mirror of
https://github.com/immich-app/immich.git
synced 2026-02-04 19:12:11 -08:00
61a9d5cbc7
* feat: ProcessRepository#createSpawnDuplexStream
* test: write tests for ProcessRepository#createSpawnDuplexStream
* feat: StorageRepository#createGzip,createGunzip,createPlainReadStream
* feat: backups util (args, create, restore, progress)
* feat: wait on maintenance operation lock on boot
* chore: use backup util from backup.service.ts
test: update backup.service.ts tests with new util
* feat: list/delete backups (maintenance services)
* chore: open api
fix: missing action in cli.service.ts
* chore: add missing repositories to MaintenanceModule
* refactor: move logSecret into module init
* feat: initialise StorageCore in maintenance mode
* feat: authenticate websocket requests in maintenance mode
* test: add mock for new storage fns
* feat: add MaintenanceEphemeralStateRepository
refactor: cache the secret in memory
* test: update service worker tests
* feat: add external maintenance mode status
* feat: synchronised status, restore db action
* test: backup restore service tests
* refactor: DRY end maintenance
* feat: list and delete backup routes
* feat: start action on boot
* fix: should set status on restore end
* refactor: add maintenanceStore to hold writables
* feat: sync status to web app
* feat: web impl.
* test: various utils for testings
* test: web e2e tests
* test: e2e maintenance spec
* test: update cli spec
* chore: e2e lint
* chore: lint fixes
* chore: lint fixes
* feat: start restore flow route
* test: update e2e tests
* chore: remove neon lights on maintenance action pages
* fix: use 'startRestoreFlow' on onboarding page
* chore: ignore any library folder in `docker/`
* fix: load status on boot
* feat: upload backups
* refactor: permit any .sql(.gz) to be listed/restored
* feat: download backups from list
* fix: permit uploading just .sql files
* feat: restore just .sql files
* fix: don't show backups list if logged out
* feat: system integrity check in restore flow
* test: not providing failed backups in API anymore
* test: util should also not try to use failedBackups
* fix: actually assign inputStream
* test: correct test backup prep.
* fix: ensure task is defined to show error
* test: fix docker cp command
* test: update e2e web spec to select next button
* test: update e2e api tests
* test: refactor timeouts
* chore: remove `showDelete` from maint. settings
* chore: lint
* chore: lint
* fix: make sure backups are correctly sorted for clean up
* test: update service spec
* test: adjust e2e timeout
* test: increase web timeouts for ci
* chore: move gitignore changes
* chore: additional filename validation
* refactor: better typings for integrity API
* feat: higher accuracy progress tracking
* chore: delay lock retry
* refactor: remove old maintenance settings
* refactor: clean up tailwind classes
* refactor: use while loop rather than recursive calls
* test: update service specs
* chore: check canParse too
* chore: lint
* fix: logic error causing infinite loop
* refactor: use <ProgressBar /> from ui library
* fix: create or overwrite file
* chore: i18n pass, update progress bar
* fix: wrong translation string
* chore: update colour variables
* test: update web test for new maint. page
* chore: format, fix key
* test: update tests to be more linter complaint & use new routines
* chore: update onClick -> onAction, title -> breadcrumbs
* fix: use wrench icon in admin settings sidebar
* chore: add translation strings to accordion
* chore: lint
* refactor: move maintenance worker init into service
* refactor: `maintenanceStatus` -> `getMaintenanceStatus`
refactor: `integrityCheck` -> `detectPriorInstall`
chore: add `v2.4.0` version
refactor: `/backups/list` -> `/backups`
refactor: use sendFile in download route
refactor: use separate backups permissions
chore: correct descriptions
refactor: permit handler that doesn't return promise for sendfile
* refactor: move status impl into service
refactor: add active flag to maintenance status
* refactor: split into database backup controller
* test: split api e2e tests and passing
* fix: move end button into authed default maint page
* fix: also show in restore flow
* fix: import getMaintenanceStatus
* test: split web e2e tests
* refactor: ensure detect install is consistently named
* chore: ensure admin for detect install while out of maint.
