are ignored.

--- a/docs/docs/install/requirements.md
+++ b/docs/docs/install/requirements.md
@@ -17,12 +17,17 @@ Hardware and software requirements for Immich:
  - Immich runs well in a virtualized environment when running in a full virtual machine.
    The use of Docker in LXC containers is [not recommended](https://pve.proxmox.com/wiki/Linux_Container), but may be possible for advanced users.
    If you have issues, we recommend that you switch to a supported VM deployment.
- **RAM**: Minimum 4GB, recommended 6GB.
+- **RAM**: Minimum 6GB, recommended 8GB.
 - **CPU**: Minimum 2 cores, recommended 4 cores.
 - **Storage**: Recommended Unix-compatible filesystem (EXT4, ZFS, APFS, etc.) with support for user/group ownership and permissions.
  - The generation of thumbnails and transcoded video can increase the size of the photo library by 10-20% on average.

-:::tip
+:::note RAM requirements
+For a smooth experience, especially during asset upload, Immich requires at least 6GB of RAM.
+For systems with only 4GB of RAM, Immich can be run with machine learning features disabled.
+:::
+
+:::tip Postgres setup
 Good performance and a stable connection to the Postgres database is critical to a smooth Immich experience.
 The Postgres database files are typically between 1-3 GB in size.
 For this reason, the Postgres database (`DB_DATA_LOCATION`) should ideally use local SSD storage, and never a network share of any kind.
--- a/docs/docusaurus.config.js
+++ b/docs/docusaurus.config.js
@@ -26,6 +26,12 @@ const config = {
    locales: ['en'],
  },

+  // Mermaid diagrams
+  markdown: {
+    mermaid: true,
+  },
+  themes: ['@docusaurus/theme-mermaid'],
+
  plugins: [
    async function myPlugin(context, options) {
      return {
--- a/docs/package.json
+++ b/docs/package.json
@@ -20,6 +20,7 @@
    "@docusaurus/core": "~3.9.0",
    "@docusaurus/preset-classic": "~3.9.0",
    "@docusaurus/theme-common": "~3.9.0",
+    "@docusaurus/theme-mermaid": "~3.9.0",
    "@mdi/js": "^7.3.67",
    "@mdi/react": "^1.6.1",
    "@mdx-js/react": "^3.0.0",
@@ -38,7 +39,7 @@
    "@docusaurus/module-type-aliases": "~3.9.0",
    "@docusaurus/tsconfig": "^3.7.0",
    "@docusaurus/types": "^3.7.0",
-    "prettier": "^3.2.4",
+    "prettier": "^3.7.4",
    "typescript": "^5.1.6"
  },
  "browserslist": {
@@ -57,6 +58,6 @@
    "node": ">=20"
  },
  "volta": {
-    "node": "24.11.0"
+    "node": "24.13.0"
  }
 }
--- a/docs/src/css/custom.css
+++ b/docs/src/css/custom.css
@@ -8,19 +8,19 @@
@tailwind utilities;

@font-face {
-  font-family: 'Overpass';
-  src: url('/fonts/overpass/Overpass.ttf') format('truetype-variations');
-  font-weight: 1 999;
+  font-family: 'GoogleSans';
+  src: url('/fonts/GoogleSans/GoogleSans.ttf') format('truetype-variations');
+  font-weight: 410 900;
  font-style: normal;
  ascent-override: 106.25%;
  size-adjust: 106.25%;
 }

@font-face {
-  font-family: 'Overpass Mono';
-  src: url('/fonts/overpass/OverpassMono.ttf') format('truetype-variations');
-  font-weight: 1 999;
-  font-style: normal;
+  font-family: 'GoogleSansCode';
+  src: url('/fonts/GoogleSansCode/GoogleSansCode.ttf') format('truetype-variations');
+  font-weight: 1 900;
+  font-style: monospace;
  ascent-override: 106.25%;
  size-adjust: 106.25%;
 }
@@ -37,7 +37,8 @@ img {

 /* You can override the default Infima variables here. */
 :root {
-  font-family: 'Overpass', sans-serif;
+  font-family: 'GoogleSans', sans-serif;
+  letter-spacing: 0.1px;
  --ifm-color-primary: #4250af;
  --ifm-color-primary-dark: #4250af;
  --ifm-color-primary-darker: #4250af;
@@ -48,6 +49,16 @@ img {
  --docusaurus-highlighted-code-line-bg: rgba(0, 0, 0, 0.1);
 }

+h1,
+h2,
+h3,
+h4,
+h5,
+h6 {
+  font-family: 'GoogleSans', sans-serif;
+  letter-spacing: 0.1px;
+}
+
 /* For readability concerns, you should choose a lighter palette in dark mode. */
 [data-theme='dark'] {
  --ifm-color-primary: #adcbfa;
@@ -71,15 +82,22 @@ div[class^='announcementBar_'] {
  padding: 10px 10px 10px 16px;
  border-radius: 24px;
  margin-right: 16px;
+  font-weight: 500;
 }

 .menu__list-item-collapsible {
  margin-right: 16px;
  border-radius: 24px;
+  font-weight: 500;
 }

 .menu__link--active {
-  font-weight: 500;
+  font-weight: 600;
+}
+
+.table-of-contents__link {
+  font-size: 14px;
+  font-weight: 450;
 }

 /* workaround for version switcher PR 15894 */
@@ -88,13 +106,14 @@ div[class*='navbar__items'] > li:has(a[class*='version-switcher-34ab39']) {
 }

 code {
-  font-weight: 600;
+  font-weight: 500;
+  font-family: 'GoogleSansCode';
 }

 .buy-button {
  padding: 8px 14px;
  border: 1px solid transparent;
-  font-family: 'Overpass', sans-serif;
+  font-family: 'GoogleSans', sans-serif;
  font-weight: 500;
  cursor: pointer;
  box-shadow: 0 0 5px 2px rgba(181, 206, 254, 0.4);
--- a/docs/static/archived-versions.json
+++ b/docs/static/archived-versions.json
@@ -1,4 +1,24 @@
 [
+  {
+    "label": "v2.5.0",
+    "url": "https://docs.v2.5.0.archive.immich.app"
+  },
+  {
+    "label": "v2.4.1",
+    "url": "https://docs.v2.4.1.archive.immich.app"
+  },
+  {
+    "label": "v2.4.0",
+    "url": "https://docs.v2.4.0.archive.immich.app"
+  },
+  {
+    "label": "v2.3.1",
+    "url": "https://docs.v2.3.1.archive.immich.app"
+  },
+  {
+    "label": "v2.3.0",
+    "url": "https://docs.v2.3.0.archive.immich.app"
+  },
  {
    "label": "v2.2.3",
    "url": "https://docs.v2.2.3.archive.immich.app"
--- a/docs/static/fonts/GoogleSans/GoogleSans.ttf
+++ b/docs/static/fonts/GoogleSans/GoogleSans.ttf
--- a/docs/static/fonts/GoogleSansCode/GoogleSansCode.ttf
+++ b/docs/static/fonts/GoogleSansCode/GoogleSansCode.ttf
--- a/docs/static/fonts/overpass/Overpass-Italic.ttf
+++ b/docs/static/fonts/overpass/Overpass-Italic.ttf
--- a/docs/static/fonts/overpass/Overpass.ttf
+++ b/docs/static/fonts/overpass/Overpass.ttf
--- a/docs/static/fonts/overpass/OverpassMono.ttf
+++ b/docs/static/fonts/overpass/OverpassMono.ttf
--- a/e2e-auth-server/Dockerfile
+++ b/e2e-auth-server/Dockerfile
@@ -0,0 +1,6 @@
+FROM node:24.1.0-alpine3.20@sha256:8fe019e0d57dbdce5f5c27c0b63d2775cf34b00e3755a7dea969802d7e0c2b25
+RUN corepack enable
+ADD package.json *.ts ./
+RUN pnpm install
+EXPOSE 2286
+CMD ["pnpm", "run", "start"]
--- a/e2e-auth-server/auth-server.ts
+++ b/e2e-auth-server/auth-server.ts
@@ -125,7 +125,7 @@ const setup = async () => {
    ],
  });

-  const onStart = () => console.log(`[auth-server] http://${host}:${port}/.well-known/openid-configuration`);
+  const onStart = () => console.log(`[e2e-auth-server] http://${host}:${port}/.well-known/openid-configuration`);
  const app = oidc.listen(port, host, onStart);
  return () => app.close();
 };
--- a/e2e-auth-server/package.json
+++ b/e2e-auth-server/package.json
@@ -0,0 +1,15 @@
+{
+  "name": "@immich/e2e-auth-server",
+  "version": "0.1.0",
+  "type": "module",
+  "main": "auth-server.ts",
+  "scripts": {
+    "start": "tsx startup.ts"
+  },
+  "devDependencies": {
+    "jose": "^5.6.3",
+    "@types/oidc-provider": "^9.0.0",
+    "oidc-provider": "^9.0.0",
+    "tsx": "^4.20.6"
+  }
+}
--- a/e2e-auth-server/startup.ts
+++ b/e2e-auth-server/startup.ts
@@ -0,0 +1,8 @@
+import setup from './auth-server'
+
+const teardown = await setup()
+process.on('exit', () => {
+  teardown()
+  console.log('[e2e-auth-server] stopped')
+  process.exit(0)
+})
--- a/e2e/.gitignore
+++ b/e2e/.gitignore
@@ -4,3 +4,4 @@ node_modules/
 /blob-report/
 /playwright/.cache/
 /dist
+.env
--- a/e2e/.nvmrc
+++ b/e2e/.nvmrc
@@ -1 +1 @@
-24.11.0
+24.13.0
--- a/e2e/docker-compose.dev.yml
+++ b/e2e/docker-compose.dev.yml
@@ -0,0 +1,105 @@
+name: immich-e2e
+
+services:
+  immich-server:
+    container_name: immich-e2e-server
+    command: ['immich-dev']
+    image: immich-server-dev:latest
+    build:
+      context: ../
+      dockerfile: server/Dockerfile.dev
+      target: dev
+    environment:
+      - DB_HOSTNAME=database
+      - DB_USERNAME=postgres
+      - DB_PASSWORD=postgres
+      - DB_DATABASE_NAME=immich
+      - IMMICH_MACHINE_LEARNING_ENABLED=false
+      - IMMICH_TELEMETRY_INCLUDE=all
+      - IMMICH_ENV=testing
+      - IMMICH_PORT=2285
+      - IMMICH_IGNORE_MOUNT_CHECK_ERRORS=true
+    volumes:
+      - ./test-assets:/test-assets
+      - ..:/usr/src/app
+      - ${UPLOAD_LOCATION}/photos:/data
+      - /etc/localtime:/etc/localtime:ro
+      - pnpm-store:/usr/src/app/.pnpm-store
+      - server-node_modules:/usr/src/app/server/node_modules
+      - web-node_modules:/usr/src/app/web/node_modules
+      - github-node_modules:/usr/src/app/.github/node_modules
+      - cli-node_modules:/usr/src/app/cli/node_modules
+      - docs-node_modules:/usr/src/app/docs/node_modules
+      - e2e-node_modules:/usr/src/app/e2e/node_modules
+      - sdk-node_modules:/usr/src/app/open-api/typescript-sdk/node_modules
+      - app-node_modules:/usr/src/app/node_modules
+      - sveltekit:/usr/src/app/web/.svelte-kit
+      - coverage:/usr/src/app/web/coverage
+      - ../plugins:/build/corePlugin
+    depends_on:
+      redis:
+        condition: service_started
+      database:
+        condition: service_healthy
+
+  immich-web:
+    container_name: immich-e2e-web
+    image: immich-web-dev:latest
+    build:
+      context: ../
+      dockerfile: server/Dockerfile.dev
+      target: dev
+    command: ['immich-web']
+    ports:
+      - 2285:3000
+    environment:
+      - IMMICH_SERVER_URL=http://immich-server:2285/
+    volumes:
+      - ..:/usr/src/app
+      - pnpm-store:/usr/src/app/.pnpm-store
+      - server-node_modules:/usr/src/app/server/node_modules
+      - web-node_modules:/usr/src/app/web/node_modules
+      - github-node_modules:/usr/src/app/.github/node_modules
+      - cli-node_modules:/usr/src/app/cli/node_modules
+      - docs-node_modules:/usr/src/app/docs/node_modules
+      - e2e-node_modules:/usr/src/app/e2e/node_modules
+      - sdk-node_modules:/usr/src/app/open-api/typescript-sdk/node_modules
+      - app-node_modules:/usr/src/app/node_modules
+      - sveltekit:/usr/src/app/web/.svelte-kit
+      - coverage:/usr/src/app/web/coverage
+    restart: unless-stopped
+
+  redis:
+    image: redis:6.2-alpine@sha256:37e002448575b32a599109664107e374c8709546905c372a34d64919043b9ceb
+
+  database:
+    image: ghcr.io/immich-app/postgres:14-vectorchord0.3.0@sha256:6f3e9d2c2177af16c2988ff71425d79d89ca630ec2f9c8db03209ab716542338
+    command: -c fsync=off -c shared_preload_libraries=vchord.so -c config_file=/var/lib/postgresql/data/postgresql.conf
+    environment:
+      POSTGRES_PASSWORD: postgres
+      POSTGRES_USER: postgres
+      POSTGRES_DB: immich
+    ports:
+      - 5435:5432
+    healthcheck:
+      test: ['CMD-SHELL', 'pg_isready -U postgres -d immich']
+      interval: 1s
+      timeout: 5s
+      retries: 30
+      start_period: 10s
+
+volumes:
+  model-cache:
+  prometheus-data:
+  grafana-data:
+  pnpm-store:
+  server-node_modules:
+  web-node_modules:
+  github-node_modules:
+  cli-node_modules:
+  docs-node_modules:
+  e2e-node_modules:
+  sdk-node_modules:
+  app-node_modules:
+  sveltekit:
+  coverage:
--- a/e2e/docker-compose.yml
+++ b/e2e/docker-compose.yml
@@ -1,12 +1,21 @@
 name: immich-e2e

 services:
+  e2e-auth-server:
+    build:
+      context: ../e2e-auth-server
+    ports:
+      - 2286:2286
+
  immich-server:
    container_name: immich-e2e-server
    image: immich-server:latest
    build:
      context: ../
      dockerfile: server/Dockerfile
+      cache_from:
+        - type=registry,ref=ghcr.io/immich-app/immich-server-build-cache:linux-amd64-cc099f297acd18c924b35ece3245215b53d106eb2518e3af6415931d055746cd-main
+        - type=registry,ref=ghcr.io/immich-app/immich-server-build-cache:linux-arm64-cc099f297acd18c924b35ece3245215b53d106eb2518e3af6415931d055746cd-main
      args:
        - BUILD_ID=1234567890
        - BUILD_IMAGE=e2e
@@ -24,8 +33,6 @@ services:
      - IMMICH_IGNORE_MOUNT_CHECK_ERRORS=true
    volumes:
      - ./test-assets:/test-assets
-    extra_hosts:
-      - 'auth-server:host-gateway'
    depends_on:
      redis:
        condition: service_started
--- a/e2e/package.json
+++ b/e2e/package.json
@@ -1,6 +1,6 @@
 {
  "name": "immich-e2e",
-  "version": "2.2.3",
+  "version": "2.5.0",
  "description": "",
  "main": "index.js",
  "type": "module",
@@ -20,30 +20,30 @@
  "license": "GNU Affero General Public License version 3",
  "devDependencies": {
    "@eslint/js": "^9.8.0",
+    "@faker-js/faker": "^10.1.0",
    "@immich/cli": "file:../cli",
+    "@immich/e2e-auth-server": "file:../e2e-auth-server",
    "@immich/sdk": "file:../open-api/typescript-sdk",
    "@playwright/test": "^1.44.1",
    "@socket.io/component-emitter": "^3.1.2",
    "@types/luxon": "^3.4.2",
-    "@types/node": "^22.19.0",
-    "@types/oidc-provider": "^9.0.0",
+    "@types/node": "^24.10.8",
    "@types/pg": "^8.15.1",
    "@types/pngjs": "^6.0.4",
    "@types/supertest": "^6.0.2",
+    "dotenv": "^17.2.3",
    "eslint": "^9.14.0",
    "eslint-config-prettier": "^10.1.8",
    "eslint-plugin-prettier": "^5.1.3",
-    "eslint-plugin-unicorn": "^60.0.0",
-    "exiftool-vendored": "^31.1.0",
+    "eslint-plugin-unicorn": "^62.0.0",
+    "exiftool-vendored": "^34.3.0",
    "globals": "^16.0.0",
-    "jose": "^5.6.3",
    "luxon": "^3.4.4",
-    "oidc-provider": "^9.0.0",
    "pg": "^8.11.3",
    "pngjs": "^7.0.0",
-    "prettier": "^3.2.5",
+    "prettier": "^3.7.4",
    "prettier-plugin-organize-imports": "^4.0.0",
-    "sharp": "^0.34.4",
+    "sharp": "^0.34.5",
    "socket.io-client": "^4.7.4",
    "supertest": "^7.0.0",
    "typescript": "^5.3.3",
@@ -52,6 +52,6 @@
    "vitest": "^3.0.0"
  },
  "volta": {
-    "node": "24.11.0"
+    "node": "24.13.0"
  }
 }
--- a/e2e/playwright.config.ts
+++ b/e2e/playwright.config.ts
@@ -1,23 +1,50 @@
-import { defineConfig, devices } from '@playwright/test';
+import { defineConfig, devices, PlaywrightTestConfig } from '@playwright/test';
+import dotenv from 'dotenv';
+import { cpus } from 'node:os';
+import { resolve } from 'node:path';

-export default defineConfig({
+dotenv.config({ path: resolve(import.meta.dirname, '.env') });
+
+export const playwrightHost = process.env.PLAYWRIGHT_HOST ?? '127.0.0.1';
+export const playwrightDbHost = process.env.PLAYWRIGHT_DB_HOST ?? '127.0.0.1';
+export const playwriteBaseUrl = process.env.PLAYWRIGHT_BASE_URL ?? `http://${playwrightHost}:2285`;
+export const playwriteSlowMo = parseInt(process.env.PLAYWRIGHT_SLOW_MO ?? '0');
+export const playwrightDisableWebserver = process.env.PLAYWRIGHT_DISABLE_WEBSERVER;
+
+process.env.PW_EXPERIMENTAL_SERVICE_WORKER_NETWORK_EVENTS = '1';
+
+const config: PlaywrightTestConfig = {
  testDir: './src/web/specs',
  fullyParallel: false,
  forbidOnly: !!process.env.CI,
-  retries: process.env.CI ? 2 : 0,
-  workers: 1,
+  retries: process.env.CI ? 4 : 0,
  reporter: 'html',
  use: {
-    baseURL: 'http://127.0.0.1:2285',
+    baseURL: playwriteBaseUrl,
    trace: 'on-first-retry',
+    screenshot: 'only-on-failure',
+    launchOptions: {
+      slowMo: playwriteSlowMo,
+    },
  },

  testMatch: /.*\.e2e-spec\.ts/,

+  workers: process.env.CI ? 4 : Math.round(cpus().length * 0.75),
+
  projects: [
    {
      name: 'chromium',
      use: { ...devices['Desktop Chrome'] },
+      testMatch: /.*\.e2e-spec\.ts/,
+      workers: 1,
+    },
+    {
+      name: 'parallel tests',
+      use: { ...devices['Desktop Chrome'] },
+      testMatch: /.*\.parallel-e2e-spec\.ts/,
+      fullyParallel: true,
+      workers: process.env.CI ? 3 : Math.max(1, Math.round(cpus().length * 0.75) - 1),
    },

    // {
@@ -59,4 +86,8 @@ export default defineConfig({
    stderr: 'pipe',
    reuseExistingServer: true,
  },
-});
+};
+if (playwrightDisableWebserver) {
+  delete config.webServer;
+}
+export default defineConfig(config);
--- a/e2e/src/api/specs/database-backups.e2e-spec.ts
+++ b/e2e/src/api/specs/database-backups.e2e-spec.ts
@@ -0,0 +1,350 @@
+import { LoginResponseDto, ManualJobName } from '@immich/sdk';
+import { errorDto } from 'src/responses';
+import { app, utils } from 'src/utils';
+import request from 'supertest';
+import { afterAll, beforeAll, describe, expect, it } from 'vitest';
+
+describe('/admin/database-backups', () => {
+  let cookie: string | undefined;
+  let admin: LoginResponseDto;
+
+  beforeAll(async () => {
+    await utils.resetDatabase();
+    admin = await utils.adminSetup();
+    await utils.resetBackups(admin.accessToken);
+  });
+
+  describe('GET /', async () => {
+    it('should succeed and be empty', async () => {
+      const { status, body } = await request(app)
+        .get('/admin/database-backups')
+        .set('Authorization', `Bearer ${admin.accessToken}`);
+      expect(status).toBe(200);
+      expect(body).toEqual({
+        backups: [],
+      });
+    });
+
+    it('should contain a created backup', async () => {
+      await utils.createJob(admin.accessToken, {
+        name: ManualJobName.BackupDatabase,
+      });
+
+      await utils.waitForQueueFinish(admin.accessToken, 'backupDatabase');
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app)
+              .get('/admin/database-backups')
+              .set('Authorization', `Bearer ${admin.accessToken}`);
+
+            expect(status).toBe(200);
+            return body;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toEqual(
+          expect.objectContaining({
+            backups: [
+              expect.objectContaining({
+                filename: expect.stringMatching(/immich-db-backup-\d{8}T\d{6}-v.*-pg.*\.sql\.gz$/),
+                filesize: expect.any(Number),
+              }),
+            ],
+          }),
+        );
+    });
+  });
+
+  describe('DELETE /', async () => {
+    it('should delete backup', async () => {
+      const filename = await utils.createBackup(admin.accessToken);
+
+      const { status } = await request(app)
+        .delete(`/admin/database-backups`)
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({ backups: [filename] });
+
+      expect(status).toBe(200);
+
+      const { status: listStatus, body } = await request(app)
+        .get('/admin/database-backups')
+        .set('Authorization', `Bearer ${admin.accessToken}`);
+
+      expect(listStatus).toBe(200);
+      expect(body).toEqual(
+        expect.objectContaining({
+          backups: [],
+        }),
+      );
+    });
+  });
+
+  // => action: restore database flow
+
+  describe.sequential('POST /start-restore', () => {
+    afterAll(async () => {
+      await request(app).post('/admin/maintenance').set('cookie', cookie!).send({ action: 'end' });
+      await utils.poll(
+        () => request(app).get('/server/config'),
+        ({ status, body }) => status === 200 && !body.maintenanceMode,
+      );
+
+      admin = await utils.adminSetup();
+    });
+
+    it.sequential('should not work when the server is configured', async () => {
+      const { status, body } = await request(app).post('/admin/database-backups/start-restore').send();
+
+      expect(status).toBe(400);
+      expect(body).toEqual(errorDto.badRequest('The server already has an admin'));
+    });
+
+    it.sequential('should enter maintenance mode in "database restore mode"', async () => {
+      await utils.resetDatabase(); // reset database before running this test
+
+      const { status, headers } = await request(app).post('/admin/database-backups/start-restore').send();
+
+      expect(status).toBe(201);
+
+      cookie = headers['set-cookie'][0].split(';')[0];
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeTruthy();
+
+      const { status: status2, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+      expect(status2).toBe(200);
+      expect(body).toEqual({
+        active: true,
+        action: 'select_database_restore',
+      });
+    });
+  });
+
+  // => action: restore database
+
+  describe.sequential('POST /backups/restore', () => {
+    beforeAll(async () => {
+      await utils.disconnectDatabase();
+    });
+
+    afterAll(async () => {
+      await utils.connectDatabase();
+    });
+
+    it.sequential('should restore a backup', { timeout: 60_000 }, async () => {
+      let filename = await utils.createBackup(admin.accessToken);
+
+      // work-around until test is running on released version
+      await utils.move(
+        `/data/backups/${filename}`,
+        '/data/backups/immich-db-backup-20260114T184016-v2.5.0-pg14.19.sql.gz',
+      );
+      filename = 'immich-db-backup-20260114T184016-v2.5.0-pg14.19.sql.gz';
+
+      const { status } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({
+          action: 'restore_database',
+          restoreBackupFilename: filename,
+        });
+
+      expect(status).toBe(201);
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeTruthy();
+
+      const { status: status2, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+      expect(status2).toBe(200);
+      expect(body).toEqual(
+        expect.objectContaining({
+          active: true,
+          action: 'restore_database',
+        }),
+      );
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 60_000,
+          },
+        )
+        .toBeFalsy();
+    });
+
+    it.sequential('fail to restore a corrupted backup', { timeout: 60_000 }, async () => {
+      await utils.prepareTestBackup('corrupted');
+
+      const { status, headers } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({
+          action: 'restore_database',
+          restoreBackupFilename: 'development-corrupted.sql.gz',
+        });
+
+      expect(status).toBe(201);
+      cookie = headers['set-cookie'][0].split(';')[0];
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeTruthy();
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+            expect(status).toBe(200);
+            return body;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toEqual(
+          expect.objectContaining({
+            active: true,
+            action: 'restore_database',
+            error: 'Something went wrong, see logs!',
+          }),
+        );
+
+      const { status: status2, body: body2 } = await request(app)
+        .get('/admin/maintenance/status')
+        .set('cookie', cookie!)
+        .send({ token: 'token' });
+      expect(status2).toBe(200);
+      expect(body2).toEqual(
+        expect.objectContaining({
+          active: true,
+          action: 'restore_database',
+          error: expect.stringContaining('IM CORRUPTED'),
+        }),
+      );
+
+      await request(app).post('/admin/maintenance').set('cookie', cookie!).send({
+        action: 'end',
+      });
+
+      await utils.poll(
+        () => request(app).get('/server/config'),
+        ({ status, body }) => status === 200 && !body.maintenanceMode,
+      );
+    });
+
+    it.sequential('rollback to restore point if backup is missing admin', { timeout: 60_000 }, async () => {
+      await utils.prepareTestBackup('empty');
+
+      const { status, headers } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({
+          action: 'restore_database',
+          restoreBackupFilename: 'development-empty.sql.gz',
+        });
+
+      expect(status).toBe(201);
+      cookie = headers['set-cookie'][0].split(';')[0];
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeTruthy();
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+            expect(status).toBe(200);
+            return body;
+          },
+          {
+            interval: 500,
+            timeout: 30_000,
+          },
+        )
+        .toEqual(
+          expect.objectContaining({
+            active: true,
+            action: 'restore_database',
+            error: 'Something went wrong, see logs!',
+          }),
+        );
+
+      const { status: status2, body: body2 } = await request(app)
+        .get('/admin/maintenance/status')
+        .set('cookie', cookie!)
+        .send({ token: 'token' });
+      expect(status2).toBe(200);
+      expect(body2).toEqual(
+        expect.objectContaining({
+          active: true,
+          action: 'restore_database',
+          error: expect.stringContaining('Server health check failed, no admin exists.'),
+        }),
+      );
+
+      await request(app).post('/admin/maintenance').set('cookie', cookie!).send({
+        action: 'end',
+      });
+
+      await utils.poll(
+        () => request(app).get('/server/config'),
+        ({ status, body }) => status === 200 && !body.maintenanceMode,
+      );
+    });
+  });
+});
--- a/e2e/src/api/specs/library.e2e-spec.ts
+++ b/e2e/src/api/specs/library.e2e-spec.ts
@@ -1006,7 +1006,7 @@ describe('/libraries', () => {
        rmSync(`${testAssetDir}/temp/xmp`, { recursive: true, force: true });
      });

-      it('should switch from using file metadata to file.xmp metadata when asset refreshes', async () => {
+      it('should switch from using file metadata to file.ext.xmp metadata when asset refreshes', async () => {
        const library = await utils.createLibrary(admin.accessToken, {
          ownerId: admin.userId,
          importPaths: [`${testAssetDirInternal}/temp/xmp`],
--- a/e2e/src/api/specs/maintenance.e2e-spec.ts
+++ b/e2e/src/api/specs/maintenance.e2e-spec.ts
@@ -0,0 +1,199 @@
+import { LoginResponseDto } from '@immich/sdk';
+import { createUserDto } from 'src/fixtures';
+import { errorDto } from 'src/responses';
+import { app, utils } from 'src/utils';
+import request from 'supertest';
+import { beforeAll, describe, expect, it } from 'vitest';
+
+describe('/admin/maintenance', () => {
+  let cookie: string | undefined;
+  let admin: LoginResponseDto;
+  let nonAdmin: LoginResponseDto;
+
+  beforeAll(async () => {
+    await utils.resetDatabase();
+    admin = await utils.adminSetup();
+    nonAdmin = await utils.userSetup(admin.accessToken, createUserDto.user1);
+    await utils.resetBackups(admin.accessToken);
+  });
+
+  // => outside of maintenance mode
+
+  describe('GET ~/server/config', async () => {
+    it('should indicate we are out of maintenance mode', async () => {
+      const { status, body } = await request(app).get('/server/config');
+      expect(status).toBe(200);
+      expect(body.maintenanceMode).toBeFalsy();
+    });
+  });
+
+  describe('GET /status', async () => {
+    it('to always indicate we are not in maintenance mode', async () => {
+      const { status, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+      expect(status).toBe(200);
+      expect(body).toEqual({
+        active: false,
+        action: 'end',
+      });
+    });
+  });
+
+  describe('POST /login', async () => {
+    it('should not work out of maintenance mode', async () => {
+      const { status, body } = await request(app).post('/admin/maintenance/login').send({ token: 'token' });
+      expect(status).toBe(400);
+      expect(body).toEqual(errorDto.badRequest('Not in maintenance mode'));
+    });
+  });
+
+  // => enter maintenance mode
+
+  describe.sequential('POST /', () => {
+    it('should require authentication', async () => {
+      const { status, body } = await request(app).post('/admin/maintenance').send({
+        active: false,
+        action: 'end',
+      });
+      expect(status).toBe(401);
+      expect(body).toEqual(errorDto.unauthorized);
+    });
+
+    it('should only work for admins', async () => {
+      const { status, body } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${nonAdmin.accessToken}`)
+        .send({ action: 'end' });
+      expect(status).toBe(403);
+      expect(body).toEqual(errorDto.forbidden);
+    });
+
+    it('should be a no-op if try to exit maintenance mode', async () => {
+      const { status } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({ action: 'end' });
+      expect(status).toBe(201);
+    });
+
+    it('should enter maintenance mode', async () => {
+      const { status, headers } = await request(app)
+        .post('/admin/maintenance')
+        .set('Authorization', `Bearer ${admin.accessToken}`)
+        .send({
+          action: 'start',
+        });
+
+      expect(status).toBe(201);
+
+      cookie = headers['set-cookie'][0].split(';')[0];
+      expect(cookie).toEqual(
+        expect.stringMatching(/^immich_maintenance_token=[A-Za-z0-9-_]*\.[A-Za-z0-9-_]*\.[A-Za-z0-9-_]*$/),
+      );
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeTruthy();
+    });
+  });
+
+  // => in maintenance mode
+
+  describe.sequential('in maintenance mode', () => {
+    describe('GET ~/server/config', async () => {
+      it('should indicate we are in maintenance mode', async () => {
+        const { status, body } = await request(app).get('/server/config');
+        expect(status).toBe(200);
+        expect(body.maintenanceMode).toBeTruthy();
+      });
+    });
+
+    describe('GET /status', async () => {
+      it('to indicate we are in maintenance mode', async () => {
+        const { status, body } = await request(app).get('/admin/maintenance/status').send({ token: 'token' });
+        expect(status).toBe(200);
+        expect(body).toEqual({
+          active: true,
+          action: 'start',
+        });
+      });
+    });
+
+    describe('POST /login', async () => {
+      it('should fail without cookie or token in body', async () => {
+        const { status, body } = await request(app).post('/admin/maintenance/login').send({});
+        expect(status).toBe(401);
+        expect(body).toEqual(errorDto.unauthorizedWithMessage('Missing JWT Token'));
+      });
+
+      it('should succeed with cookie', async () => {
+        const { status, body } = await request(app).post('/admin/maintenance/login').set('cookie', cookie!).send({});
+        expect(status).toBe(201);
+        expect(body).toEqual(
+          expect.objectContaining({
+            username: 'Immich Admin',
+          }),
+        );
+      });
+
+      it('should succeed with token', async () => {
+        const { status, body } = await request(app)
+          .post('/admin/maintenance/login')
+          .send({
+            token: cookie!.split('=')[1].trim(),
+          });
+        expect(status).toBe(201);
+        expect(body).toEqual(
+          expect.objectContaining({
+            username: 'Immich Admin',
+          }),
+        );
+      });
+    });
+
+    describe('POST /', async () => {
+      it('should be a no-op if try to enter maintenance mode', async () => {
+        const { status } = await request(app)
+          .post('/admin/maintenance')
+          .set('cookie', cookie!)
+          .send({ action: 'start' });
+        expect(status).toBe(201);
+      });
+    });
+  });
+
+  // => exit maintenance mode
+
+  describe.sequential('POST /', () => {
+    it('should exit maintenance mode', async () => {
+      const { status } = await request(app).post('/admin/maintenance').set('cookie', cookie!).send({
+        action: 'end',
+      });
+
+      expect(status).toBe(201);
+
+      await expect
+        .poll(
+          async () => {
+            const { status, body } = await request(app).get('/server/config');
+            expect(status).toBe(200);
+            return body.maintenanceMode;
+          },
+          {
+            interval: 500,
+            timeout: 10_000,
+          },
+        )
+        .toBeFalsy();
+    });
+  });
+});
--- a/e2e/src/api/specs/oauth.e2e-spec.ts
+++ b/e2e/src/api/specs/oauth.e2e-spec.ts
@@ -1,3 +1,4 @@
+import { OAuthClient, OAuthUser } from '@immich/e2e-auth-server';
 import {
  LoginResponseDto,
  SystemConfigOAuthDto,
@@ -8,13 +9,12 @@ import {
 } from '@immich/sdk';
 import { createHash, randomBytes } from 'node:crypto';
 import { errorDto } from 'src/responses';
-import { OAuthClient, OAuthUser } from 'src/setup/auth-server';
 import { app, asBearerAuth, baseUrl, utils } from 'src/utils';
 import request from 'supertest';
 import { beforeAll, describe, expect, it } from 'vitest';

 const authServer = {
-  internal: 'http://auth-server:2286',
+  internal: 'http://e2e-auth-server:2286',
  external: 'http://127.0.0.1:2286',
 };

--- a/e2e/src/api/specs/server.e2e-spec.ts
+++ b/e2e/src/api/specs/server.e2e-spec.ts
@@ -136,6 +136,7 @@ describe('/server', () => {
        externalDomain: '',
        publicUsers: true,
        isOnboarded: false,
+        maintenanceMode: false,
        mapDarkStyleUrl: 'https://tiles.immich.cloud/v1/style/dark.json',
        mapLightStyleUrl: 'https://tiles.immich.cloud/v1/style/light.json',
      });
--- a/e2e/src/api/specs/shared-link.e2e-spec.ts
+++ b/e2e/src/api/specs/shared-link.e2e-spec.ts
@@ -20,7 +20,6 @@ describe('/shared-links', () => {
  let user1: LoginResponseDto;
  let user2: LoginResponseDto;
  let album: AlbumResponseDto;
-  let metadataAlbum: AlbumResponseDto;
  let deletedAlbum: AlbumResponseDto;
  let linkWithDeletedAlbum: SharedLinkResponseDto;
  let linkWithPassword: SharedLinkResponseDto;
@@ -41,18 +40,9 @@ describe('/shared-links', () => {

    [asset1, asset2] = await Promise.all([utils.createAsset(user1.accessToken), utils.createAsset(user1.accessToken)]);

-    [album, deletedAlbum, metadataAlbum] = await Promise.all([
+    [album, deletedAlbum] = await Promise.all([
      createAlbum({ createAlbumDto: { albumName: 'album' } }, { headers: asBearerAuth(user1.accessToken) }),
      createAlbum({ createAlbumDto: { albumName: 'deleted album' } }, { headers: asBearerAuth(user2.accessToken) }),
-      createAlbum(
-        {
-          createAlbumDto: {
-            albumName: 'metadata album',
-            assetIds: [asset1.id],
-          },
-        },
-        { headers: asBearerAuth(user1.accessToken) },
-      ),
    ]);

    [linkWithDeletedAlbum, linkWithAlbum, linkWithAssets, linkWithPassword, linkWithMetadata, linkWithoutMetadata] =
@@ -75,14 +65,14 @@ describe('/shared-links', () => {
          password: 'foo',
        }),
        utils.createSharedLink(user1.accessToken, {
-          type: SharedLinkType.Album,
-          albumId: metadataAlbum.id,
+          type: SharedLinkType.Individual,
+          assetIds: [asset1.id],
          showMetadata: true,
-          slug: 'metadata-album',
+          slug: 'metadata-slug',
        }),
        utils.createSharedLink(user1.accessToken, {
-          type: SharedLinkType.Album,
-          albumId: metadataAlbum.id,
+          type: SharedLinkType.Individual,
+          assetIds: [asset1.id],
          showMetadata: false,
        }),
      ]);
@@ -95,9 +85,7 @@ describe('/shared-links', () => {
      const resp = await request(shareUrl).get(`/${linkWithMetadata.key}`);
      expect(resp.status).toBe(200);
      expect(resp.header['content-type']).toContain('text/html');
-      expect(resp.text).toContain(
-        `<meta name="description" content="${metadataAlbum.assets.length} shared photos &amp; videos" />`,
-      );
+      expect(resp.text).toContain(`<meta name="description" content="1 shared photos &amp; videos" />`);
    });

    it('should have correct asset count in meta tag for empty album', async () => {
@@ -144,9 +132,7 @@ describe('/shared-links', () => {
      const resp = await request(baseUrl).get(`/s/${linkWithMetadata.slug}`);
      expect(resp.status).toBe(200);
      expect(resp.header['content-type']).toContain('text/html');
-      expect(resp.text).toContain(
-        `<meta name="description" content="${metadataAlbum.assets.length} shared photos &amp; videos" />`,
-      );
+      expect(resp.text).toContain(`<meta name="description" content="1 shared photos &amp; videos" />`);
    });
  });

@@ -271,12 +257,12 @@ describe('/shared-links', () => {
      );
    });

-    it('should return metadata for album shared link', async () => {
+    it('should return metadata for individual shared link', async () => {
      const { status, body } = await request(app).get('/shared-links/me').query({ key: linkWithMetadata.key });

      expect(status).toBe(200);
-      expect(body.assets).toHaveLength(0);
-      expect(body.album).toBeDefined();
+      expect(body.assets).toHaveLength(1);
+      expect(body.album).not.toBeDefined();
    });

    it('should not return metadata for album shared link without metadata', async () => {
@@ -284,7 +270,7 @@ describe('/shared-links', () => {

      expect(status).toBe(200);
      expect(body.assets).toHaveLength(1);
-      expect(body.album).toBeDefined();
+      expect(body.album).not.toBeDefined();

      const asset = body.assets[0];
      expect(asset).not.toHaveProperty('exifInfo');
--- a/e2e/src/generators.ts
+++ b/e2e/src/generators.ts
@@ -26,6 +26,5 @@ export const makeRandomImage = () => {
  if (!value) {
    throw new Error('Ran out of random asset data');
  }
-
  return value;
 };
--- a/e2e/src/generators/timeline.ts
+++ b/e2e/src/generators/timeline.ts
@@ -0,0 +1,37 @@
+export { generateTimelineData } from './timeline/model-objects';
+
+export { createDefaultTimelineConfig, validateTimelineConfig } from './timeline/timeline-config';
+
+export type {
+  MockAlbum,
+  MonthSpec,
+  SerializedTimelineData,
+  MockTimelineAsset as TimelineAssetConfig,
+  TimelineConfig,
+  MockTimelineData as TimelineData,
+} from './timeline/timeline-config';
+
+export {
+  getAlbum,
+  getAsset,
+  getTimeBucket,
+  getTimeBuckets,
+  toAssetResponseDto,
+  toColumnarFormat,
+} from './timeline/rest-response';
+
+export type { Changes } from './timeline/rest-response';
+
+export { randomImage, randomImageFromString, randomPreview, randomThumbnail } from './timeline/images';
+
+export {
+  SeededRandom,
+  getMockAsset,
+  parseTimeBucketKey,
+  selectRandom,
+  selectRandomDays,
+  selectRandomMultiple,
+} from './timeline/utils';
+
+export { ASSET_DISTRIBUTION, DAY_DISTRIBUTION } from './timeline/distribution-patterns';
+export type { DayPattern, MonthDistribution } from './timeline/distribution-patterns';
--- a/e2e/src/generators/timeline/distribution-patterns.ts
+++ b/e2e/src/generators/timeline/distribution-patterns.ts
@@ -0,0 +1,183 @@
+import { generateConsecutiveDays, generateDayAssets } from 'src/generators/timeline/model-objects';
+import { SeededRandom, selectRandomDays } from 'src/generators/timeline/utils';
+import type { MockTimelineAsset } from './timeline-config';
+import { GENERATION_CONSTANTS } from './timeline-config';
+
+type AssetDistributionStrategy = (rng: SeededRandom) => number;
+
+type DayDistributionStrategy = (
+  year: number,
+  month: number,
+  daysInMonth: number,
+  totalAssets: number,
+  ownerId: string,
+  rng: SeededRandom,
+) => MockTimelineAsset[];
+
+/**
+ * Strategies for determining total asset count per month
+ */
+export const ASSET_DISTRIBUTION: Record<MonthDistribution, AssetDistributionStrategy | null> = {
+  empty: null, // Special case - handled separately
+  sparse: (rng) => rng.nextInt(3, 9), // 3-8 assets
+  medium: (rng) => rng.nextInt(15, 31), // 15-30 assets
+  dense: (rng) => rng.nextInt(50, 81), // 50-80 assets
+  'very-dense': (rng) => rng.nextInt(80, 151), // 80-150 assets
+};
+
+/**
+ * Strategies for distributing assets across days within a month
+ */
+export const DAY_DISTRIBUTION: Record<DayPattern, DayDistributionStrategy> = {
+  'single-day': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // All assets on one day in the middle of the month
+    const day = Math.floor(daysInMonth / 2);
+    return generateDayAssets(year, month, day, totalAssets, ownerId, rng);
+  },
+
+  'consecutive-large': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // 3-5 consecutive days with evenly distributed assets
+    const numDays = Math.min(5, Math.floor(totalAssets / 15));
+    const startDay = rng.nextInt(1, daysInMonth - numDays + 2);
+    return generateConsecutiveDays(year, month, startDay, numDays, totalAssets, ownerId, rng);
+  },
+
+  'consecutive-small': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Multiple consecutive days with 1-3 assets each (side-by-side layout)
+    const assets: MockTimelineAsset[] = [];
+    const numDays = Math.min(totalAssets, Math.floor(daysInMonth / 2));
+    const startDay = rng.nextInt(1, daysInMonth - numDays + 2);
+    let assetIndex = 0;
+
+    for (let i = 0; i < numDays && assetIndex < totalAssets; i++) {
+      const dayAssets = Math.min(3, rng.nextInt(1, 4));
+      const actualAssets = Math.min(dayAssets, totalAssets - assetIndex);
+      // Create a new RNG for this day
+      const dayRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, startDay + i, actualAssets, ownerId, dayRng));
+      assetIndex += actualAssets;
+    }
+    return assets;
+  },
+
+  alternating: (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Alternate between large (15-25) and small (1-3) days
+    const assets: MockTimelineAsset[] = [];
+    let day = 1;
+    let isLarge = true;
+    let assetIndex = 0;
+
+    while (assetIndex < totalAssets && day <= daysInMonth) {
+      const dayAssets = isLarge ? Math.min(25, rng.nextInt(15, 26)) : rng.nextInt(1, 4);
+
+      const actualAssets = Math.min(dayAssets, totalAssets - assetIndex);
+      // Create a new RNG for this day
+      const dayRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, day, actualAssets, ownerId, dayRng));
+      assetIndex += actualAssets;
+
+      day += isLarge ? 1 : 1; // Could add gaps here
+      isLarge = !isLarge;
+    }
+    return assets;
+  },
+
+  'sparse-scattered': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Spread assets across random days with gaps
+    const assets: MockTimelineAsset[] = [];
+    const numDays = Math.min(totalAssets, Math.floor(daysInMonth * GENERATION_CONSTANTS.SPARSE_DAY_COVERAGE));
+    const daysWithPhotos = selectRandomDays(daysInMonth, numDays, rng);
+    let assetIndex = 0;
+
+    for (let i = 0; i < daysWithPhotos.length && assetIndex < totalAssets; i++) {
+      const dayAssets =
+        Math.floor(totalAssets / numDays) + (i === daysWithPhotos.length - 1 ? totalAssets % numDays : 0);
+      // Create a new RNG for this day
+      const dayRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, daysWithPhotos[i], dayAssets, ownerId, dayRng));
+      assetIndex += dayAssets;
+    }
+    return assets;
+  },
+
+  'start-heavy': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Most assets in first week
+    const assets: MockTimelineAsset[] = [];
+    const firstWeekAssets = Math.floor(totalAssets * 0.7);
+    const remainingAssets = totalAssets - firstWeekAssets;
+
+    // First 7 days
+    assets.push(...generateConsecutiveDays(year, month, 1, 7, firstWeekAssets, ownerId, rng));
+
+    // Remaining scattered
+    if (remainingAssets > 0) {
+      const midDay = Math.floor(daysInMonth / 2);
+      // Create a new RNG for the remaining assets
+      const remainingRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, midDay, remainingAssets, ownerId, remainingRng));
+    }
+    return assets;
+  },
+
+  'end-heavy': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Most assets in last week
+    const assets: MockTimelineAsset[] = [];
+    const lastWeekAssets = Math.floor(totalAssets * 0.7);
+    const remainingAssets = totalAssets - lastWeekAssets;
+
+    // Remaining at start
+    if (remainingAssets > 0) {
+      // Create a new RNG for the start assets
+      const startRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, 2, remainingAssets, ownerId, startRng));
+    }
+
+    // Last 7 days
+    const startDay = daysInMonth - 6;
+    assets.push(...generateConsecutiveDays(year, month, startDay, 7, lastWeekAssets, ownerId, rng));
+    return assets;
+  },
+
+  'mid-heavy': (year, month, daysInMonth, totalAssets, ownerId, rng) => {
+    // Most assets in middle of month
+    const assets: MockTimelineAsset[] = [];
+    const midAssets = Math.floor(totalAssets * 0.7);
+    const sideAssets = Math.floor((totalAssets - midAssets) / 2);
+
+    // Start
+    if (sideAssets > 0) {
+      // Create a new RNG for the start assets
+      const startRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, 2, sideAssets, ownerId, startRng));
+    }
+
+    // Middle
+    const midStart = Math.floor(daysInMonth / 2) - 3;
+    assets.push(...generateConsecutiveDays(year, month, midStart, 7, midAssets, ownerId, rng));
+
+    // End
+    const endAssets = totalAssets - midAssets - sideAssets;
+    if (endAssets > 0) {
+      // Create a new RNG for the end assets
+      const endRng = new SeededRandom(rng.nextInt(0, 1_000_000));
+      assets.push(...generateDayAssets(year, month, daysInMonth - 1, endAssets, ownerId, endRng));
+    }
+    return assets;
+  },
+};
+export type MonthDistribution =
+  | 'empty' // 0 assets
+  | 'sparse' // 3-8 assets
+  | 'medium' // 15-30 assets
+  | 'dense' // 50-80 assets
+  | 'very-dense'; // 80-150 assets
+
+export type DayPattern =
+  | 'single-day' // All images in one day
+  | 'consecutive-large' // Multiple days with 15-25 images each
+  | 'consecutive-small' // Multiple days with 1-3 images each (side-by-side)
+  | 'alternating' // Alternating large/small days
+  | 'sparse-scattered' // Few images scattered across month
+  | 'start-heavy' // Most images at start of month
+  | 'end-heavy' // Most images at end of month
+  | 'mid-heavy'; // Most images in middle of month
--- a/e2e/src/generators/timeline/images.ts
+++ b/e2e/src/generators/timeline/images.ts
@@ -0,0 +1,111 @@
+import sharp from 'sharp';
+import { SeededRandom } from 'src/generators/timeline/utils';
+
+export const randomThumbnail = async (seed: string, ratio: number) => {
+  const height = 235;
+  const width = Math.round(height * ratio);
+  return randomImageFromString(seed, { width, height });
+};
+
+export const randomPreview = async (seed: string, ratio: number) => {
+  const height = 500;
+  const width = Math.round(height * ratio);
+  return randomImageFromString(seed, { width, height });
+};
+
+export const randomImageFromString = async (
+  seed: string = '',
+  { width = 100, height = 100 }: { width: number; height: number },
+) => {
+  // Convert string to number for seeding
+  let seedNumber = 0;
+  for (let i = 0; i < seed.length; i++) {
+    seedNumber = (seedNumber << 5) - seedNumber + (seed.codePointAt(i) ?? 0);
+    seedNumber = seedNumber & seedNumber; // Convert to 32bit integer
+  }
+  return randomImage(new SeededRandom(Math.abs(seedNumber)), { width, height });
+};
+
+export const randomImage = async (rng: SeededRandom, { width, height }: { width: number; height: number }) => {
+  const r1 = rng.nextInt(0, 256);
+  const g1 = rng.nextInt(0, 256);
+  const b1 = rng.nextInt(0, 256);
+  const r2 = rng.nextInt(0, 256);
+  const g2 = rng.nextInt(0, 256);
+  const b2 = rng.nextInt(0, 256);
+  const patternType = rng.nextInt(0, 5);
+
+  let svgPattern = '';
+
+  switch (patternType) {
+    case 0: {
+      // Solid color
+      svgPattern = `<svg width="${width}" height="${height}">
+        <rect x="0" y="0" width="${width}" height="${height}" fill="rgb(${r1},${g1},${b1})"/>
+      </svg>`;
+      break;
+    }
+
+    case 1: {
+      // Horizontal stripes
+      const stripeHeight = 10;
+      svgPattern = `<svg width="${width}" height="${height}">
+        ${Array.from(
+          { length: height / stripeHeight },
+          (_, i) =>
+            `<rect x="0" y="${i * stripeHeight}" width="${width}" height="${stripeHeight}"
+            fill="rgb(${i % 2 ? r1 : r2},${i % 2 ? g1 : g2},${i % 2 ? b1 : b2})"/>`,
+        ).join('')}
+      </svg>`;
+      break;
+    }
+
+    case 2: {
+      // Vertical stripes
+      const stripeWidth = 10;
+      svgPattern = `<svg width="${width}" height="${height}">
+        ${Array.from(
+          { length: width / stripeWidth },
+          (_, i) =>
+            `<rect x="${i * stripeWidth}" y="0" width="${stripeWidth}" height="${height}"
+            fill="rgb(${i % 2 ? r1 : r2},${i % 2 ? g1 : g2},${i % 2 ? b1 : b2})"/>`,
+        ).join('')}
+      </svg>`;
+      break;
+    }
+
+    case 3: {
+      // Checkerboard
+      const squareSize = 10;
+      svgPattern = `<svg width="${width}" height="${height}">
+        ${Array.from({ length: height / squareSize }, (_, row) =>
+          Array.from({ length: width / squareSize }, (_, col) => {
+            const isEven = (row + col) % 2 === 0;
+            return `<rect x="${col * squareSize}" y="${row * squareSize}"
+              width="${squareSize}" height="${squareSize}"
+              fill="rgb(${isEven ? r1 : r2},${isEven ? g1 : g2},${isEven ? b1 : b2})"/>`;
+          }).join(''),
+        ).join('')}
+      </svg>`;
+      break;
+    }
+
+    case 4: {
+      // Diagonal stripes
+      svgPattern = `<svg width="${width}" height="${height}">
+        <defs>
+          <pattern id="diagonal" x="0" y="0" width="20" height="20" patternUnits="userSpaceOnUse">
+            <rect x="0" y="0" width="10" height="20" fill="rgb(${r1},${g1},${b1})"/>
+            <rect x="10" y="0" width="10" height="20" fill="rgb(${r2},${g2},${b2})"/>
+          </pattern>
+        </defs>
+        <rect x="0" y="0" width="${width}" height="${height}" fill="url(#diagonal)" transform="rotate(45 50 50)"/>
+      </svg>`;
+      break;
+    }
+  }
+
+  const svgBuffer = Buffer.from(svgPattern);
+  const jpegData = await sharp(svgBuffer).jpeg({ quality: 50 }).toBuffer();
+  return jpegData;
+};
--- a/e2e/src/generators/timeline/model-objects.ts
+++ b/e2e/src/generators/timeline/model-objects.ts
@@ -0,0 +1,265 @@
+/**
+ * Generator functions for timeline model objects
+ */
+
+import { faker } from '@faker-js/faker';
+import { AssetVisibility } from '@immich/sdk';
+import { DateTime } from 'luxon';
+import { writeFileSync } from 'node:fs';
+import { SeededRandom } from 'src/generators/timeline/utils';
+import type { DayPattern, MonthDistribution } from './distribution-patterns';
+import { ASSET_DISTRIBUTION, DAY_DISTRIBUTION } from './distribution-patterns';
+import type { MockTimelineAsset, MockTimelineData, SerializedTimelineData, TimelineConfig } from './timeline-config';
+import { ASPECT_RATIO_WEIGHTS, GENERATION_CONSTANTS, validateTimelineConfig } from './timeline-config';
+
+/**
+ * Generate a random aspect ratio based on weighted probabilities
+ */
+export function generateAspectRatio(rng: SeededRandom): string {
+  const random = rng.next();
+  let cumulative = 0;
+
+  for (const [ratio, weight] of Object.entries(ASPECT_RATIO_WEIGHTS)) {
+    cumulative += weight;
+    if (random < cumulative) {
+      return ratio;
+    }
+  }
+  return '16:9'; // Default fallback
+}
+
+export function generateThumbhash(rng: SeededRandom): string {
+  return Array.from({ length: 10 }, () => rng.nextInt(0, 256).toString(16).padStart(2, '0')).join('');
+}
+
+export function generateDuration(rng: SeededRandom): string {
+  return `${rng.nextInt(GENERATION_CONSTANTS.MIN_VIDEO_DURATION_SECONDS, GENERATION_CONSTANTS.MAX_VIDEO_DURATION_SECONDS)}.${rng.nextInt(0, 1000).toString().padStart(3, '0')}`;
+}
+
+export function generateUUID(): string {
+  return faker.string.uuid();
+}
+
+export function generateAsset(
+  year: number,
+  month: number,
+  day: number,
+  ownerId: string,
+  rng: SeededRandom,
+): MockTimelineAsset {
+  const from = DateTime.fromObject({ year, month, day }).setZone('UTC');
+  const to = from.endOf('day');
+  const date = faker.date.between({ from: from.toJSDate(), to: to.toJSDate() });
+  const isVideo = rng.next() < GENERATION_CONSTANTS.VIDEO_PROBABILITY;
+
+  const assetId = generateUUID();
+  const hasGPS = rng.next() < GENERATION_CONSTANTS.GPS_PERCENTAGE;
+
+  const ratio = generateAspectRatio(rng);
+
+  const asset: MockTimelineAsset = {
+    id: assetId,
+    ownerId,
+    ratio: Number.parseFloat(ratio.split(':')[0]) / Number.parseFloat(ratio.split(':')[1]),
+    thumbhash: generateThumbhash(rng),
+    localDateTime: date.toISOString(),
+    fileCreatedAt: date.toISOString(),
+    isFavorite: rng.next() < GENERATION_CONSTANTS.FAVORITE_PROBABILITY,
+    isTrashed: false,
+    isVideo,
+    isImage: !isVideo,
+    duration: isVideo ? generateDuration(rng) : null,
+    projectionType: null,
+    livePhotoVideoId: null,
+    city: hasGPS ? faker.location.city() : null,
+    country: hasGPS ? faker.location.country() : null,
+    people: null,
+    latitude: hasGPS ? faker.location.latitude() : null,
+    longitude: hasGPS ? faker.location.longitude() : null,
+    visibility: AssetVisibility.Timeline,
+    stack: null,
+    fileSizeInByte: faker.number.int({ min: 510, max: 5_000_000 }),
+    checksum: faker.string.alphanumeric({ length: 5 }),
+  };
+
+  return asset;
+}
+
+/**
+ * Generate assets for a specific day
+ */
+export function generateDayAssets(
+  year: number,
+  month: number,
+  day: number,
+  assetCount: number,
+  ownerId: string,
+  rng: SeededRandom,
+): MockTimelineAsset[] {
+  return Array.from({ length: assetCount }, () => generateAsset(year, month, day, ownerId, rng));
+}
+
+/**
+ * Distribute assets evenly across consecutive days
+ *
+ * @returns Array of generated timeline assets
+ */
+export function generateConsecutiveDays(
+  year: number,
+  month: number,
+  startDay: number,
+  numDays: number,
+  totalAssets: number,
+  ownerId: string,
+  rng: SeededRandom,
+): MockTimelineAsset[] {
+  const assets: MockTimelineAsset[] = [];
+  const assetsPerDay = Math.floor(totalAssets / numDays);
+
+  for (let i = 0; i < numDays; i++) {
+    const dayAssets =
+      i === numDays - 1
+        ? totalAssets - assetsPerDay * (numDays - 1) // Remainder on last day
+        : assetsPerDay;
+    // Create a new RNG with a different seed for each day
+    const dayRng = new SeededRandom(rng.nextInt(0, 1_000_000) + i * 100);
+    assets.push(...generateDayAssets(year, month, startDay + i, dayAssets, ownerId, dayRng));
+  }
+
+  return assets;
+}
+
+/**
+ * Generate assets for a month with specified distribution pattern
+ */
+export function generateMonthAssets(
+  year: number,
+  month: number,
+  ownerId: string,
+  distribution: MonthDistribution = 'medium',
+  pattern: DayPattern = 'consecutive-large',
+  rng: SeededRandom,
+): MockTimelineAsset[] {
+  const daysInMonth = new Date(year, month, 0).getDate();
+
+  if (distribution === 'empty') {
+    return [];
+  }
+
+  const distributionStrategy = ASSET_DISTRIBUTION[distribution];
+  if (!distributionStrategy) {
+    console.warn(`Unknown distribution: ${distribution}, defaulting to medium`);
+    return [];
+  }
+  const totalAssets = distributionStrategy(rng);
+
+  const dayStrategy = DAY_DISTRIBUTION[pattern];
+  if (!dayStrategy) {
+    console.warn(`Unknown pattern: ${pattern}, defaulting to consecutive-large`);
+    // Fallback to consecutive-large pattern
+    const numDays = Math.min(5, Math.floor(totalAssets / 15));
+    const startDay = rng.nextInt(1, daysInMonth - numDays + 2);
+    const assets = generateConsecutiveDays(year, month, startDay, numDays, totalAssets, ownerId, rng);
+    assets.sort((a, b) => DateTime.fromISO(b.localDateTime).diff(DateTime.fromISO(a.localDateTime)).milliseconds);
+    return assets;
+  }
+
+  const assets = dayStrategy(year, month, daysInMonth, totalAssets, ownerId, rng);
+  assets.sort((a, b) => DateTime.fromISO(b.localDateTime).diff(DateTime.fromISO(a.localDateTime)).milliseconds);
+  return assets;
+}
+
+/**
+ * Main generator function for timeline data
+ */
+export function generateTimelineData(config: TimelineConfig): MockTimelineData {
+  validateTimelineConfig(config);
+
+  const buckets = new Map<string, MockTimelineAsset[]>();
+  const monthStats: Record<string, { count: number; distribution: MonthDistribution; pattern: DayPattern }> = {};
+
+  const globalRng = new SeededRandom(config.seed || GENERATION_CONSTANTS.DEFAULT_SEED);
+  faker.seed(globalRng.nextInt(0, 1_000_000));
+  for (const monthConfig of config.months) {
+    const { year, month, distribution, pattern } = monthConfig;
+
+    const monthSeed = globalRng.nextInt(0, 1_000_000);
+    const monthRng = new SeededRandom(monthSeed);
+
+    const monthAssets = generateMonthAssets(
+      year,
+      month,
+      config.ownerId || generateUUID(),
+      distribution,
+      pattern,
+      monthRng,
+    );
+
+    if (monthAssets.length > 0) {
+      const monthKey = `${year}-${month.toString().padStart(2, '0')}`;
+      monthStats[monthKey] = {
+        count: monthAssets.length,
+        distribution,
+        pattern,
+      };
+
+      // Create bucket key (YYYY-MM-01)
+      const bucketKey = `${year}-${month.toString().padStart(2, '0')}-01`;
+      buckets.set(bucketKey, monthAssets);
+    }
+  }
+
+  // Create a mock album from random assets
+  const allAssets = [...buckets.values()].flat();
+
+  // Select 10-30 random assets for the album (or all assets if less than 10)
+  const albumSize = Math.min(allAssets.length, globalRng.nextInt(10, 31));
+  const selectedAssetConfigs: MockTimelineAsset[] = [];
+  const usedIndices = new Set<number>();
+
+  while (selectedAssetConfigs.length < albumSize && usedIndices.size < allAssets.length) {
+    const randomIndex = globalRng.nextInt(0, allAssets.length);
+    if (!usedIndices.has(randomIndex)) {
+      usedIndices.add(randomIndex);
+      selectedAssetConfigs.push(allAssets[randomIndex]);
+    }
+  }
+
+  // Sort selected assets by date (newest first)
+  selectedAssetConfigs.sort(
+    (a, b) => DateTime.fromISO(b.localDateTime).diff(DateTime.fromISO(a.localDateTime)).milliseconds,
+  );
+
+  const selectedAssets = selectedAssetConfigs.map((asset) => asset.id);
+
+  const now = new Date().toISOString();
+  const album = {
+    id: generateUUID(),
+    albumName: 'Test Album',
+    description: 'A mock album for testing',
+    assetIds: selectedAssets,
+    thumbnailAssetId: selectedAssets.length > 0 ? selectedAssets[0] : null,
+    createdAt: now,
+    updatedAt: now,
+  };
+
+  // Write to file if configured
+  if (config.writeToFile) {
+    const outputPath = config.outputPath || '/tmp/timeline-data.json';
+
+    // Convert Map to object for serialization
+    const serializedData: SerializedTimelineData = {
+      buckets: Object.fromEntries(buckets),
+      album,
+    };
+
+    try {
+      writeFileSync(outputPath, JSON.stringify(serializedData, null, 2));
+      console.log(`Timeline data written to ${outputPath}`);
+    } catch (error) {
+      console.error(`Failed to write timeline data to ${outputPath}:`, error);
+    }
+  }
+
+  return { buckets, album };
+}
--- a/e2e/src/generators/timeline/rest-response.ts
+++ b/e2e/src/generators/timeline/rest-response.ts
@@ -0,0 +1,439 @@
+/**
+ * REST API output functions for converting timeline data to API response formats
+ */
+
+import {
+  AssetTypeEnum,
+  AssetVisibility,
+  UserAvatarColor,
+  type AlbumResponseDto,
+  type AssetResponseDto,
+  type ExifResponseDto,
+  type TimeBucketAssetResponseDto,
+  type TimeBucketsResponseDto,
+  type UserResponseDto,
+} from '@immich/sdk';
+import { DateTime } from 'luxon';
+import { signupDto } from 'src/fixtures';
+import { parseTimeBucketKey } from 'src/generators/timeline/utils';
+import type { MockTimelineAsset, MockTimelineData } from './timeline-config';
+
+/**
+ * Convert timeline/asset models to columnar format (parallel arrays)
+ */
+export function toColumnarFormat(assets: MockTimelineAsset[]): TimeBucketAssetResponseDto {
+  const result: TimeBucketAssetResponseDto = {
+    id: [],
+    ownerId: [],
+    ratio: [],
+    thumbhash: [],
+    fileCreatedAt: [],
+    localOffsetHours: [],
+    isFavorite: [],
+    isTrashed: [],
+    isImage: [],
+    duration: [],
+    projectionType: [],
+    livePhotoVideoId: [],
+    city: [],
+    country: [],
+    visibility: [],
+  };
+
+  for (const asset of assets) {
+    result.id.push(asset.id);
+    result.ownerId.push(asset.ownerId);
+    result.ratio.push(asset.ratio);
+    result.thumbhash.push(asset.thumbhash);
+    result.fileCreatedAt.push(asset.fileCreatedAt);
+    result.localOffsetHours.push(0); // Assuming UTC for mocks
+    result.isFavorite.push(asset.isFavorite);
+    result.isTrashed.push(asset.isTrashed);
+    result.isImage.push(asset.isImage);
+    result.duration.push(asset.duration);
+    result.projectionType.push(asset.projectionType);
+    result.livePhotoVideoId.push(asset.livePhotoVideoId);
+    result.city.push(asset.city);
+    result.country.push(asset.country);
+    result.visibility.push(asset.visibility);
+  }
+
+  if (assets.some((a) => a.latitude !== null || a.longitude !== null)) {
+    result.latitude = assets.map((a) => a.latitude);
+    result.longitude = assets.map((a) => a.longitude);
+  }
+
+  result.stack = assets.map(() => null);
+  return result;
+}
+
+/**
+ * Extract a single bucket from timeline data (mimics getTimeBucket API)
+ * Automatically handles both ISO timestamp and simple month formats
+ * Returns data in columnar format matching the actual API
+ * When albumId is provided, only returns assets from that album
+ */
+export function getTimeBucket(
+  timelineData: MockTimelineData,
+  timeBucket: string,
+  isTrashed: boolean | undefined,
+  isArchived: boolean | undefined,
+  isFavorite: boolean | undefined,
+  albumId: string | undefined,
+  changes: Changes,
+): TimeBucketAssetResponseDto {
+  const bucketKey = parseTimeBucketKey(timeBucket);
+  let assets = timelineData.buckets.get(bucketKey);
+
+  if (!assets) {
+    return toColumnarFormat([]);
+  }
+
+  // Create sets for quick lookups
+  const deletedAssetIds = new Set(changes.assetDeletions);
+  const archivedAssetIds = new Set(changes.assetArchivals);
+  const favoritedAssetIds = new Set(changes.assetFavorites);
+
+  // Filter assets based on trashed/archived status
+  assets = assets.filter((asset) =>
+    shouldIncludeAsset(asset, isTrashed, isArchived, isFavorite, deletedAssetIds, archivedAssetIds, favoritedAssetIds),
+  );
+
+  // Filter to only include assets from the specified album
+  if (albumId) {
+    const album = timelineData.album;
+    if (!album || album.id !== albumId) {
+      return toColumnarFormat([]);
+    }
+
+    // Create a Set for faster lookup
+    const albumAssetIds = new Set([...album.assetIds, ...changes.albumAdditions]);
+    assets = assets.filter((asset) => albumAssetIds.has(asset.id));
+  }
+
+  // Override properties for assets in changes arrays
+  const assetsWithOverrides = assets.map((asset) => {
+    if (deletedAssetIds.has(asset.id) || archivedAssetIds.has(asset.id) || favoritedAssetIds.has(asset.id)) {
+      return {
+        ...asset,
+        isFavorite: favoritedAssetIds.has(asset.id) ? true : asset.isFavorite,
+        isTrashed: deletedAssetIds.has(asset.id) ? true : asset.isTrashed,
+        visibility: archivedAssetIds.has(asset.id) ? AssetVisibility.Archive : asset.visibility,
+      };
+    }
+    return asset;
+  });
+
+  return toColumnarFormat(assetsWithOverrides);
+}
+
+export type Changes = {
+  // ids of assets that are newly added to the album
+  albumAdditions: string[];
+  // ids of assets that are newly deleted
+  assetDeletions: string[];
+  // ids of assets that are newly archived
+  assetArchivals: string[];
+  // ids of assets that are newly favorited
+  assetFavorites: string[];
+};
+
+/**
+ * Helper function to determine if an asset should be included based on filter criteria
+ * @param asset - The asset to check
+ * @param isTrashed - Filter for trashed status (undefined means no filter)
+ * @param isArchived - Filter for archived status (undefined means no filter)
+ * @param isFavorite - Filter for favorite status (undefined means no filter)
+ * @param deletedAssetIds - Set of IDs for assets that have been deleted
+ * @param archivedAssetIds - Set of IDs for assets that have been archived
+ * @param favoritedAssetIds - Set of IDs for assets that have been favorited
+ * @returns true if the asset matches all filter criteria
+ */
+function shouldIncludeAsset(
+  asset: MockTimelineAsset,
+  isTrashed: boolean | undefined,
+  isArchived: boolean | undefined,
+  isFavorite: boolean | undefined,
+  deletedAssetIds: Set<string>,
+  archivedAssetIds: Set<string>,
+  favoritedAssetIds: Set<string>,
+): boolean {
+  // Determine actual status (property or in changes)
+  const actuallyTrashed = asset.isTrashed || deletedAssetIds.has(asset.id);
+  const actuallyArchived = asset.visibility === 'archive' || archivedAssetIds.has(asset.id);
+  const actuallyFavorited = asset.isFavorite || favoritedAssetIds.has(asset.id);
+
+  // Apply filters
+  if (isTrashed !== undefined && actuallyTrashed !== isTrashed) {
+    return false;
+  }
+  if (isArchived !== undefined && actuallyArchived !== isArchived) {
+    return false;
+  }
+  if (isFavorite !== undefined && actuallyFavorited !== isFavorite) {
+    return false;
+  }
+
+  return true;
+}
+/**
+ * Get summary for all buckets (mimics getTimeBuckets API)
+ * When albumId is provided, only includes buckets that contain assets from that album
+ */
+export function getTimeBuckets(
+  timelineData: MockTimelineData,
+  isTrashed: boolean | undefined,
+  isArchived: boolean | undefined,
+  isFavorite: boolean | undefined,
+  albumId: string | undefined,
+  changes: Changes,
+): TimeBucketsResponseDto[] {
+  const summary: TimeBucketsResponseDto[] = [];
+
+  // Create sets for quick lookups
+  const deletedAssetIds = new Set(changes.assetDeletions);
+  const archivedAssetIds = new Set(changes.assetArchivals);
+  const favoritedAssetIds = new Set(changes.assetFavorites);
+
+  // If no albumId is specified, return summary for all assets
+  if (albumId) {
+    // Filter to only include buckets with assets from the specified album
+    const album = timelineData.album;
+    if (!album || album.id !== albumId) {
+      return [];
+    }
+
+    // Create a Set for faster lookup
+    const albumAssetIds = new Set([...album.assetIds, ...changes.albumAdditions]);
+    for (const removed of changes.assetDeletions) {
+      albumAssetIds.delete(removed);
+    }
+    for (const [bucketKey, assets] of timelineData.buckets) {
+      // Count how many assets in this bucket are in the album and match trashed/archived filters
+      const albumAssetsInBucket = assets.filter((asset) => {
+        // Must be in the album
+        if (!albumAssetIds.has(asset.id)) {
+          return false;
+        }
+
+        return shouldIncludeAsset(
+          asset,
+          isTrashed,
+          isArchived,
+          isFavorite,
+          deletedAssetIds,
+          archivedAssetIds,
+          favoritedAssetIds,
+        );
+      });
+
+      if (albumAssetsInBucket.length > 0) {
+        summary.push({
+          timeBucket: bucketKey,
+          count: albumAssetsInBucket.length,
+        });
+      }
+    }
+  } else {
+    for (const [bucketKey, assets] of timelineData.buckets) {
+      // Filter assets based on trashed/archived status
+      const filteredAssets = assets.filter((asset) =>
+        shouldIncludeAsset(
+          asset,
+          isTrashed,
+          isArchived,
+          isFavorite,
+          deletedAssetIds,
+          archivedAssetIds,
+          favoritedAssetIds,
+        ),
+      );
+
+      if (filteredAssets.length > 0) {
+        summary.push({
+          timeBucket: bucketKey,
+          count: filteredAssets.length,
+        });
+      }
+    }
+  }
+
+  // Sort summary by date (newest first) using luxon
+  summary.sort((a, b) => {
+    const dateA = DateTime.fromISO(a.timeBucket);
+    const dateB = DateTime.fromISO(b.timeBucket);
+    return dateB.diff(dateA).milliseconds;
+  });
+
+  return summary;
+}
+
+const createDefaultOwner = (ownerId: string) => {
+  const defaultOwner: UserResponseDto = {
+    id: ownerId,
+    email: signupDto.admin.email,
+    name: signupDto.admin.name,
+    profileImagePath: '',
+    profileChangedAt: new Date().toISOString(),
+    avatarColor: UserAvatarColor.Blue,
+  };
+  return defaultOwner;
+};
+
+/**
+ * Convert a TimelineAssetConfig to a full AssetResponseDto
+ * This matches the response from GET /api/assets/:id
+ */
+export function toAssetResponseDto(asset: MockTimelineAsset, owner?: UserResponseDto): AssetResponseDto {
+  const now = new Date().toISOString();
+
+  // Default owner if not provided
+  const defaultOwner = createDefaultOwner(asset.ownerId);
+
+  const exifInfo: ExifResponseDto = {
+    make: null,
+    model: null,
+    exifImageWidth: asset.ratio > 1 ? 4000 : 3000,
+    exifImageHeight: asset.ratio > 1 ? Math.round(4000 / asset.ratio) : Math.round(3000 * asset.ratio),
+    fileSizeInByte: asset.fileSizeInByte,
+    orientation: '1',
+    dateTimeOriginal: asset.fileCreatedAt,
+    modifyDate: asset.fileCreatedAt,
+    timeZone: asset.latitude === null ? null : 'UTC',
+    lensModel: null,
+    fNumber: null,
+    focalLength: null,
+    iso: null,
+    exposureTime: null,
+    latitude: asset.latitude,
+    longitude: asset.longitude,
+    city: asset.city,
+    country: asset.country,
+    state: null,
+    description: null,
+  };
+
+  return {
+    id: asset.id,
+    deviceAssetId: `device-${asset.id}`,
+    ownerId: asset.ownerId,
+    owner: owner || defaultOwner,
+    libraryId: `library-${asset.ownerId}`,
+    deviceId: `device-${asset.ownerId}`,
+    type: asset.isVideo ? AssetTypeEnum.Video : AssetTypeEnum.Image,
+    originalPath: `/original/${asset.id}.${asset.isVideo ? 'mp4' : 'jpg'}`,
+    originalFileName: `${asset.id}.${asset.isVideo ? 'mp4' : 'jpg'}`,
+    originalMimeType: asset.isVideo ? 'video/mp4' : 'image/jpeg',
+    thumbhash: asset.thumbhash,
+    fileCreatedAt: asset.fileCreatedAt,
+    fileModifiedAt: asset.fileCreatedAt,
+    localDateTime: asset.localDateTime,
+    updatedAt: now,
+    createdAt: asset.fileCreatedAt,
+    isFavorite: asset.isFavorite,
+    isArchived: false,
+    isTrashed: asset.isTrashed,
+    visibility: asset.visibility,
+    duration: asset.duration || '0:00:00.00000',
+    exifInfo,
+    livePhotoVideoId: asset.livePhotoVideoId,
+    tags: [],
+    people: [],
+    unassignedFaces: [],
+    stack: asset.stack,
+    isOffline: false,
+    hasMetadata: true,
+    duplicateId: null,
+    resized: true,
+    checksum: asset.checksum,
+    width: exifInfo.exifImageWidth ?? 1,
+    height: exifInfo.exifImageHeight ?? 1,
+    isEdited: false,
+  };
+}
+
+/**
+ * Get a single asset by ID from timeline data
+ * This matches the response from GET /api/assets/:id
+ */
+export function getAsset(
+  timelineData: MockTimelineData,
+  assetId: string,
+  owner?: UserResponseDto,
+): AssetResponseDto | undefined {
+  // Search through all buckets for the asset
+  const buckets = [...timelineData.buckets.values()];
+  for (const assets of buckets) {
+    const asset = assets.find((a) => a.id === assetId);
+    if (asset) {
+      return toAssetResponseDto(asset, owner);
+    }
+  }
+  return undefined;
+}
+
+/**
+ * Get a mock album from timeline data
+ * This matches the response from GET /api/albums/:id
+ */
+export function getAlbum(
+  timelineData: MockTimelineData,
+  ownerId: string,
+  albumId: string | undefined,
+  changes: Changes,
+): AlbumResponseDto | undefined {
+  if (!timelineData.album) {
+    return undefined;
+  }
+
+  // If albumId is provided and doesn't match, return undefined
+  if (albumId && albumId !== timelineData.album.id) {
+    return undefined;
+  }
+
+  const album = timelineData.album;
+  const albumOwner = createDefaultOwner(ownerId);
+
+  // Get the actual asset objects from the timeline data
+  const albumAssets: AssetResponseDto[] = [];
+  const allAssets = [...timelineData.buckets.values()].flat();
+
+  for (const assetId of album.assetIds) {
+    const assetConfig = allAssets.find((a) => a.id === assetId);
+    if (assetConfig) {
+      albumAssets.push(toAssetResponseDto(assetConfig, albumOwner));
+    }
+  }
+  for (const assetId of changes.albumAdditions ?? []) {
+    const assetConfig = allAssets.find((a) => a.id === assetId);
+    if (assetConfig) {
+      albumAssets.push(toAssetResponseDto(assetConfig, albumOwner));
+    }
+  }
+
+  albumAssets.sort((a, b) => DateTime.fromISO(b.localDateTime).diff(DateTime.fromISO(a.localDateTime)).milliseconds);
+
+  // For a basic mock album, we don't include any albumUsers (shared users)
+  // The owner is represented by the owner field, not in albumUsers
+  const response: AlbumResponseDto = {
+    id: album.id,
+    albumName: album.albumName,
+    description: album.description,
+    albumThumbnailAssetId: album.thumbnailAssetId,
+    createdAt: album.createdAt,
+    updatedAt: album.updatedAt,
+    ownerId: albumOwner.id,
+    owner: albumOwner,
+    albumUsers: [], // Empty array for non-shared album
+    shared: false,
+    hasSharedLink: false,
+    isActivityEnabled: true,
+    assetCount: albumAssets.length,
+    assets: albumAssets,
+    startDate: albumAssets.length > 0 ? albumAssets.at(-1)?.fileCreatedAt : undefined,
+    endDate: albumAssets.length > 0 ? albumAssets[0].fileCreatedAt : undefined,
+    lastModifiedAssetTimestamp: albumAssets.length > 0 ? albumAssets[0].fileCreatedAt : undefined,
+  };
+
+  return response;
+}
--- a/e2e/src/generators/timeline/timeline-config.ts
+++ b/e2e/src/generators/timeline/timeline-config.ts
@@ -0,0 +1,200 @@
+import type { AssetVisibility } from '@immich/sdk';
+import { DayPattern, MonthDistribution } from 'src/generators/timeline/distribution-patterns';
+
+// Constants for generation parameters
+export const GENERATION_CONSTANTS = {
+  VIDEO_PROBABILITY: 0.15, // 15% of assets are videos
+  GPS_PERCENTAGE: 0.7, // 70% of assets have GPS data
+  FAVORITE_PROBABILITY: 0.1, // 10% of assets are favorited
+  MIN_VIDEO_DURATION_SECONDS: 5,
+  MAX_VIDEO_DURATION_SECONDS: 300,
+  DEFAULT_SEED: 12_345,
+  DEFAULT_OWNER_ID: 'user-1',
+  MAX_SELECT_ATTEMPTS: 10,
+  SPARSE_DAY_COVERAGE: 0.4, // 40% of days have photos in sparse pattern
+} as const;
+
+// Aspect ratio distribution weights (must sum to 1)
+export const ASPECT_RATIO_WEIGHTS = {
+  '4:3': 0.35, // 35% 4:3 landscape
+  '3:2': 0.25, // 25% 3:2 landscape
+  '16:9': 0.2, // 20% 16:9 landscape
+  '2:3': 0.1, // 10% 2:3 portrait
+  '1:1': 0.09, // 9% 1:1 square
+  '3:1': 0.01, // 1% 3:1 panorama
+} as const;
+
+export type AspectRatio = {
+  width: number;
+  height: number;
+  ratio: number;
+  name: string;
+};
+
+// Mock configuration for asset generation - will be transformed to API response formats
+export type MockTimelineAsset = {
+  id: string;
+  ownerId: string;
+  ratio: number;
+  thumbhash: string | null;
+  localDateTime: string;
+  fileCreatedAt: string;
+  isFavorite: boolean;
+  isTrashed: boolean;
+  isVideo: boolean;
+  isImage: boolean;
+  duration: string | null;
+  projectionType: string | null;
+  livePhotoVideoId: string | null;
+  city: string | null;
+  country: string | null;
+  people: string[] | null;
+  latitude: number | null;
+  longitude: number | null;
+  visibility: AssetVisibility;
+  stack: null;
+  checksum: string;
+  fileSizeInByte: number;
+};
+
+export type MonthSpec = {
+  year: number;
+  month: number; // 1-12
+  distribution: MonthDistribution;
+  pattern: DayPattern;
+};
+
+/**
+ * Configuration for timeline data generation
+ */
+export type TimelineConfig = {
+  ownerId?: string;
+  months: MonthSpec[];
+  seed?: number;
+  writeToFile?: boolean;
+  outputPath?: string;
+};
+
+export type MockAlbum = {
+  id: string;
+  albumName: string;
+  description: string;
+  assetIds: string[]; // IDs of assets in the album
+  thumbnailAssetId: string | null;
+  createdAt: string;
+  updatedAt: string;
+};
+
+export type MockTimelineData = {
+  buckets: Map<string, MockTimelineAsset[]>;
+  album: MockAlbum; // Mock album created from random assets
+};
+
+export type SerializedTimelineData = {
+  buckets: Record<string, MockTimelineAsset[]>;
+  album: MockAlbum;
+};
+
+/**
+ * Validates a TimelineConfig object to ensure all values are within expected ranges
+ */
+export function validateTimelineConfig(config: TimelineConfig): void {
+  if (!config.months || config.months.length === 0) {
+    throw new Error('TimelineConfig must contain at least one month');
+  }
+
+  const seenMonths = new Set<string>();
+
+  for (const month of config.months) {
+    if (month.month < 1 || month.month > 12) {
+      throw new Error(`Invalid month: ${month.month}. Must be between 1 and 12`);
+    }
+
+    if (month.year < 1900 || month.year > 2100) {
+      throw new Error(`Invalid year: ${month.year}. Must be between 1900 and 2100`);
+    }
+
+    const monthKey = `${month.year}-${month.month}`;
+    if (seenMonths.has(monthKey)) {
+      throw new Error(`Duplicate month found: ${monthKey}`);
+    }
+    seenMonths.add(monthKey);
+
+    // Validate distribution if provided
+    if (month.distribution && !['empty', 'sparse', 'medium', 'dense', 'very-dense'].includes(month.distribution)) {
+      throw new Error(
+        `Invalid distribution: ${month.distribution}. Must be one of: empty, sparse, medium, dense, very-dense`,
+      );
+    }
+
+    const validPatterns = [
+      'single-day',
+      'consecutive-large',
+      'consecutive-small',
+      'alternating',
+      'sparse-scattered',
+      'start-heavy',
+      'end-heavy',
+      'mid-heavy',
+    ];
+    if (month.pattern && !validPatterns.includes(month.pattern)) {
+      throw new Error(`Invalid pattern: ${month.pattern}. Must be one of: ${validPatterns.join(', ')}`);
+    }
+  }
+
+  // Validate seed if provided
+  if (config.seed !== undefined && (config.seed < 0 || !Number.isInteger(config.seed))) {
+    throw new Error('Seed must be a non-negative integer');
+  }
+
+  // Validate ownerId if provided
+  if (config.ownerId !== undefined && config.ownerId.trim() === '') {
+    throw new Error('Owner ID cannot be an empty string');
+  }
+}
+
+/**
+ * Create a default timeline configuration
+ */
+export function createDefaultTimelineConfig(): TimelineConfig {
+  const months: MonthSpec[] = [
+    // 2024 - Mix of patterns
+    { year: 2024, month: 12, distribution: 'very-dense', pattern: 'alternating' },
+    { year: 2024, month: 11, distribution: 'dense', pattern: 'consecutive-large' },
+    { year: 2024, month: 10, distribution: 'medium', pattern: 'mid-heavy' },
+    { year: 2024, month: 9, distribution: 'sparse', pattern: 'consecutive-small' },
+    { year: 2024, month: 8, distribution: 'empty', pattern: 'single-day' },
+    { year: 2024, month: 7, distribution: 'dense', pattern: 'start-heavy' },
+    { year: 2024, month: 6, distribution: 'medium', pattern: 'sparse-scattered' },
+    { year: 2024, month: 5, distribution: 'sparse', pattern: 'single-day' },
+    { year: 2024, month: 4, distribution: 'very-dense', pattern: 'consecutive-large' },
+    { year: 2024, month: 3, distribution: 'empty', pattern: 'single-day' },
+    { year: 2024, month: 2, distribution: 'medium', pattern: 'end-heavy' },
+    { year: 2024, month: 1, distribution: 'dense', pattern: 'alternating' },
+
+    // 2023 - Testing year boundaries and more patterns
+    { year: 2023, month: 12, distribution: 'very-dense', pattern: 'end-heavy' },
+    { year: 2023, month: 11, distribution: 'sparse', pattern: 'consecutive-small' },
+    { year: 2023, month: 10, distribution: 'empty', pattern: 'single-day' },
+    { year: 2023, month: 9, distribution: 'medium', pattern: 'alternating' },
+    { year: 2023, month: 8, distribution: 'dense', pattern: 'mid-heavy' },
+    { year: 2023, month: 7, distribution: 'sparse', pattern: 'sparse-scattered' },
+    { year: 2023, month: 6, distribution: 'medium', pattern: 'consecutive-large' },
+    { year: 2023, month: 5, distribution: 'empty', pattern: 'single-day' },
+    { year: 2023, month: 4, distribution: 'sparse', pattern: 'single-day' },
+    { year: 2023, month: 3, distribution: 'dense', pattern: 'start-heavy' },
+    { year: 2023, month: 2, distribution: 'medium', pattern: 'alternating' },
+    { year: 2023, month: 1, distribution: 'very-dense', pattern: 'consecutive-large' },
+  ];
+
+  for (let year = 2022; year >= 2000; year--) {
+    for (let month = 12; month >= 1; month--) {
+      months.push({ year, month, distribution: 'medium', pattern: 'sparse-scattered' });
+    }
+  }
+
+  return {
+    months,
+    seed: 42,
+  };
+}
--- a/e2e/src/generators/timeline/utils.ts
+++ b/e2e/src/generators/timeline/utils.ts
@@ -0,0 +1,186 @@
+import { DateTime } from 'luxon';
+import { GENERATION_CONSTANTS, MockTimelineAsset } from 'src/generators/timeline/timeline-config';
+
+/**
+ * Linear Congruential Generator for deterministic pseudo-random numbers
+ */
+export class SeededRandom {
+  private seed: number;
+
+  constructor(seed: number) {
+    this.seed = seed;
+  }
+
+  /**
+   * Generate next random number in range [0, 1)
+   */
+  next(): number {
+    // LCG parameters from Numerical Recipes
+    this.seed = (this.seed * 1_664_525 + 1_013_904_223) % 2_147_483_647;
+    return this.seed / 2_147_483_647;
+  }
+
+  /**
+   * Generate random integer in range [min, max)
+   */
+  nextInt(min: number, max: number): number {
+    return Math.floor(this.next() * (max - min)) + min;
+  }
+
+  /**
+   * Generate random boolean with given probability
+   */
+  nextBoolean(probability = 0.5): boolean {
+    return this.next() < probability;
+  }
+}
+
+/**
+ * Select random days using seed variation to avoid collisions.
+ *
+ * @param daysInMonth - Total number of days in the month
+ * @param numDays - Number of days to select
+ * @param rng - Random number generator instance
+ * @returns Array of selected day numbers, sorted in descending order
+ */
+export function selectRandomDays(daysInMonth: number, numDays: number, rng: SeededRandom): number[] {
+  const selectedDays = new Set<number>();
+  const maxAttempts = numDays * GENERATION_CONSTANTS.MAX_SELECT_ATTEMPTS; // Safety limit
+  let attempts = 0;
+
+  while (selectedDays.size < numDays && attempts < maxAttempts) {
+    const day = rng.nextInt(1, daysInMonth + 1);
+    selectedDays.add(day);
+    attempts++;
+  }
+
+  // Fallback: if we couldn't select enough random days, fill with sequential days
+  if (selectedDays.size < numDays) {
+    for (let day = 1; day <= daysInMonth && selectedDays.size < numDays; day++) {
+      selectedDays.add(day);
+    }
+  }
+
+  return [...selectedDays].toSorted((a, b) => b - a);
+}
+
+/**
+ * Select item from array using seeded random
+ */
+export function selectRandom<T>(arr: T[], rng: SeededRandom): T {
+  if (arr.length === 0) {
+    throw new Error('Cannot select from empty array');
+  }
+  const index = rng.nextInt(0, arr.length);
+  return arr[index];
+}
+
+/**
+ * Select multiple random items from array using seeded random without duplicates
+ */
+export function selectRandomMultiple<T>(arr: T[], count: number, rng: SeededRandom): T[] {
+  if (arr.length === 0) {
+    throw new Error('Cannot select from empty array');
+  }
+  if (count < 0) {
+    throw new Error('Count must be non-negative');
+  }
+  if (count > arr.length) {
+    throw new Error('Count cannot exceed array length');
+  }
+
+  const result: T[] = [];
+  const selectedIndices = new Set<number>();
+
+  while (result.length < count) {
+    const index = rng.nextInt(0, arr.length);
+    if (!selectedIndices.has(index)) {
+      selectedIndices.add(index);
+      result.push(arr[index]);
+    }
+  }
+
+  return result;
+}
+
+/**
+ * Parse timeBucket parameter to extract year-month key
+ * Handles both formats:
+ * - ISO timestamp: "2024-12-01T00:00:00.000Z" -> "2024-12-01"
+ * - Simple format: "2024-12-01" -> "2024-12-01"
+ */
+export function parseTimeBucketKey(timeBucket: string): string {
+  if (!timeBucket) {
+    throw new Error('timeBucket parameter cannot be empty');
+  }
+
+  const dt = DateTime.fromISO(timeBucket, { zone: 'utc' });
+
+  if (!dt.isValid) {
+    // Fallback to regex if not a valid ISO string
+    const match = timeBucket.match(/^(\d{4}-\d{2}-\d{2})/);
+    return match ? match[1] : timeBucket;
+  }
+
+  // Format as YYYY-MM-01 (first day of month)
+  return `${dt.year}-${String(dt.month).padStart(2, '0')}-01`;
+}
+
+export function getMockAsset(
+  asset: MockTimelineAsset,
+  sortedDescendingAssets: MockTimelineAsset[],
+  direction: 'next' | 'previous',
+  unit: 'day' | 'month' | 'year' = 'day',
+): MockTimelineAsset | null {
+  const currentDateTime = DateTime.fromISO(asset.localDateTime, { zone: 'utc' });
+
+  const currentIndex = sortedDescendingAssets.findIndex((a) => a.id === asset.id);
+
+  if (currentIndex === -1) {
+    return null;
+  }
+
+  const step = direction === 'next' ? 1 : -1;
+  const startIndex = currentIndex + step;
+
+  if (direction === 'next' && currentIndex >= sortedDescendingAssets.length - 1) {
+    return null;
+  }
+  if (direction === 'previous' && currentIndex <= 0) {
+    return null;
+  }
+
+  const isInDifferentPeriod = (date1: DateTime, date2: DateTime): boolean => {
+    if (unit === 'day') {
+      return !date1.startOf('day').equals(date2.startOf('day'));
+    } else if (unit === 'month') {
+      return date1.year !== date2.year || date1.month !== date2.month;
+    } else {
+      return date1.year !== date2.year;
+    }
+  };
+
+  if (direction === 'next') {
+    // Search forward in array (backwards in time)
+    for (let i = startIndex; i < sortedDescendingAssets.length; i++) {
+      const nextAsset = sortedDescendingAssets[i];
+      const nextDate = DateTime.fromISO(nextAsset.localDateTime, { zone: 'utc' });
+
+      if (isInDifferentPeriod(nextDate, currentDateTime)) {
+        return nextAsset;
+      }
+    }
+  } else {
+    // Search backward in array (forwards in time)
+    for (let i = startIndex; i >= 0; i--) {
+      const prevAsset = sortedDescendingAssets[i];
+      const prevDate = DateTime.fromISO(prevAsset.localDateTime, { zone: 'utc' });
+
+      if (isInDifferentPeriod(prevDate, currentDateTime)) {
+        return prevAsset;
+      }
+    }
+  }
+
+  return null;
+}
--- a/e2e/src/mock-network/base-network.ts
+++ b/e2e/src/mock-network/base-network.ts
@@ -0,0 +1,285 @@
+import { BrowserContext } from '@playwright/test';
+import { playwrightHost } from 'playwright.config';
+
+export const setupBaseMockApiRoutes = async (context: BrowserContext, adminUserId: string) => {
+  await context.addCookies([
+    {
+      name: 'immich_is_authenticated',
+      value: 'true',
+      domain: playwrightHost,
+      path: '/',
+    },
+  ]);
+  await context.route('**/api/users/me', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        id: adminUserId,
+        email: 'admin@immich.cloud',
+        name: 'Immich Admin',
+        profileImagePath: '',
+        avatarColor: 'orange',
+        profileChangedAt: '2025-01-22T21:31:23.996Z',
+        storageLabel: 'admin',
+        shouldChangePassword: true,
+        isAdmin: true,
+        createdAt: '2025-01-22T21:31:23.996Z',
+        deletedAt: null,
+        updatedAt: '2025-11-14T00:00:00.369Z',
+        oauthId: '',
+        quotaSizeInBytes: null,
+        quotaUsageInBytes: 20_849_000_159,
+        status: 'active',
+        license: null,
+      },
+    });
+  });
+  await context.route('**/users/me/preferences', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        albums: {
+          defaultAssetOrder: 'desc',
+        },
+        folders: {
+          enabled: false,
+          sidebarWeb: false,
+        },
+        memories: {
+          enabled: true,
+          duration: 5,
+        },
+        people: {
+          enabled: true,
+          sidebarWeb: false,
+        },
+        sharedLinks: {
+          enabled: true,
+          sidebarWeb: false,
+        },
+        ratings: {
+          enabled: false,
+        },
+        tags: {
+          enabled: false,
+          sidebarWeb: false,
+        },
+        emailNotifications: {
+          enabled: true,
+          albumInvite: true,
+          albumUpdate: true,
+        },
+        download: {
+          archiveSize: 4_294_967_296,
+          includeEmbeddedVideos: false,
+        },
+        purchase: {
+          showSupportBadge: true,
+          hideBuyButtonUntil: '2100-02-12T00:00:00.000Z',
+        },
+        cast: {
+          gCastEnabled: false,
+        },
+      },
+    });
+  });
+  await context.route('**/server/about', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        version: 'v2.2.3',
+        versionUrl: 'https://github.com/immich-app/immich/releases/tag/v2.2.3',
+        licensed: false,
+        build: '1234567890',
+        buildUrl: 'https://github.com/immich-app/immich/actions/runs/1234567890',
+        buildImage: 'e2e',
+        buildImageUrl: 'https://github.com/immich-app/immich/pkgs/container/immich-server',
+        repository: 'immich-app/immich',
+        repositoryUrl: 'https://github.com/immich-app/immich',
+        sourceRef: 'e2e',
+        sourceCommit: 'e2eeeeeeeeeeeeeeeeee',
+        sourceUrl: 'https://github.com/immich-app/immich/commit/e2eeeeeeeeeeeeeeeeee',
+        nodejs: 'v22.18.0',
+        exiftool: '13.41',
+        ffmpeg: '7.1.1-6',
+        libvips: '8.17.2',
+        imagemagick: '7.1.2-2',
+      },
+    });
+  });
+  await context.route('**/api/server/features', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        smartSearch: false,
+        facialRecognition: false,
+        duplicateDetection: false,
+        map: true,
+        reverseGeocoding: true,
+        importFaces: false,
+        sidecar: true,
+        search: true,
+        trash: true,
+        oauth: false,
+        oauthAutoLaunch: false,
+        ocr: false,
+        passwordLogin: true,
+        configFile: false,
+        email: false,
+      },
+    });
+  });
+  await context.route('**/api/server/config', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        loginPageMessage: '',
+        trashDays: 30,
+        userDeleteDelay: 7,
+        oauthButtonText: 'Login with OAuth',
+        isInitialized: true,
+        isOnboarded: true,
+        externalDomain: '',
+        publicUsers: true,
+        mapDarkStyleUrl: 'https://tiles.immich.cloud/v1/style/dark.json',
+        mapLightStyleUrl: 'https://tiles.immich.cloud/v1/style/light.json',
+        maintenanceMode: false,
+      },
+    });
+  });
+  await context.route('**/api/server/media-types', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        video: [
+          '.3gp',
+          '.3gpp',
+          '.avi',
+          '.flv',
+          '.insv',
+          '.m2t',
+          '.m2ts',
+          '.m4v',
+          '.mkv',
+          '.mov',
+          '.mp4',
+          '.mpe',
+          '.mpeg',
+          '.mpg',
+          '.mts',
+          '.vob',
+          '.webm',
+          '.wmv',
+        ],
+        image: [
+          '.3fr',
+          '.ari',
+          '.arw',
+          '.cap',
+          '.cin',
+          '.cr2',
+          '.cr3',
+          '.crw',
+          '.dcr',
+          '.dng',
+          '.erf',
+          '.fff',
+          '.iiq',
+          '.k25',
+          '.kdc',
+          '.mrw',
+          '.nef',
+          '.nrw',
+          '.orf',
+          '.ori',
+          '.pef',
+          '.psd',
+          '.raf',
+          '.raw',
+          '.rw2',
+          '.rwl',
+          '.sr2',
+          '.srf',
+          '.srw',
+          '.x3f',
+          '.avif',
+          '.gif',
+          '.jpeg',
+          '.jpg',
+          '.png',
+          '.webp',
+          '.bmp',
+          '.heic',
+          '.heif',
+          '.hif',
+          '.insp',
+          '.jp2',
+          '.jpe',
+          '.jxl',
+          '.svg',
+          '.tif',
+          '.tiff',
+        ],
+        sidecar: ['.xmp'],
+      },
+    });
+  });
+  await context.route('**/api/notifications*', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: [],
+    });
+  });
+  await context.route('**/api/albums*', async (route, request) => {
+    if (request.url().endsWith('albums?shared=true') || request.url().endsWith('albums')) {
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: [],
+      });
+    }
+    await route.fallback();
+  });
+  await context.route('**/api/memories*', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: [],
+    });
+  });
+  await context.route('**/api/server/storage', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: {
+        diskSize: '100.0 GiB',
+        diskUse: '74.4 GiB',
+        diskAvailable: '25.6 GiB',
+        diskSizeRaw: 107_374_182_400,
+        diskUseRaw: 79_891_660_800,
+        diskAvailableRaw: 27_482_521_600,
+        diskUsagePercentage: 74.4,
+      },
+    });
+  });
+  await context.route('**/api/server/version-history', async (route) => {
+    return route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      json: [
+        {
+          id: 'd1fbeadc-cb4f-4db3-8d19-8c6a921d5d8e',
+          createdAt: '2025-11-15T20:14:01.935Z',
+          version: '2.2.3',
+        },
+      ],
+    });
+  });
+};
--- a/e2e/src/mock-network/timeline-network.ts
+++ b/e2e/src/mock-network/timeline-network.ts
@@ -0,0 +1,179 @@
+import { AssetResponseDto } from '@immich/sdk';
+import { BrowserContext, Page, Request, Route } from '@playwright/test';
+import { basename } from 'node:path';
+import {
+  Changes,
+  getAlbum,
+  getAsset,
+  getTimeBucket,
+  getTimeBuckets,
+  randomPreview,
+  randomThumbnail,
+  TimelineData,
+} from 'src/generators/timeline';
+import { sleep } from 'src/web/specs/timeline/utils';
+
+export class TimelineTestContext {
+  slowBucket = false;
+  adminId = '';
+}
+
+export const setupTimelineMockApiRoutes = async (
+  context: BrowserContext,
+  timelineRestData: TimelineData,
+  changes: Changes,
+  testContext: TimelineTestContext,
+) => {
+  await context.route('**/api/timeline**', async (route, request) => {
+    const url = new URL(request.url());
+    const pathname = url.pathname;
+    if (pathname === '/api/timeline/buckets') {
+      const albumId = url.searchParams.get('albumId') || undefined;
+      const isTrashed = url.searchParams.get('isTrashed') ? url.searchParams.get('isTrashed') === 'true' : undefined;
+      const isFavorite = url.searchParams.get('isFavorite') ? url.searchParams.get('isFavorite') === 'true' : undefined;
+      const isArchived = url.searchParams.get('visibility')
+        ? url.searchParams.get('visibility') === 'archive'
+        : undefined;
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: getTimeBuckets(timelineRestData, isTrashed, isArchived, isFavorite, albumId, changes),
+      });
+    } else if (pathname === '/api/timeline/bucket') {
+      const timeBucket = url.searchParams.get('timeBucket');
+      if (!timeBucket) {
+        return route.continue();
+      }
+      const isTrashed = url.searchParams.get('isTrashed') ? url.searchParams.get('isTrashed') === 'true' : undefined;
+      const isArchived = url.searchParams.get('visibility')
+        ? url.searchParams.get('visibility') === 'archive'
+        : undefined;
+      const isFavorite = url.searchParams.get('isFavorite') ? url.searchParams.get('isFavorite') === 'true' : undefined;
+      const albumId = url.searchParams.get('albumId') || undefined;
+      const assets = getTimeBucket(timelineRestData, timeBucket, isTrashed, isArchived, isFavorite, albumId, changes);
+      if (testContext.slowBucket) {
+        await sleep(5000);
+      }
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: assets,
+      });
+    }
+    return route.continue();
+  });
+
+  await context.route('**/api/assets/*', async (route, request) => {
+    if (request.method() === 'GET') {
+      const url = new URL(request.url());
+      const pathname = url.pathname;
+      const assetId = basename(pathname);
+      let asset = getAsset(timelineRestData, assetId);
+      if (changes.assetDeletions.includes(asset!.id)) {
+        asset = {
+          ...asset,
+          isTrashed: true,
+        } as AssetResponseDto;
+      }
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: asset,
+      });
+    }
+    await route.fallback();
+  });
+
+  await context.route('**/api/assets', async (route, request) => {
+    if (request.method() === 'DELETE') {
+      return route.fulfill({
+        status: 204,
+      });
+    }
+    await route.fallback();
+  });
+
+  await context.route('**/api/assets/*/ocr', async (route) => {
+    return route.fulfill({ status: 200, contentType: 'application/json', json: [] });
+  });
+
+  await context.route('**/api/assets/*/thumbnail?size=*', async (route, request) => {
+    const pattern = /\/api\/assets\/(?<assetId>[^/]+)\/thumbnail\?size=(?<size>preview|thumbnail)/;
+    const match = request.url().match(pattern);
+    if (!match?.groups) {
+      throw new Error(`Invalid URL for thumbnail endpoint: ${request.url()}`);
+    }
+
+    if (match.groups.size === 'preview') {
+      if (!route.request().serviceWorker()) {
+        return route.continue();
+      }
+      const asset = getAsset(timelineRestData, match.groups.assetId);
+      return route.fulfill({
+        status: 200,
+        headers: { 'content-type': 'image/jpeg', ETag: 'abc123', 'Cache-Control': 'public, max-age=3600' },
+        body: await randomPreview(
+          match.groups.assetId,
+          (asset?.exifInfo?.exifImageWidth ?? 0) / (asset?.exifInfo?.exifImageHeight ?? 1),
+        ),
+      });
+    }
+    if (match.groups.size === 'thumbnail') {
+      if (!route.request().serviceWorker()) {
+        return route.continue();
+      }
+      const asset = getAsset(timelineRestData, match.groups.assetId);
+      return route.fulfill({
+        status: 200,
+        headers: { 'content-type': 'image/jpeg' },
+        body: await randomThumbnail(
+          match.groups.assetId,
+          (asset?.exifInfo?.exifImageWidth ?? 0) / (asset?.exifInfo?.exifImageHeight ?? 1),
+        ),
+      });
+    }
+    return route.continue();
+  });
+
+  await context.route('**/api/albums/**', async (route, request) => {
+    const albumsMatch = request.url().match(/\/api\/albums\/(?<albumId>[^/?]+)/);
+    if (albumsMatch) {
+      const album = getAlbum(timelineRestData, testContext.adminId, albumsMatch.groups?.albumId, changes);
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: album,
+      });
+    }
+    return route.fallback();
+  });
+
+  await context.route('**/api/albums**', async (route, request) => {
+    const allAlbums = request.url().match(/\/api\/albums\?assetId=(?<assetId>[^&]+)/);
+    if (allAlbums) {
+      return route.fulfill({
+        status: 200,
+        contentType: 'application/json',
+        json: [],
+      });
+    }
+    return route.fallback();
+  });
+};
+
+export const pageRoutePromise = async (
+  page: Page,
+  route: string,
+  callback: (route: Route, request: Request) => Promise<void>,
+) => {
+  let resolveRequest: ((value: unknown | PromiseLike<unknown>) => void) | undefined;
+  const deleteRequest = new Promise((resolve) => {
+    resolveRequest = resolve;
+  });
+  await page.route(route, async (route, request) => {
+    await callback(route, request);
+    const requestJson = request.postDataJSON();
+    resolveRequest?.(requestJson);
+  });
+  return deleteRequest;
+};
--- a/e2e/src/responses.ts
+++ b/e2e/src/responses.ts
@@ -7,6 +7,12 @@ export const errorDto = {
    message: 'Authentication required',
    correlationId: expect.any(String),
  },
+  unauthorizedWithMessage: (message: string) => ({
+    error: 'Unauthorized',
+    statusCode: 401,
+    message,
+    correlationId: expect.any(String),
+  }),
  forbidden: {
    error: 'Forbidden',
    statusCode: 403,
--- a/e2e/src/utils.ts
+++ b/e2e/src/utils.ts
@@ -6,12 +6,15 @@ import {
  CheckExistingAssetsDto,
  CreateAlbumDto,
  CreateLibraryDto,
+  JobCreateDto,
+  MaintenanceAction,
+  ManualJobName,
  MetadataSearchDto,
  Permission,
  PersonCreateDto,
  QueueCommandDto,
  QueueName,
-  QueuesResponseDto,
+  QueuesResponseLegacyDto,
  SharedLinkCreateDto,
  UpdateLibraryDto,
  UserAdminCreateDto,
@@ -20,6 +23,7 @@ import {
  checkExistingAssets,
  createAlbum,
  createApiKey,
+  createJob,
  createLibrary,
  createPartner,
  createPerson,
@@ -27,15 +31,18 @@ import {
  createStack,
  createUserAdmin,
  deleteAssets,
+  deleteDatabaseBackup,
  getAssetInfo,
  getConfig,
  getConfigDefaults,
  getQueuesLegacy,
+  listDatabaseBackups,
  login,
  runQueueCommandLegacy,
  scanLibrary,
  searchAssets,
  setBaseUrl,
+  setMaintenanceMode,
  signUpAdmin,
  tagAssets,
  updateAdminOnboarding,
@@ -50,16 +57,22 @@ import {
 import { BrowserContext } from '@playwright/test';
 import { exec, spawn } from 'node:child_process';
 import { createHash } from 'node:crypto';
-import { existsSync, mkdirSync, renameSync, rmSync, writeFileSync } from 'node:fs';
+import { createWriteStream, existsSync, mkdirSync, renameSync, rmSync, writeFileSync } from 'node:fs';
+import { mkdtemp } from 'node:fs/promises';
 import { tmpdir } from 'node:os';
-import path, { dirname } from 'node:path';
+import { dirname, join, resolve } from 'node:path';
+import { Readable } from 'node:stream';
+import { pipeline } from 'node:stream/promises';
 import { setTimeout as setAsyncTimeout } from 'node:timers/promises';
 import { promisify } from 'node:util';
+import { createGzip } from 'node:zlib';
 import pg from 'pg';
 import { io, type Socket } from 'socket.io-client';
 import { loginDto, signupDto } from 'src/fixtures';
 import { makeRandomImage } from 'src/generators';
 import request from 'supertest';
+import { playwrightDbHost, playwrightHost, playwriteBaseUrl } from '../playwright.config';
+
 export type { Emitter } from '@socket.io/component-emitter';

 type CommandResponse = { stdout: string; stderr: string; exitCode: number | null };
@@ -68,20 +81,21 @@ type WaitOptions = { event: EventType; id?: string; total?: number; timeout?: nu
 type AdminSetupOptions = { onboarding?: boolean };
 type FileData = { bytes?: Buffer; filename: string };

-const dbUrl = 'postgres://postgres:postgres@127.0.0.1:5435/immich';
-export const baseUrl = 'http://127.0.0.1:2285';
+const dbUrl = `postgres://postgres:postgres@${playwrightDbHost}:5435/immich`;
+export const baseUrl = playwriteBaseUrl;
 export const shareUrl = `${baseUrl}/share`;
 export const app = `${baseUrl}/api`;
 // TODO move test assets into e2e/assets
-export const testAssetDir = path.resolve('./test-assets');
+export const testAssetDir = resolve(import.meta.dirname, '../test-assets');
 export const testAssetDirInternal = '/test-assets';
 export const tempDir = tmpdir();
 export const asBearerAuth = (accessToken: string) => ({ Authorization: `Bearer ${accessToken}` });
 export const asKeyAuth = (key: string) => ({ 'x-api-key': key });
 export const immichCli = (args: string[]) =>
  executeCommand('pnpm', ['exec', 'immich', '-d', `/${tempDir}/immich/`, ...args], { cwd: '../cli' }).promise;
-export const immichAdmin = (args: string[]) =>
-  executeCommand('docker', ['exec', '-i', 'immich-e2e-server', '/bin/bash', '-c', `immich-admin ${args.join(' ')}`]);
+export const dockerExec = (args: string[]) =>
+  executeCommand('docker', ['exec', '-i', 'immich-e2e-server', '/bin/bash', '-c', args.join(' ')]);
+export const immichAdmin = (args: string[]) => dockerExec([`immich-admin ${args.join(' ')}`]);
 export const specialCharStrings = ["'", '"', ',', '{', '}', '*'];
 export const TEN_TIMES = [0, 1, 2, 3, 4, 5, 6, 7, 8, 9];

@@ -145,12 +159,26 @@ const onEvent = ({ event, id }: { event: EventType; id: string }) => {
 };

 export const utils = {
+  connectDatabase: async () => {
+    if (!client) {
+      client = new pg.Client(dbUrl);
+      client.on('end', () => (client = null));
+      client.on('error', () => (client = null));
+      await client.connect();
+    }
+
+    return client;
+  },
+
+  disconnectDatabase: async () => {
+    if (client) {
+      await client.end();
+    }
+  },
+
  resetDatabase: async (tables?: string[]) => {
    try {
-      if (!client) {
-        client = new pg.Client(dbUrl);
-        await client.connect();
-      }
+      client = await utils.connectDatabase();

      tables = tables || [
        // TODO e2e test for deleting a stack, since it is quite complex
@@ -477,10 +505,13 @@ export const utils = {
  tagAssets: (accessToken: string, tagId: string, assetIds: string[]) =>
    tagAssets({ id: tagId, bulkIdsDto: { ids: assetIds } }, { headers: asBearerAuth(accessToken) }),

+  createJob: async (accessToken: string, jobCreateDto: JobCreateDto) =>
+    createJob({ jobCreateDto }, { headers: asBearerAuth(accessToken) }),
+
  queueCommand: async (accessToken: string, name: QueueName, queueCommandDto: QueueCommandDto) =>
    runQueueCommandLegacy({ name, queueCommandDto }, { headers: asBearerAuth(accessToken) }),

-  setAuthCookies: async (context: BrowserContext, accessToken: string, domain = '127.0.0.1') =>
+  setAuthCookies: async (context: BrowserContext, accessToken: string, domain = playwrightHost) =>
    await context.addCookies([
      {
        name: 'immich_access_token',
@@ -514,23 +545,98 @@ export const utils = {
      },
    ]),

+  setMaintenanceAuthCookie: async (context: BrowserContext, token: string, domain = '127.0.0.1') =>
+    await context.addCookies([
+      {
+        name: 'immich_maintenance_token',
+        value: token,
+        domain,
+        path: '/',
+        expires: 2_058_028_213,
+        httpOnly: true,
+        secure: false,
+        sameSite: 'Lax',
+      },
+    ]),
+
+  enterMaintenance: async (accessToken: string) => {
+    let setCookie: string[] | undefined;
+
+    await setMaintenanceMode(
+      {
+        setMaintenanceModeDto: {
+          action: MaintenanceAction.Start,
+        },
+      },
+      {
+        headers: asBearerAuth(accessToken),
+        fetch: (...args: Parameters<typeof fetch>) =>
+          fetch(...args).then((response) => {
+            setCookie = response.headers.getSetCookie();
+            return response;
+          }),
+      },
+    );
+
+    return setCookie;
+  },
+
  resetTempFolder: () => {
    rmSync(`${testAssetDir}/temp`, { recursive: true, force: true });
    mkdirSync(`${testAssetDir}/temp`, { recursive: true });
  },

+  async move(source: string, dest: string) {
+    return executeCommand('docker', ['exec', 'immich-e2e-server', 'mv', source, dest]).promise;
+  },
+
+  createBackup: async (accessToken: string) => {
+    await utils.createJob(accessToken, {
+      name: ManualJobName.BackupDatabase,
+    });
+
+    return utils.poll(
+      () => request(app).get('/admin/database-backups').set('Authorization', `Bearer ${accessToken}`),
+      ({ status, body }) => status === 200 && body.backups.length === 1,
+      ({ body }) => body.backups[0].filename,
+    );
+  },
+
+  resetBackups: async (accessToken: string) => {
+    const { backups } = await listDatabaseBackups({ headers: asBearerAuth(accessToken) });
+
+    const backupFiles = backups.map((b) => b.filename);
+    await deleteDatabaseBackup(
+      { databaseBackupDeleteDto: { backups: backupFiles } },
+      { headers: asBearerAuth(accessToken) },
+    );
+  },
+
+  prepareTestBackup: async (generate: 'empty' | 'corrupted') => {
+    const dir = await mkdtemp(join(tmpdir(), 'test-'));
+    const fn = join(dir, 'file');
+
+    const sql = Readable.from(generate === 'corrupted' ? 'IM CORRUPTED;' : 'SELECT 1;');
+    const gzip = createGzip();
+    const writeStream = createWriteStream(fn);
+    await pipeline(sql, gzip, writeStream);
+
+    await executeCommand('docker', ['cp', fn, `immich-e2e-server:/data/backups/development-${generate}.sql.gz`])
+      .promise;
+  },
+
  resetAdminConfig: async (accessToken: string) => {
    const defaultConfig = await getConfigDefaults({ headers: asBearerAuth(accessToken) });
    await updateConfig({ systemConfigDto: defaultConfig }, { headers: asBearerAuth(accessToken) });
  },

-  isQueueEmpty: async (accessToken: string, queue: keyof QueuesResponseDto) => {
+  isQueueEmpty: async (accessToken: string, queue: keyof QueuesResponseLegacyDto) => {
    const queues = await getQueuesLegacy({ headers: asBearerAuth(accessToken) });
    const jobCounts = queues[queue].jobCounts;
    return !jobCounts.active && !jobCounts.waiting;
  },

-  waitForQueueFinish: (accessToken: string, queue: keyof QueuesResponseDto, ms?: number) => {
+  waitForQueueFinish: (accessToken: string, queue: keyof QueuesResponseLegacyDto, ms?: number) => {
    // eslint-disable-next-line no-async-promise-executor
    return new Promise<void>(async (resolve, reject) => {
      const timeout = setTimeout(() => reject(new Error('Timed out waiting for queue to empty')), ms || 10_000);
@@ -561,6 +667,25 @@ export const utils = {
    await utils.waitForQueueFinish(accessToken, 'sidecar');
    await utils.waitForQueueFinish(accessToken, 'metadataExtraction');
  },
+
+  async poll<T>(cb: () => Promise<T>, validate: (value: T) => boolean, map?: (value: T) => any) {
+    let timeout = 0;
+    while (true) {
+      try {
+        const data = await cb();
+        if (validate(data)) {
+          return map ? map(data) : data;
+        }
+        timeout++;
+        if (timeout >= 10) {
+          throw 'Could not clean up test.';
+        }
+        await new Promise((resolve) => setTimeout(resolve, 5e2));
+      } catch {
+        // no-op
+      }
+    }
+  },
 };

 utils.initSdk();
--- a/e2e/src/web/specs/asset-viewer/asset-viewer.parallel-e2e-spec.ts
+++ b/e2e/src/web/specs/asset-viewer/asset-viewer.parallel-e2e-spec.ts
@@ -0,0 +1,270 @@
+import { faker } from '@faker-js/faker';
+import { expect, test } from '@playwright/test';
+import {
+  Changes,
+  createDefaultTimelineConfig,
+  generateTimelineData,
+  SeededRandom,
+  selectRandom,
+  TimelineAssetConfig,
+  TimelineData,
+} from 'src/generators/timeline';
+import { setupBaseMockApiRoutes } from 'src/mock-network/base-network';
+import { setupTimelineMockApiRoutes, TimelineTestContext } from 'src/mock-network/timeline-network';
+import { utils } from 'src/utils';
+import { assetViewerUtils, cancelAllPollers } from 'src/web/specs/timeline/utils';
+
+test.describe.configure({ mode: 'parallel' });
+test.describe('asset-viewer', () => {
+  const rng = new SeededRandom(529);
+  let adminUserId: string;
+  let timelineRestData: TimelineData;
+  const assets: TimelineAssetConfig[] = [];
+  const yearMonths: string[] = [];
+  const testContext = new TimelineTestContext();
+  const changes: Changes = {
+    albumAdditions: [],
+    assetDeletions: [],
+    assetArchivals: [],
+    assetFavorites: [],
+  };
+
+  test.beforeAll(async () => {
+    utils.initSdk();
+    adminUserId = faker.string.uuid();
+    testContext.adminId = adminUserId;
+    timelineRestData = generateTimelineData({ ...createDefaultTimelineConfig(), ownerId: adminUserId });
+    for (const timeBucket of timelineRestData.buckets.values()) {
+      assets.push(...timeBucket);
+    }
+    for (const yearMonth of timelineRestData.buckets.keys()) {
+      const [year, month] = yearMonth.split('-');
+      yearMonths.push(`${year}-${Number(month)}`);
+    }
+  });
+
+  test.beforeEach(async ({ context }) => {
+    await setupBaseMockApiRoutes(context, adminUserId);
+    await setupTimelineMockApiRoutes(context, timelineRestData, changes, testContext);
+  });
+
+  test.afterEach(() => {
+    cancelAllPollers();
+    testContext.slowBucket = false;
+    changes.albumAdditions = [];
+    changes.assetDeletions = [];
+    changes.assetArchivals = [];
+    changes.assetFavorites = [];
+  });
+
+  test.describe('/photos/:id', () => {
+    test('Navigate to next asset via button', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+
+      await page.getByLabel('View next asset').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index + 1].id}`);
+    });
+
+    test('Navigate to previous asset via button', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+
+      await page.getByLabel('View previous asset').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index - 1]);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index - 1].id}`);
+    });
+
+    test('Navigate to next asset via keyboard (ArrowRight)', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+
+      await page.keyboard.press('ArrowRight');
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index + 1].id}`);
+    });
+
+    test('Navigate to previous asset via keyboard (ArrowLeft)', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+
+      await page.keyboard.press('ArrowLeft');
+      await assetViewerUtils.waitForViewerLoad(page, assets[index - 1]);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index - 1].id}`);
+    });
+
+    test('Navigate forward 5 times via button', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+
+      for (let i = 1; i <= 5; i++) {
+        await page.getByLabel('View next asset').click();
+        await assetViewerUtils.waitForViewerLoad(page, assets[index + i]);
+        await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index + i].id}`);
+      }
+    });
+
+    test('Navigate backward 5 times via button', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+
+      for (let i = 1; i <= 5; i++) {
+        await page.getByLabel('View previous asset').click();
+        await assetViewerUtils.waitForViewerLoad(page, assets[index - i]);
+        await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${assets[index - i].id}`);
+      }
+    });
+
+    test('Navigate forward then backward via keyboard', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+
+      // Navigate forward 3 times
+      for (let i = 1; i <= 3; i++) {
+        await page.keyboard.press('ArrowRight');
+        await assetViewerUtils.waitForViewerLoad(page, assets[index + i]);
+      }
+
+      // Navigate backward 3 times to return to original
+      for (let i = 2; i >= 0; i--) {
+        await page.keyboard.press('ArrowLeft');
+        await assetViewerUtils.waitForViewerLoad(page, assets[index + i]);
+      }
+
+      // Verify we're back at the original asset
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+    });
+
+    test('Verify no next button on last asset', async ({ page }) => {
+      const lastAsset = assets.at(-1)!;
+      await page.goto(`/photos/${lastAsset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, lastAsset);
+
+      // Verify next button doesn't exist
+      await expect(page.getByLabel('View next asset')).toHaveCount(0);
+    });
+
+    test('Verify no previous button on first asset', async ({ page }) => {
+      const firstAsset = assets[0];
+      await page.goto(`/photos/${firstAsset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, firstAsset);
+
+      // Verify previous button doesn't exist
+      await expect(page.getByLabel('View previous asset')).toHaveCount(0);
+    });
+
+    test('Delete photo advances to next', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      const index = assets.indexOf(asset);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+    });
+    test('Delete photo advances to next (2x)', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      const index = assets.indexOf(asset);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+      await page.getByLabel('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 2]);
+    });
+    test('Delete last photo advances to prev', async ({ page }) => {
+      const asset = assets.at(-1)!;
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      const index = assets.indexOf(asset);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index - 1]);
+    });
+    test('Delete last photo advances to prev (2x)', async ({ page }) => {
+      const asset = assets.at(-1)!;
+      await page.goto(`/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      const index = assets.indexOf(asset);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index - 1]);
+      await page.getByLabel('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index - 2]);
+    });
+  });
+  test.describe('/trash/photos/:id', () => {
+    test('Delete trashed photo advances to next', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      const deletedAssets = assets.slice(index - 10, index + 10).map((asset) => asset.id);
+      changes.assetDeletions.push(...deletedAssets);
+      await page.goto(`/trash/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+    });
+    test('Delete trashed photo advances to next 2x', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      const deletedAssets = assets.slice(index - 10, index + 10).map((asset) => asset.id);
+      changes.assetDeletions.push(...deletedAssets);
+      await page.goto(`/trash/photos/${asset.id}`);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 1]);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 2]);
+    });
+    test('Delete trashed photo advances to prev', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      const deletedAssets = assets.slice(index - 10, index + 10).map((asset) => asset.id);
+      changes.assetDeletions.push(...deletedAssets);
+      await page.goto(`/trash/photos/${assets[index + 9].id}`);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 9]);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 8]);
+    });
+    test('Delete trashed photo advances to prev 2x', async ({ page }) => {
+      const asset = selectRandom(assets, rng);
+      const index = assets.indexOf(asset);
+      const deletedAssets = assets.slice(index - 10, index + 10).map((asset) => asset.id);
+      changes.assetDeletions.push(...deletedAssets);
+      await page.goto(`/trash/photos/${assets[index + 9].id}`);
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 9]);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 8]);
+      await page.getByLabel('Delete').click();
+      // confirm dialog
+      await page.getByRole('button').getByText('Delete').click();
+      await assetViewerUtils.waitForViewerLoad(page, assets[index + 7]);
+    });
+  });
+});
--- a/e2e/src/web/specs/database-backups.e2e-spec.ts
+++ b/e2e/src/web/specs/database-backups.e2e-spec.ts
@@ -0,0 +1,105 @@
+import { LoginResponseDto } from '@immich/sdk';
+import { expect, test } from '@playwright/test';
+import { utils } from 'src/utils';
+
+test.describe.configure({ mode: 'serial' });
+
+test.describe('Database Backups', () => {
+  let admin: LoginResponseDto;
+
+  test.beforeAll(async () => {
+    utils.initSdk();
+    await utils.resetDatabase();
+    admin = await utils.adminSetup();
+  });
+
+  test('restore a backup from settings', async ({ context, page }) => {
+    test.setTimeout(60_000);
+
+    await utils.resetBackups(admin.accessToken);
+    const filename = await utils.createBackup(admin.accessToken);
+    await utils.setAuthCookies(context, admin.accessToken);
+
+    // work-around until test is running on released version
+    await utils.move(
+      `/data/backups/${filename}`,
+      '/data/backups/immich-db-backup-20260114T184016-v2.5.0-pg14.19.sql.gz',
+    );
+
+    await page.goto('/admin/maintenance?isOpen=backups');
+    await page.getByRole('button', { name: 'Restore', exact: true }).click();
+    await page.getByRole('dialog').getByRole('button', { name: 'Restore' }).click();
+
+    await page.waitForURL('/maintenance?**');
+    await page.waitForURL('/admin/maintenance**', { timeout: 60_000 });
+  });
+
+  test('handle backup restore failure', async ({ context, page }) => {
+    test.setTimeout(60_000);
+
+    await utils.resetBackups(admin.accessToken);
+    await utils.prepareTestBackup('corrupted');
+    await utils.setAuthCookies(context, admin.accessToken);
+
+    await page.goto('/admin/maintenance?isOpen=backups');
+    await page.getByRole('button', { name: 'Restore', exact: true }).click();
+    await page.getByRole('dialog').getByRole('button', { name: 'Restore' }).click();
+
+    await page.waitForURL('/maintenance?**');
+    await expect(page.getByText('IM CORRUPTED')).toBeVisible({ timeout: 60_000 });
+    await page.getByRole('button', { name: 'End maintenance mode' }).click();
+    await page.waitForURL('/admin/maintenance**');
+  });
+
+  test('rollback to restore point if backup is missing admin', async ({ context, page }) => {
+    test.setTimeout(60_000);
+
+    await utils.resetBackups(admin.accessToken);
+    await utils.prepareTestBackup('empty');
+    await utils.setAuthCookies(context, admin.accessToken);
+
+    await page.goto('/admin/maintenance?isOpen=backups');
+    await page.getByRole('button', { name: 'Restore', exact: true }).click();
+    await page.getByRole('dialog').getByRole('button', { name: 'Restore' }).click();
+
+    await page.waitForURL('/maintenance?**');
+    await expect(page.getByText('Server health check failed, no admin exists.')).toBeVisible({ timeout: 60_000 });
+    await page.getByRole('button', { name: 'End maintenance mode' }).click();
+    await page.waitForURL('/admin/maintenance**');
+  });
+
+  test('restore a backup from onboarding', async ({ context, page }) => {
+    test.setTimeout(60_000);
+
+    await utils.resetBackups(admin.accessToken);
+    const filename = await utils.createBackup(admin.accessToken);
+    await utils.setAuthCookies(context, admin.accessToken);
+
+    // work-around until test is running on released version
+    await utils.move(
+      `/data/backups/${filename}`,
+      '/data/backups/immich-db-backup-20260114T184016-v2.5.0-pg14.19.sql.gz',
+    );
+
+    await utils.resetDatabase();
+
+    await page.goto('/');
+    await page.getByRole('button', { name: 'Restore from backup' }).click();
+
+    try {
+      await page.waitForURL('/maintenance**');
+    } catch {
+      // when chained with the rest of the tests
+      // this navigation may fail..? not sure why...
+      await page.goto('/maintenance');
+      await page.waitForURL('/maintenance**');
+    }
+
+    await page.getByRole('button', { name: 'Next' }).click();
+    await page.getByRole('button', { name: 'Restore', exact: true }).click();
+    await page.getByRole('dialog').getByRole('button', { name: 'Restore' }).click();
+
+    await page.waitForURL('/maintenance?**');
+    await page.waitForURL('/photos', { timeout: 60_000 });
+  });
+});
--- a/e2e/src/web/specs/maintenance.e2e-spec.ts
+++ b/e2e/src/web/specs/maintenance.e2e-spec.ts
@@ -0,0 +1,51 @@
+import { LoginResponseDto } from '@immich/sdk';
+import { expect, test } from '@playwright/test';
+import { utils } from 'src/utils';
+
+test.describe.configure({ mode: 'serial' });
+
+test.describe('Maintenance', () => {
+  let admin: LoginResponseDto;
+
+  test.beforeAll(async () => {
+    utils.initSdk();
+    await utils.resetDatabase();
+    admin = await utils.adminSetup();
+  });
+
+  test('enter and exit maintenance mode', async ({ context, page }) => {
+    await utils.setAuthCookies(context, admin.accessToken);
+
+    await page.goto('/admin/maintenance');
+    await page.getByRole('button', { name: 'Switch to maintenance mode' }).click();
+
+    await expect(page.getByText('Temporarily Unavailable')).toBeVisible({ timeout: 10_000 });
+    await page.getByRole('button', { name: 'End maintenance mode' }).click();
+    await page.waitForURL('**/admin/maintenance*', { timeout: 10_000 });
+  });
+
+  test('maintenance shows no options to users until they authenticate', async ({ page }) => {
+    const setCookie = await utils.enterMaintenance(admin.accessToken);
+    const cookie = setCookie
+      ?.map((cookie) => cookie.split(';')[0].split('='))
+      ?.find(([name]) => name === 'immich_maintenance_token');
+
+    expect(cookie).toBeTruthy();
+
+    await expect(async () => {
+      await page.goto('/');
+      await page.waitForURL('**/maintenance?**', {
+        timeout: 1000,
+      });
+    }).toPass({ timeout: 10_000 });
+
+    await expect(page.getByText('Temporarily Unavailable')).toBeVisible();
+    await expect(page.getByRole('button', { name: 'End maintenance mode' })).toHaveCount(0);
+
+    await page.goto(`/maintenance?${new URLSearchParams({ token: cookie![1] })}`);
+    await expect(page.getByText('Temporarily Unavailable')).toBeVisible();
+    await expect(page.getByRole('button', { name: 'End maintenance mode' })).toBeVisible();
+    await page.getByRole('button', { name: 'End maintenance mode' }).click();
+    await page.waitForURL('**/auth/login');
+  });
+});
--- a/e2e/src/web/specs/photo-viewer.e2e-spec.ts
+++ b/e2e/src/web/specs/photo-viewer.e2e-spec.ts
@@ -3,7 +3,7 @@ import { Page, expect, test } from '@playwright/test';
 import { utils } from 'src/utils';

 function imageLocator(page: Page) {
-  return page.getByAltText('Image taken on').locator('visible=true');
+  return page.getByAltText('Image taken').locator('visible=true');
 }
 test.describe('Photo Viewer', () => {
  let admin: LoginResponseDto;
--- a/e2e/src/web/specs/timeline/timeline.parallel-e2e-spec.ts
+++ b/e2e/src/web/specs/timeline/timeline.parallel-e2e-spec.ts
@@ -0,0 +1,864 @@
+import { faker } from '@faker-js/faker';
+import { expect, test } from '@playwright/test';
+import { DateTime } from 'luxon';
+import {
+  Changes,
+  createDefaultTimelineConfig,
+  generateTimelineData,
+  getAsset,
+  getMockAsset,
+  SeededRandom,
+  selectRandom,
+  selectRandomMultiple,
+  TimelineAssetConfig,
+  TimelineData,
+} from 'src/generators/timeline';
+import { setupBaseMockApiRoutes } from 'src/mock-network/base-network';
+import { pageRoutePromise, setupTimelineMockApiRoutes, TimelineTestContext } from 'src/mock-network/timeline-network';
+import { utils } from 'src/utils';
+import {
+  assetViewerUtils,
+  cancelAllPollers,
+  padYearMonth,
+  pageUtils,
+  poll,
+  thumbnailUtils,
+  timelineUtils,
+} from 'src/web/specs/timeline/utils';
+
+test.describe.configure({ mode: 'parallel' });
+test.describe('Timeline', () => {
+  let adminUserId: string;
+  let timelineRestData: TimelineData;
+  const assets: TimelineAssetConfig[] = [];
+  const yearMonths: string[] = [];
+  const testContext = new TimelineTestContext();
+  const changes: Changes = {
+    albumAdditions: [],
+    assetDeletions: [],
+    assetArchivals: [],
+    assetFavorites: [],
+  };
+
+  test.beforeAll(async () => {
+    test.fail(
+      process.env.PW_EXPERIMENTAL_SERVICE_WORKER_NETWORK_EVENTS !== '1',
+      'This test requires env var: PW_EXPERIMENTAL_SERVICE_WORKER_NETWORK_EVENTS=1',
+    );
+    utils.initSdk();
+    adminUserId = faker.string.uuid();
+    testContext.adminId = adminUserId;
+    timelineRestData = generateTimelineData({ ...createDefaultTimelineConfig(), ownerId: adminUserId });
+    for (const timeBucket of timelineRestData.buckets.values()) {
+      assets.push(...timeBucket);
+    }
+    for (const yearMonth of timelineRestData.buckets.keys()) {
+      const [year, month] = yearMonth.split('-');
+      yearMonths.push(`${year}-${Number(month)}`);
+    }
+  });
+
+  test.beforeEach(async ({ context }) => {
+    await setupBaseMockApiRoutes(context, adminUserId);
+    await setupTimelineMockApiRoutes(context, timelineRestData, changes, testContext);
+  });
+
+  test.afterEach(() => {
+    cancelAllPollers();
+    testContext.slowBucket = false;
+    changes.albumAdditions = [];
+    changes.assetDeletions = [];
+    changes.assetArchivals = [];
+    changes.assetFavorites = [];
+  });
+
+  test.describe('/photos', () => {
+    test('Open /photos', async ({ page }) => {
+      await page.goto(`/photos`);
+      await page.waitForSelector('#asset-grid');
+      await thumbnailUtils.expectTimelineHasOnScreenAssets(page);
+    });
+    test('Deep link to last photo', async ({ page }) => {
+      const lastAsset = assets.at(-1)!;
+      await pageUtils.deepLinkPhotosPage(page, lastAsset.id);
+      await thumbnailUtils.expectTimelineHasOnScreenAssets(page);
+      await thumbnailUtils.expectInViewport(page, lastAsset.id);
+    });
+    const rng = new SeededRandom(529);
+    for (let i = 0; i < 10; i++) {
+      test('Deep link to random asset ' + i, async ({ page }) => {
+        const asset = selectRandom(assets, rng);
+        await pageUtils.deepLinkPhotosPage(page, asset.id);
+        await thumbnailUtils.expectTimelineHasOnScreenAssets(page);
+        await thumbnailUtils.expectInViewport(page, asset.id);
+      });
+    }
+    test('Open /photos, open asset-viewer, browser back', async ({ page }) => {
+      const rng = new SeededRandom(22);
+      const asset = selectRandom(assets, rng);
+      await pageUtils.deepLinkPhotosPage(page, asset.id);
+      const scrollTopBefore = await timelineUtils.getScrollTop(page);
+      await thumbnailUtils.clickAssetId(page, asset.id);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.goBack();
+      await timelineUtils.locator(page).waitFor();
+      const scrollTopAfter = await timelineUtils.getScrollTop(page);
+      expect(scrollTopAfter).toBe(scrollTopBefore);
+    });
+    test('Open /photos, open asset-viewer, next photo, browser back, back', async ({ page }) => {
+      const rng = new SeededRandom(49);
+      const asset = selectRandom(assets, rng);
+      const assetIndex = assets.indexOf(asset);
+      const nextAsset = assets[assetIndex + 1];
+      await pageUtils.deepLinkPhotosPage(page, asset.id);
+      const scrollTopBefore = await timelineUtils.getScrollTop(page);
+      await thumbnailUtils.clickAssetId(page, asset.id);
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${asset.id}`);
+      await page.getByLabel('View next asset').click();
+      await assetViewerUtils.waitForViewerLoad(page, nextAsset);
+      await expect.poll(() => new URL(page.url()).pathname).toBe(`/photos/${nextAsset.id}`);
+      await page.goBack();
+      await assetViewerUtils.waitForViewerLoad(page, asset);
+      await page.goBack();
+      await page.waitForURL('**/photos?at=*');
+      const scrollTopAfter = await timelineUtils.getScrollTop(page);
+      expect(Math.abs(scrollTopAfter - scrollTopBefore)).toBeLessThan(5);
+    });
+    test('Open /photos, open asset-viewer, next photo 15x, backwardsArrow', async ({ page }) => {
+      await pageUtils.deepLinkPhotosPage(page, assets[0].id);
+      await thumbnailUtils.clickAssetId(page, assets[0].id);
+      await assetViewerUtils.waitForViewerLoad(page, assets[0]);
+      for (let i = 1; i <= 15; i++) {
+        await page.getByLabel('View next asset').click();
+        await assetViewerUtils.waitForViewerLoad(page, assets[i]);
+      }
+      await page.getByLabel('Go back').click();
+      await page.waitForURL('**/photos?at=*');
+      await thumbnailUtils.expectInViewport(page, assets[15].id);
+      await thumbnailUtils.expectBottomIsTimelineBottom(page, assets[15]!.id);
+    });
+    test('Open /photos, open asset-viewer, previous photo 15x, backwardsArrow', async ({ page }) => {
+      const lastAsset = assets.at(-1)!;
+      await pageUtils.deepLinkPhotosPage(page, lastAsset.id);
+      await thumbnailUtils.clickAssetId(page, lastAsset.id);
+      await assetViewerUtils.waitForViewerLoad(page, lastAsset);
+      for (let i = 1; i <= 15; i++) {
+        await page.getByLabel('View previous asset').click();
+        await assetViewerUtils.waitForViewerLoad(page, assets.at(-1 - i)!);
+      }
+      await page.getByLabel('Go back').click();
+      await page.waitForURL('**/photos?at=*');
+      await thumbnailUtils.expectInViewport(page, assets.at(-1 - 15)!.id);
+      await thumbnailUtils.expectTopIsTimelineTop(page, assets.at(-1 - 15)!.id);
+    });
+  });
+  test.describe('keyboard', () => {
+    /**
+     * This text tests keyboard nativation, and also ensures that the scroll-to-asset behavior
+     * scrolls the minimum amount. That is, if you are navigating using right arrow (auto scrolling
+     * as necessary downwards), then the asset should always be at the lowest row of the grid.
+     */
+    test('Next/previous asset - ArrowRight/ArrowLeft', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await thumbnailUtils.withAssetId(page, assets[0].id).focus();
+      const rightKey = 'ArrowRight';
+      const leftKey = 'ArrowLeft';
+      for (let i = 1; i < 15; i++) {
+        await page.keyboard.press(rightKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+      for (let i = 15; i <= 20; i++) {
+        await page.keyboard.press(rightKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+        expect(await thumbnailUtils.expectBottomIsTimelineBottom(page, assets.at(i)!.id));
+      }
+      // now test previous asset
+      for (let i = 19; i >= 15; i--) {
+        await page.keyboard.press(leftKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+      for (let i = 14; i > 0; i--) {
+        await page.keyboard.press(leftKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+        expect(await thumbnailUtils.expectTopIsTimelineTop(page, assets.at(i)!.id));
+      }
+    });
+    test('Next/previous asset - Tab/Shift+Tab', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await thumbnailUtils.withAssetId(page, assets[0].id).focus();
+      const rightKey = 'Tab';
+      const leftKey = 'Shift+Tab';
+      for (let i = 1; i < 15; i++) {
+        await page.keyboard.press(rightKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+      for (let i = 15; i <= 20; i++) {
+        await page.keyboard.press(rightKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+      // now test previous asset
+      for (let i = 19; i >= 15; i--) {
+        await page.keyboard.press(leftKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+      for (let i = 14; i > 0; i--) {
+        await page.keyboard.press(leftKey);
+        await assetViewerUtils.expectActiveAssetToBe(page, assets[i].id);
+      }
+    });
+    test('Next/previous day - d, Shift+D', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      let asset = assets[0];
+      await timelineUtils.locator(page).hover();
+      await page.keyboard.press('d');
+      await assetViewerUtils.expectActiveAssetToBe(page, asset.id);
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('d');
+        const next = getMockAsset(asset, assets, 'next', 'day')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, next.id);
+        asset = next;
+      }
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('Shift+D');
+        const previous = getMockAsset(asset, assets, 'previous', 'day')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, previous.id);
+        asset = previous;
+      }
+    });
+    test('Next/previous month - m, Shift+M', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      let asset = assets[0];
+      await timelineUtils.locator(page).hover();
+      await page.keyboard.press('m');
+      await assetViewerUtils.expectActiveAssetToBe(page, asset.id);
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('m');
+        const next = getMockAsset(asset, assets, 'next', 'month')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, next.id);
+        asset = next;
+      }
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('Shift+M');
+        const previous = getMockAsset(asset, assets, 'previous', 'month')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, previous.id);
+        asset = previous;
+      }
+    });
+    test('Next/previous year - y, Shift+Y', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      let asset = assets[0];
+      await timelineUtils.locator(page).hover();
+      await page.keyboard.press('y');
+      await assetViewerUtils.expectActiveAssetToBe(page, asset.id);
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('y');
+        const next = getMockAsset(asset, assets, 'next', 'year')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, next.id);
+        asset = next;
+      }
+      for (let i = 0; i < 15; i++) {
+        await page.keyboard.press('Shift+Y');
+        const previous = getMockAsset(asset, assets, 'previous', 'year')!;
+        await assetViewerUtils.expectActiveAssetToBe(page, previous.id);
+        asset = previous;
+      }
+    });
+    test('Navigate to time - g', async ({ page }) => {
+      const rng = new SeededRandom(4782);
+      await pageUtils.openPhotosPage(page);
+      for (let i = 0; i < 10; i++) {
+        const asset = selectRandom(assets, rng);
+        await pageUtils.goToAsset(page, asset.fileCreatedAt);
+        await thumbnailUtils.expectInViewport(page, asset.id);
+      }
+    });
+  });
+  test.describe('selection', () => {
+    test('Select day, unselect day', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await pageUtils.selectDay(page, 'Wed, Dec 11, 2024');
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(4);
+      await pageUtils.selectDay(page, 'Wed, Dec 11, 2024');
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(0);
+    });
+    test('Select asset, click asset to select', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await thumbnailUtils.withAssetId(page, assets[1].id).hover();
+      await thumbnailUtils.selectButton(page, assets[1].id).click();
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(1);
+      // no need to hover, once selection is active
+      await thumbnailUtils.clickAssetId(page, assets[2].id);
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(2);
+    });
+    test('Select asset, click unselect asset', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await thumbnailUtils.withAssetId(page, assets[1].id).hover();
+      await thumbnailUtils.selectButton(page, assets[1].id).click();
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(1);
+      await thumbnailUtils.clickAssetId(page, assets[1].id);
+      // the hover uses a checked button too, so just move mouse away
+      await page.mouse.move(0, 0);
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(0);
+    });
+    test('Select asset, shift-hover candidates, shift-click end', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      const asset = assets[0];
+      await thumbnailUtils.withAssetId(page, asset.id).hover();
+      await thumbnailUtils.selectButton(page, asset.id).click();
+      await page.keyboard.down('Shift');
+      await thumbnailUtils.withAssetId(page, assets[2].id).hover();
+      await expect(
+        thumbnailUtils.locator(page).locator('.absolute.top-0.h-full.w-full.bg-immich-primary.opacity-40'),
+      ).toHaveCount(3);
+      await thumbnailUtils.selectButton(page, assets[2].id).click();
+      await page.keyboard.up('Shift');
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(3);
+    });
+    test('Add multiple to selection - Select day, shift-click end', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      await thumbnailUtils.withAssetId(page, assets[0].id).hover();
+      await thumbnailUtils.selectButton(page, assets[0].id).click();
+      await thumbnailUtils.clickAssetId(page, assets[2].id);
+      await page.keyboard.down('Shift');
+      await thumbnailUtils.clickAssetId(page, assets[4].id);
+      await page.mouse.move(0, 0);
+      await expect(thumbnailUtils.selectedAsset(page)).toHaveCount(4);
+    });
+  });
+  test.describe('scroll', () => {
+    test('Open /photos, random click scrubber 20x', async ({ page }) => {
+      test.slow();
+      await pageUtils.openPhotosPage(page);
+      const rng = new SeededRandom(6637);
+      const selectedMonths = selectRandomMultiple(yearMonths, 20, rng);
+      for (const month of selectedMonths) {
+        await page.locator(`[data-segment-year-month="${month}"]`).click({ force: true });
+        const visibleMockAssetsYearMonths = await poll(page, async () => {
+          const assetIds = await thumbnailUtils.getAllInViewport(
+            page,
+            (assetId: string) => getYearMonth(assets, assetId) === month,
+          );
+          const visibleMockAssetsYearMonths: string[] = [];
+          for (const assetId of assetIds!) {
+            const yearMonth = getYearMonth(assets, assetId);
+            visibleMockAssetsYearMonths.push(yearMonth);
+            if (yearMonth === month) {
+              return [yearMonth];
+            }
+          }
+        });
+        if (page.isClosed()) {
+          return;
+        }
+        expect(visibleMockAssetsYearMonths).toContain(month);
+      }
+    });
+    test('Deep link to last photo, scroll up', async ({ page }) => {
+      const lastAsset = assets.at(-1)!;
+      await pageUtils.deepLinkPhotosPage(page, lastAsset.id);
+
+      await timelineUtils.locator(page).hover();
+      for (let i = 0; i < 100; i++) {
+        await page.mouse.wheel(0, -100);
+        await page.waitForTimeout(25);
+      }
+
+      await thumbnailUtils.expectInViewport(page, '14e5901f-fd7f-40c0-b186-4d7e7fc67968');
+    });
+    test('Deep link to first bucket, scroll down', async ({ page }) => {
+      const lastAsset = assets.at(0)!;
+      await pageUtils.deepLinkPhotosPage(page, lastAsset.id);
+      await timelineUtils.locator(page).hover();
+      for (let i = 0; i < 100; i++) {
+        await page.mouse.wheel(0, 100);
+        await page.waitForTimeout(25);
+      }
+      await thumbnailUtils.expectInViewport(page, 'b7983a13-4b4e-4950-a731-f2962d9a1555');
+    });
+    test('Deep link to last photo, drag scrubber to scroll up', async ({ page }) => {
+      const lastAsset = assets.at(-1)!;
+      await pageUtils.deepLinkPhotosPage(page, lastAsset.id);
+      const lastMonth = yearMonths.at(-1);
+      const firstScrubSegment = page.locator(`[data-segment-year-month="${yearMonths[0]}"]`);
+      const lastScrubSegment = page.locator(`[data-segment-year-month="${lastMonth}"]`);
+      const sourcebox = (await lastScrubSegment.boundingBox())!;
+      const targetBox = (await firstScrubSegment.boundingBox())!;
+      await firstScrubSegment.hover();
+      const currentY = sourcebox.y;
+      await page.mouse.move(sourcebox.x + sourcebox?.width / 2, currentY);
+      await page.mouse.down();
+      await page.mouse.move(sourcebox.x + sourcebox?.width / 2, targetBox.y, { steps: 100 });
+      await page.mouse.up();
+      await thumbnailUtils.expectInViewport(page, assets[0].id);
+    });
+    test('Deep link to first bucket, drag scrubber to scroll down', async ({ page }) => {
+      await pageUtils.deepLinkPhotosPage(page, assets[0].id);
+      const firstScrubSegment = page.locator(`[data-segment-year-month="${yearMonths[0]}"]`);
+      const sourcebox = (await firstScrubSegment.boundingBox())!;
+      await firstScrubSegment.hover();
+      const currentY = sourcebox.y;
+      await page.mouse.move(sourcebox.x + sourcebox?.width / 2, currentY);
+      await page.mouse.down();
+      const height = page.viewportSize()?.height;
+      expect(height).toBeDefined();
+      await page.mouse.move(sourcebox.x + sourcebox?.width / 2, height! - 10, {
+        steps: 100,
+      });
+      await page.mouse.up();
+      await thumbnailUtils.expectInViewport(page, assets.at(-1)!.id);
+    });
+    test('Buckets cancel on scroll', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      testContext.slowBucket = true;
+      const failedUris: string[] = [];
+      page.on('requestfailed', (request) => {
+        failedUris.push(request.url());
+      });
+      const offscreenSegment = page.locator(`[data-segment-year-month="${yearMonths[12]}"]`);
+      await offscreenSegment.click({ force: true });
+      const lastSegment = page.locator(`[data-segment-year-month="${yearMonths.at(-1)!}"]`);
+      await lastSegment.click({ force: true });
+      const uris = await poll(page, async () => (failedUris.length > 0 ? failedUris : null));
+      expect(uris).toEqual(expect.arrayContaining([expect.stringContaining(padYearMonth(yearMonths[12]!))]));
+    });
+  });
+  test.describe('/albums', () => {
+    test('Open album', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      await thumbnailUtils.expectInViewport(page, album.assetIds[0]);
+    });
+    test('Deep link to last photo', async ({ page }) => {
+      const album = timelineRestData.album;
+      const lastAsset = album.assetIds.at(-1);
+      await pageUtils.deepLinkAlbumPage(page, album.id, lastAsset!);
+      await thumbnailUtils.expectInViewport(page, album.assetIds.at(-1)!);
+      await thumbnailUtils.expectBottomIsTimelineBottom(page, album.assetIds.at(-1)!);
+    });
+    test('Add photos to album pre-selects existing', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      await page.getByLabel('Add photos').click();
+      const asset = getAsset(timelineRestData, album.assetIds[0])!;
+      await pageUtils.goToAsset(page, asset.fileCreatedAt);
+      await thumbnailUtils.expectInViewport(page, asset.id);
+      await thumbnailUtils.expectSelectedReadonly(page, asset.id);
+    });
+    test('Add photos to album', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      await page.locator('nav button[aria-label="Add photos"]').click();
+      const asset = getAsset(timelineRestData, album.assetIds[0])!;
+      await pageUtils.goToAsset(page, asset.fileCreatedAt);
+      await thumbnailUtils.expectInViewport(page, asset.id);
+      await thumbnailUtils.expectSelectedReadonly(page, asset.id);
+      await pageUtils.selectDay(page, 'Tue, Feb 27, 2024');
+      const put = pageRoutePromise(page, `**/api/albums/${album.id}/assets`, async (route, request) => {
+        const requestJson = request.postDataJSON();
+        await route.fulfill({
+          status: 200,
+          contentType: 'application/json',
+          json: requestJson.ids.map((id: string) => ({ id, success: true })),
+        });
+        changes.albumAdditions.push(...requestJson.ids);
+      });
+      await page.getByText('Add assets').click();
+      await expect(put).resolves.toEqual({
+        ids: [
+          'c077ea7b-cfa1-45e4-8554-f86c00ee5658',
+          '040fd762-dbbc-486d-a51a-2d84115e6229',
+          '86af0b5f-79d3-4f75-bab3-3b61f6c72b23',
+        ],
+      });
+      const addedAsset = getAsset(timelineRestData, 'c077ea7b-cfa1-45e4-8554-f86c00ee5658')!;
+      await pageUtils.goToAsset(page, addedAsset.fileCreatedAt);
+      await thumbnailUtils.expectInViewport(page, 'c077ea7b-cfa1-45e4-8554-f86c00ee5658');
+      await thumbnailUtils.expectInViewport(page, '040fd762-dbbc-486d-a51a-2d84115e6229');
+      await thumbnailUtils.expectInViewport(page, '86af0b5f-79d3-4f75-bab3-3b61f6c72b23');
+    });
+  });
+  test.describe('/trash', () => {
+    test('open /photos, trash photo, open /trash, restore', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      const assetToTrash = assets[0];
+      await thumbnailUtils.withAssetId(page, assetToTrash.id).hover();
+      await thumbnailUtils.selectButton(page, assetToTrash.id).click();
+      await page.getByLabel('Menu').click();
+      const deleteRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        changes.assetDeletions.push(...requestJson.ids);
+        await route.fulfill({
+          status: 200,
+          contentType: 'application/json',
+          json: requestJson.ids.map((id: string) => ({ id, success: true })),
+        });
+      });
+      await page.getByRole('menuitem').getByText('Delete').click();
+      await expect(deleteRequest).resolves.toEqual({
+        force: false,
+        ids: [assetToTrash.id],
+      });
+      await page.getByText('Trash', { exact: true }).click();
+      await thumbnailUtils.expectInViewport(page, assetToTrash.id);
+      await thumbnailUtils.withAssetId(page, assetToTrash.id).hover();
+      await thumbnailUtils.selectButton(page, assetToTrash.id).click();
+      const restoreRequest = pageRoutePromise(page, '**/api/trash/restore/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        changes.assetDeletions = changes.assetDeletions.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 200,
+          contentType: 'application/json',
+          json: { count: requestJson.ids.length },
+        });
+      });
+      await page.getByText('Restore', { exact: true }).click();
+      await expect(restoreRequest).resolves.toEqual({
+        ids: [assetToTrash.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToTrash.id)).toHaveCount(0);
+      await page.getByText('Photos', { exact: true }).click();
+      await thumbnailUtils.expectInViewport(page, assetToTrash.id);
+    });
+    test('open album, trash photo, open /trash, restore', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      const assetToTrash = getAsset(timelineRestData, album.assetIds[0])!;
+      await thumbnailUtils.withAssetId(page, assetToTrash.id).hover();
+      await thumbnailUtils.selectButton(page, assetToTrash.id).click();
+      await page.getByLabel('Menu').click();
+      const deleteRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        changes.assetDeletions.push(...requestJson.ids);
+        await route.fulfill({
+          status: 200,
+          contentType: 'application/json',
+          json: requestJson.ids.map((id: string) => ({ id, success: true })),
+        });
+      });
+      await page.getByRole('menuitem').getByText('Delete').click();
+      await expect(deleteRequest).resolves.toEqual({
+        force: false,
+        ids: [assetToTrash.id],
+      });
+      await page.locator('#asset-selection-app-bar').getByLabel('Close').click();
+      await page.getByText('Trash', { exact: true }).click();
+      await timelineUtils.waitForTimelineLoad(page);
+      await thumbnailUtils.expectInViewport(page, assetToTrash.id);
+      await thumbnailUtils.withAssetId(page, assetToTrash.id).hover();
+      await thumbnailUtils.selectButton(page, assetToTrash.id).click();
+      const restoreRequest = pageRoutePromise(page, '**/api/trash/restore/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        changes.assetDeletions = changes.assetDeletions.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 200,
+          contentType: 'application/json',
+          json: { count: requestJson.ids.length },
+        });
+      });
+      await page.getByText('Restore', { exact: true }).click();
+      await expect(restoreRequest).resolves.toEqual({
+        ids: [assetToTrash.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToTrash.id)).toHaveCount(0);
+      await pageUtils.openAlbumPage(page, album.id);
+      await thumbnailUtils.expectInViewport(page, assetToTrash.id);
+    });
+  });
+  test.describe('/archive', () => {
+    test('open /photos, archive photo, open /archive, unarchive', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      const assetToArchive = assets[0];
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      await page.getByLabel('Menu').click();
+      const archive = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'archive') {
+          return await route.continue();
+        }
+        await route.fulfill({
+          status: 204,
+        });
+        changes.assetArchivals.push(...requestJson.ids);
+      });
+      await page.getByRole('menuitem').getByText('Archive').click();
+      await expect(archive).resolves.toEqual({
+        visibility: 'archive',
+        ids: [assetToArchive.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToArchive.id)).toHaveCount(0);
+      await page.getByRole('link').getByText('Archive').click();
+      await thumbnailUtils.expectInViewport(page, assetToArchive.id);
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      const unarchiveRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'timeline') {
+          return await route.continue();
+        }
+        changes.assetArchivals = changes.assetArchivals.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Unarchive').click();
+      await expect(unarchiveRequest).resolves.toEqual({
+        visibility: 'timeline',
+        ids: [assetToArchive.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToArchive.id)).toHaveCount(0);
+      await page.getByText('Photos', { exact: true }).click();
+      await thumbnailUtils.expectInViewport(page, assetToArchive.id);
+    });
+    test('open /archive, favorite photo, unfavorite', async ({ page }) => {
+      const assetToFavorite = assets[0];
+      changes.assetArchivals.push(assetToFavorite.id);
+      await pageUtils.openArchivePage(page);
+      const favorite = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        const isFavorite = requestJson.isFavorite;
+        if (isFavorite) {
+          changes.assetFavorites.push(...requestJson.ids);
+        }
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      await page.getByLabel('Favorite').click();
+      await expect(favorite).resolves.toEqual({
+        isFavorite: true,
+        ids: [assetToFavorite.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToFavorite.id)).toHaveCount(1);
+      await thumbnailUtils.expectInViewport(page, assetToFavorite.id);
+      await thumbnailUtils.expectThumbnailIsFavorite(page, assetToFavorite.id);
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      const unFavoriteRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        changes.assetFavorites = changes.assetFavorites.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Remove from favorites').click();
+      await expect(unFavoriteRequest).resolves.toEqual({
+        isFavorite: false,
+        ids: [assetToFavorite.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToFavorite.id)).toHaveCount(1);
+      await thumbnailUtils.expectThumbnailIsNotFavorite(page, assetToFavorite.id);
+    });
+    test('open album, archive photo, open album, unarchive', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      const assetToArchive = getAsset(timelineRestData, album.assetIds[0])!;
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      await page.getByLabel('Menu').click();
+      const archive = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'archive') {
+          return await route.continue();
+        }
+        changes.assetArchivals.push(...requestJson.ids);
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByRole('menuitem').getByText('Archive').click();
+      await expect(archive).resolves.toEqual({
+        visibility: 'archive',
+        ids: [assetToArchive.id],
+      });
+      await thumbnailUtils.expectThumbnailIsArchive(page, assetToArchive.id);
+      await page.locator('#asset-selection-app-bar').getByLabel('Close').click();
+      await page.getByRole('link').getByText('Archive').click();
+      await timelineUtils.waitForTimelineLoad(page);
+      await thumbnailUtils.expectInViewport(page, assetToArchive.id);
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      const unarchiveRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'timeline') {
+          return await route.continue();
+        }
+        changes.assetArchivals = changes.assetArchivals.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Unarchive').click();
+      await expect(unarchiveRequest).resolves.toEqual({
+        visibility: 'timeline',
+        ids: [assetToArchive.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToArchive.id)).toHaveCount(0);
+      await pageUtils.openAlbumPage(page, album.id);
+      await thumbnailUtils.expectInViewport(page, assetToArchive.id);
+    });
+  });
+  test.describe('/favorite', () => {
+    test('open /photos, favorite photo, open /favorites, remove favorite, open /photos', async ({ page }) => {
+      await pageUtils.openPhotosPage(page);
+      const assetToFavorite = assets[0];
+
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      const favorite = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        const isFavorite = requestJson.isFavorite;
+        if (isFavorite) {
+          changes.assetFavorites.push(...requestJson.ids);
+        }
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Favorite').click();
+      await expect(favorite).resolves.toEqual({
+        isFavorite: true,
+        ids: [assetToFavorite.id],
+      });
+      // ensure thumbnail still exists and has favorite icon
+      await thumbnailUtils.expectThumbnailIsFavorite(page, assetToFavorite.id);
+      await page.getByRole('link').getByText('Favorites').click();
+      await thumbnailUtils.expectInViewport(page, assetToFavorite.id);
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      const unFavoriteRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        changes.assetFavorites = changes.assetFavorites.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Remove from favorites').click();
+      await expect(unFavoriteRequest).resolves.toEqual({
+        isFavorite: false,
+        ids: [assetToFavorite.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToFavorite.id)).toHaveCount(0);
+      await page.getByText('Photos', { exact: true }).click();
+      await thumbnailUtils.expectInViewport(page, assetToFavorite.id);
+    });
+    test('open /favorites, archive photo, unarchive photo', async ({ page }) => {
+      await pageUtils.openFavorites(page);
+      const assetToArchive = getAsset(timelineRestData, 'ad31e29f-2069-4574-b9a9-ad86523c92cb')!;
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      await page.getByLabel('Menu').click();
+      const archive = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'archive') {
+          return await route.continue();
+        }
+        await route.fulfill({
+          status: 204,
+        });
+        changes.assetArchivals.push(...requestJson.ids);
+      });
+      await page.getByRole('menuitem').getByText('Archive').click();
+      await expect(archive).resolves.toEqual({
+        visibility: 'archive',
+        ids: [assetToArchive.id],
+      });
+      await page.getByRole('link').getByText('Archive').click();
+      await thumbnailUtils.expectInViewport(page, assetToArchive.id);
+      await thumbnailUtils.expectThumbnailIsNotArchive(page, assetToArchive.id);
+      await thumbnailUtils.withAssetId(page, assetToArchive.id).hover();
+      await thumbnailUtils.selectButton(page, assetToArchive.id).click();
+      const unarchiveRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.visibility !== 'timeline') {
+          return await route.continue();
+        }
+        changes.assetArchivals = changes.assetArchivals.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Unarchive').click();
+      await expect(unarchiveRequest).resolves.toEqual({
+        visibility: 'timeline',
+        ids: [assetToArchive.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToArchive.id)).toHaveCount(0);
+      await thumbnailUtils.expectThumbnailIsNotArchive(page, assetToArchive.id);
+    });
+    test('Open album, favorite photo, open /favorites, remove favorite, Open album', async ({ page }) => {
+      const album = timelineRestData.album;
+      await pageUtils.openAlbumPage(page, album.id);
+      const assetToFavorite = getAsset(timelineRestData, album.assetIds[0])!;
+
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      const favorite = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        const isFavorite = requestJson.isFavorite;
+        if (isFavorite) {
+          changes.assetFavorites.push(...requestJson.ids);
+        }
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Favorite').click();
+      await expect(favorite).resolves.toEqual({
+        isFavorite: true,
+        ids: [assetToFavorite.id],
+      });
+      // ensure thumbnail still exists and has favorite icon
+      await thumbnailUtils.expectThumbnailIsFavorite(page, assetToFavorite.id);
+      await page.locator('#asset-selection-app-bar').getByLabel('Close').click();
+      await page.getByRole('link').getByText('Favorites').click();
+      await timelineUtils.waitForTimelineLoad(page);
+      await pageUtils.goToAsset(page, assetToFavorite.fileCreatedAt);
+      await thumbnailUtils.expectInViewport(page, assetToFavorite.id);
+      await thumbnailUtils.withAssetId(page, assetToFavorite.id).hover();
+      await thumbnailUtils.selectButton(page, assetToFavorite.id).click();
+      const unFavoriteRequest = pageRoutePromise(page, '**/api/assets', async (route, request) => {
+        const requestJson = request.postDataJSON();
+        if (requestJson.isFavorite === undefined) {
+          return await route.continue();
+        }
+        changes.assetFavorites = changes.assetFavorites.filter((id) => !requestJson.ids.includes(id));
+        await route.fulfill({
+          status: 204,
+        });
+      });
+      await page.getByLabel('Remove from favorites').click();
+      await expect(unFavoriteRequest).resolves.toEqual({
+        isFavorite: false,
+        ids: [assetToFavorite.id],
+      });
+      await expect(thumbnailUtils.withAssetId(page, assetToFavorite.id)).toHaveCount(0);
+      await pageUtils.openAlbumPage(page, album.id);
+      await thumbnailUtils.expectInViewport(page, assetToFavorite.id);
+    });
+  });
+});
+
+const getYearMonth = (assets: TimelineAssetConfig[], assetId: string) => {
+  const mockAsset = assets.find((mockAsset) => mockAsset.id === assetId)!;
+  const dateTime = DateTime.fromISO(mockAsset.fileCreatedAt!);
+  return dateTime.year + '-' + dateTime.month;
+};
--- a/e2e/src/web/specs/timeline/utils.ts
+++ b/e2e/src/web/specs/timeline/utils.ts
@@ -0,0 +1,242 @@
+import { BrowserContext, expect, Page } from '@playwright/test';
+import { DateTime } from 'luxon';
+import { TimelineAssetConfig } from 'src/generators/timeline';
+
+export const sleep = (ms: number) => {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+};
+
+export const padYearMonth = (yearMonth: string) => {
+  const [year, month] = yearMonth.split('-');
+  return `${year}-${month.padStart(2, '0')}`;
+};
+
+export async function throttlePage(context: BrowserContext, page: Page) {
+  const session = await context.newCDPSession(page);
+  await session.send('Network.emulateNetworkConditions', {
+    offline: false,
+    downloadThroughput: (1.5 * 1024 * 1024) / 8,
+    uploadThroughput: (750 * 1024) / 8,
+    latency: 40,
+    connectionType: 'cellular3g',
+  });
+  await session.send('Emulation.setCPUThrottlingRate', { rate: 10 });
+}
+
+let activePollsAbortController = new AbortController();
+
+export const cancelAllPollers = () => {
+  activePollsAbortController.abort();
+  activePollsAbortController = new AbortController();
+};
+
+export const poll = async <T>(
+  page: Page,
+  query: () => Promise<T>,
+  callback?: (result: Awaited<T> | undefined) => boolean,
+) => {
+  let result;
+  const timeout = Date.now() + 10_000;
+  const signal = activePollsAbortController.signal;
+
+  const terminate = callback || ((result: Awaited<T> | undefined) => !!result);
+  while (!terminate(result) && Date.now() < timeout) {
+    if (signal.aborted) {
+      return;
+    }
+    try {
+      result = await query();
+    } catch {
+      // ignore
+    }
+    if (signal.aborted) {
+      return;
+    }
+    if (page.isClosed()) {
+      return;
+    }
+    try {
+      await page.waitForTimeout(50);
+    } catch {
+      return;
+    }
+  }
+  if (!result) {
+    // rerun to trigger error if any
+    result = await query();
+  }
+  return result;
+};
+
+export const thumbnailUtils = {
+  locator(page: Page) {
+    return page.locator('[data-thumbnail-focus-container]');
+  },
+  withAssetId(page: Page, assetId: string) {
+    return page.locator(`[data-thumbnail-focus-container][data-asset="${assetId}"]`);
+  },
+  selectButton(page: Page, assetId: string) {
+    return page.locator(`[data-thumbnail-focus-container][data-asset="${assetId}"] button`);
+  },
+  selectedAsset(page: Page) {
+    return page.locator('[data-thumbnail-focus-container]:has(button[aria-checked])');
+  },
+  async clickAssetId(page: Page, assetId: string) {
+    await thumbnailUtils.withAssetId(page, assetId).click();
+  },
+  async queryThumbnailInViewport(page: Page, collector: (assetId: string) => boolean) {
+    const assetIds: string[] = [];
+    for (const thumb of await this.locator(page).all()) {
+      const box = await thumb.boundingBox();
+      if (box) {
+        const assetId = await thumb.evaluate((e) => e.dataset.asset);
+        if (collector?.(assetId!)) {
+          return [assetId!];
+        }
+        assetIds.push(assetId!);
+      }
+    }
+    return assetIds;
+  },
+  async getFirstInViewport(page: Page) {
+    return await poll(page, () => thumbnailUtils.queryThumbnailInViewport(page, () => true));
+  },
+  async getAllInViewport(page: Page, collector: (assetId: string) => boolean) {
+    return await poll(page, () => thumbnailUtils.queryThumbnailInViewport(page, collector));
+  },
+  async expectThumbnailIsFavorite(page: Page, assetId: string) {
+    await expect(thumbnailUtils.withAssetId(page, assetId).locator('[data-icon-favorite]')).toHaveCount(1);
+  },
+  async expectThumbnailIsNotFavorite(page: Page, assetId: string) {
+    await expect(thumbnailUtils.withAssetId(page, assetId).locator('[data-icon-favorite]')).toHaveCount(0);
+  },
+  async expectThumbnailIsArchive(page: Page, assetId: string) {
+    await expect(thumbnailUtils.withAssetId(page, assetId).locator('[data-icon-archive]')).toHaveCount(1);
+  },
+  async expectThumbnailIsNotArchive(page: Page, assetId: string) {
+    await expect(thumbnailUtils.withAssetId(page, assetId).locator('[data-icon-archive]')).toHaveCount(0);
+  },
+  async expectSelectedReadonly(page: Page, assetId: string) {
+    // todo - need a data attribute for selected
+    await expect(
+      page.locator(
+        `[data-thumbnail-focus-container][data-asset="${assetId}"] > .group.cursor-not-allowed > .rounded-xl`,
+      ),
+    ).toBeVisible();
+  },
+  async expectTimelineHasOnScreenAssets(page: Page) {
+    const first = await thumbnailUtils.getFirstInViewport(page);
+    if (page.isClosed()) {
+      return;
+    }
+    expect(first).toBeTruthy();
+  },
+  async expectInViewport(page: Page, assetId: string) {
+    const box = await poll(page, () => thumbnailUtils.withAssetId(page, assetId).boundingBox());
+    if (page.isClosed()) {
+      return;
+    }
+    expect(box).toBeTruthy();
+  },
+  async expectBottomIsTimelineBottom(page: Page, assetId: string) {
+    const box = await thumbnailUtils.withAssetId(page, assetId).boundingBox();
+    const gridBox = await timelineUtils.locator(page).boundingBox();
+    if (page.isClosed()) {
+      return;
+    }
+    expect(box!.y + box!.height).toBeCloseTo(gridBox!.y + gridBox!.height, 0);
+  },
+  async expectTopIsTimelineTop(page: Page, assetId: string) {
+    const box = await thumbnailUtils.withAssetId(page, assetId).boundingBox();
+    const gridBox = await timelineUtils.locator(page).boundingBox();
+    if (page.isClosed()) {
+      return;
+    }
+    expect(box!.y).toBeCloseTo(gridBox!.y, 0);
+  },
+};
+export const timelineUtils = {
+  locator(page: Page) {
+    return page.locator('#asset-grid');
+  },
+  async waitForTimelineLoad(page: Page) {
+    await expect(timelineUtils.locator(page)).toBeInViewport();
+    await expect.poll(() => thumbnailUtils.locator(page).count()).toBeGreaterThan(0);
+  },
+  async getScrollTop(page: Page) {
+    const queryTop = () =>
+      page.evaluate(() => {
+        // eslint-disable-next-line @typescript-eslint/ban-ts-comment
+        // @ts-ignore
+        return document.querySelector('#asset-grid').scrollTop;
+      });
+    await expect.poll(queryTop).toBeGreaterThan(0);
+    return await queryTop();
+  },
+};
+
+export const assetViewerUtils = {
+  locator(page: Page) {
+    return page.locator('#immich-asset-viewer');
+  },
+  async waitForViewerLoad(page: Page, asset: TimelineAssetConfig) {
+    await page
+      .locator(
+        `img[draggable="false"][src="/api/assets/${asset.id}/thumbnail?size=preview&c=${asset.thumbhash}&edited=true"]`,
+      )
+      .or(
+        page.locator(`video[poster="/api/assets/${asset.id}/thumbnail?size=preview&c=${asset.thumbhash}&edited=true"]`),
+      )
+      .waitFor();
+  },
+  async expectActiveAssetToBe(page: Page, assetId: string) {
+    const activeElement = () =>
+      page.evaluate(() => {
+        // eslint-disable-next-line @typescript-eslint/ban-ts-comment
+        // @ts-ignore
+        return document.activeElement?.dataset?.asset;
+      });
+    await expect(poll(page, activeElement, (result) => result === assetId)).resolves.toBe(assetId);
+  },
+};
+export const pageUtils = {
+  async deepLinkPhotosPage(page: Page, assetId: string) {
+    await page.goto(`/photos?at=${assetId}`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async openPhotosPage(page: Page) {
+    await page.goto(`/photos`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async openFavorites(page: Page) {
+    await page.goto(`/favorites`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async openAlbumPage(page: Page, albumId: string) {
+    await page.goto(`/albums/${albumId}`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async openArchivePage(page: Page) {
+    await page.goto(`/archive`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async deepLinkAlbumPage(page: Page, albumId: string, assetId: string) {
+    await page.goto(`/albums/${albumId}?at=${assetId}`);
+    await timelineUtils.waitForTimelineLoad(page);
+  },
+  async goToAsset(page: Page, assetDate: string) {
+    await timelineUtils.locator(page).hover();
+    const stringDate = DateTime.fromISO(assetDate).toFormat('MMddyyyy,hh:mm:ss.SSSa');
+    await page.keyboard.press('g');
+    await page.locator('#datetime').pressSequentially(stringDate);
+    await page.getByText('Confirm').click();
+  },
+  async selectDay(page: Page, day: string) {
+    await page.getByTitle(day).hover();
+    await page.locator('[data-group] .w-8').click();
+  },
+  async pauseTestDebug() {
+    console.log('NOTE: pausing test indefinately for debug');
+    await new Promise(() => void 0);
+  },
+};
--- a/e2e/src/web/specs/user-admin.e2e-spec.ts
+++ b/e2e/src/web/specs/user-admin.e2e-spec.ts
@@ -54,12 +54,16 @@ test.describe('User Administration', () => {

    await page.getByRole('button', { name: 'Edit' }).click();
    await expect(page.getByLabel('Admin User')).not.toBeChecked();
-    await page.getByText('Admin User').click();
+    await page.getByLabel('Admin User').click();
    await expect(page.getByLabel('Admin User')).toBeChecked();
-    await page.getByRole('button', { name: 'Confirm' }).click();
+    await page.getByRole('button', { name: 'Save' }).click();

-    const updated = await getUserAdmin({ id: user.userId }, { headers: asBearerAuth(admin.accessToken) });
-    expect(updated.isAdmin).toBe(true);
+    await expect
+      .poll(async () => {
+        const userAdmin = await getUserAdmin({ id: user.userId }, { headers: asBearerAuth(admin.accessToken) });
+        return userAdmin.isAdmin;
+      })
+      .toBe(true);
  });

  test('revoke admin access', async ({ context, page }) => {
@@ -79,11 +83,15 @@ test.describe('User Administration', () => {

    await page.getByRole('button', { name: 'Edit' }).click();
    await expect(page.getByLabel('Admin User')).toBeChecked();
-    await page.getByText('Admin User').click();
+    await page.getByLabel('Admin User').click();
    await expect(page.getByLabel('Admin User')).not.toBeChecked();
-    await page.getByRole('button', { name: 'Confirm' }).click();
+    await page.getByRole('button', { name: 'Save' }).click();

-    const updated = await getUserAdmin({ id: user.userId }, { headers: asBearerAuth(admin.accessToken) });
-    expect(updated.isAdmin).toBe(false);
+    await expect
+      .poll(async () => {
+        const userAdmin = await getUserAdmin({ id: user.userId }, { headers: asBearerAuth(admin.accessToken) });
+        return userAdmin.isAdmin;
+      })
+      .toBe(false);
  });
 });
--- a/e2e/tsconfig.json
+++ b/e2e/tsconfig.json
@@ -9,7 +9,7 @@
    "experimentalDecorators": true,
    "allowSyntheticDefaultImports": true,
    "resolveJsonModule": true,
-    "target": "es2022",
+    "target": "es2023",
    "sourceMap": true,
    "outDir": "./dist",
    "incremental": true,
--- a/Show More
+++ b/Show More
@@ -1 +1 @@
 .11.0
 .13.0