* refactor: remove state repository
* test: update maint. worker service spec
* test: split backup service spec
* refactor: rename db backup routes
* refactor: instead of param, allow bulk backup deletion
* test: update sdk use in e2e test
* test: correct deleteBackup call
* fix: correct type for serverinstall response dto
* chore: validate filename for deletion
* test: wip
* test: backups no longer take path param
* refactor: scope util to database-backups instead of backups
* fix: update worker controller with new route
* chore: use new admin page actions
* chore: remove stray comment
* test: rename outdated test
* refactor: getter pattern for maintenance secret
* refactor: `createSpawnDuplexStream` -> `spawnDuplexStream`
* refactor: prefer `Object.assign`
* refactor: remove useless try {} block
* refactor: prefer `type Props`
refactor: prefer arrow function
* refactor: use luxon API for minutesAgo
* chore: remove change to gitignore
* refactor: prefer `type Props`
* refactor: remove async from onMount
* refactor: use luxon toRelative for relative time
* refactor: duplicate logic check
* chore: open api
* refactor: begin moving code into web//services
* refactor: don't use template string with $t
* test: use dialog role to match prompt
* refactor: split actions into flow/restore
* test: fix action value
* refactor: move more service calls into web//services
* chore: should void fn return
* chore: bump 2.4.0 to 2.5.0 in controller
* chore: bump 2.4.0 to 2.5.0 in controller
* refactor: use events for web//services
* chore: open api
* chore: open api
* refactor: don't await returned promise
* refactor: remove redundant check
* refactor: add `type: command` to actions
* refactor: split backup entries into own component
* refactor: split restore flow into separate components
* refactor(web): split BackupDelete event
* chore: stylings
* chore: stylings
* fix: don't log query failure on first boot
* feat: support pg_dumpall backups
* feat: display information about each backup
* chore: i18n
* feat: rollback to restore point on migrations failure
* feat: health check after restore
* chore: format
* refactor: split health check into separate function
* refactor: split health into repository
test: write tests covering rollbacks
* fix: omit 'health' requirement from createDbBackup
* test(e2e): rollback test
* fix: wrap text in backup entry
* fix: don't shrink context menu button
* fix: correct CREATE DB syntax for postgres
* test: rename backups generated by test
* feat: add filesize to backup response dto
* feat: restore list
* feat: ui work
* fix: e2e test
* fix: e2e test
* pr feedback
* pr feedback
---------
Co-authored-by: Alex <alex.tran1502@gmail.com>
Co-authored-by: Jason Rasmussen <jason@rasm.me>
190 lines
5.6 KiB
TypeScript
190 lines
5.6 KiB
TypeScript
import { Injectable } from '@nestjs/common';
|
|
import { isAbsolute } from 'node:path';
|
|
import { SALT_ROUNDS } from 'src/constants';
|
|
import { MaintenanceAuthDto } from 'src/dtos/maintenance.dto';
|
|
import { UserAdminResponseDto, mapUserAdmin } from 'src/dtos/user.dto';
|
|
import { MaintenanceAction, SystemMetadataKey } from 'src/enum';
|
|
import { BaseService } from 'src/services/base.service';
|
|
import { createMaintenanceLoginUrl, generateMaintenanceSecret } from 'src/utils/maintenance';
|
|
import { getExternalDomain } from 'src/utils/misc';
|
|
|
|
@Injectable()
|
|
export class CliService extends BaseService {
|
|
async listUsers(): Promise<UserAdminResponseDto[]> {
|
|
const users = await this.userRepository.getList({ withDeleted: true });
|
|
return users.map((user) => mapUserAdmin(user));
|
|
}
|
|
|
|
async resetAdminPassword(ask: (admin: UserAdminResponseDto) => Promise<string | undefined>) {
|
|
const admin = await this.userRepository.getAdmin();
|
|
if (!admin) {
|
|
throw new Error('Admin account does not exist');
|
|
}
|
|
|
|
const providedPassword = await ask(mapUserAdmin(admin));
|
|
const password = providedPassword || this.cryptoRepository.randomBytesAsText(24);
|
|
const hashedPassword = await this.cryptoRepository.hashBcrypt(password, SALT_ROUNDS);
|
|
|
|
await this.userRepository.update(admin.id, { password: hashedPassword });
|
|
|
|
return { admin, password, provided: !!providedPassword };
|
|
}
|
|
|
|
async disablePasswordLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.passwordLogin.enabled = false;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async enablePasswordLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.passwordLogin.enabled = true;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async disableMaintenanceMode(): Promise<{ alreadyDisabled: boolean }> {
|
|
const currentState = await this.systemMetadataRepository
|
|
.get(SystemMetadataKey.MaintenanceMode)
|
|
.then((state) => state ?? { isMaintenanceMode: false as const });
|
|
|
|
if (!currentState.isMaintenanceMode) {
|
|
return {
|
|
alreadyDisabled: true,
|
|
};
|
|
}
|
|
|
|
const state = { isMaintenanceMode: false as const };
|
|
await this.systemMetadataRepository.set(SystemMetadataKey.MaintenanceMode, state);
|
|
await this.appRepository.sendOneShotAppRestart(state);
|
|
|
|
return {
|
|
alreadyDisabled: false,
|
|
};
|
|
}
|
|
|
|
async enableMaintenanceMode(): Promise<{ authUrl: string; alreadyEnabled: boolean }> {
|
|
const { server } = await this.getConfig({ withCache: true });
|
|
const baseUrl = getExternalDomain(server);
|
|
|
|
const payload: MaintenanceAuthDto = {
|
|
username: 'cli-admin',
|
|
};
|
|
|
|
const state = await this.systemMetadataRepository
|
|
.get(SystemMetadataKey.MaintenanceMode)
|
|
.then((state) => state ?? { isMaintenanceMode: false as const });
|
|
|
|
if (state.isMaintenanceMode) {
|
|
return {
|
|
authUrl: await createMaintenanceLoginUrl(baseUrl, payload, state.secret),
|
|
alreadyEnabled: true,
|
|
};
|
|
}
|
|
|
|
const secret = generateMaintenanceSecret();
|
|
|
|
await this.systemMetadataRepository.set(SystemMetadataKey.MaintenanceMode, {
|
|
isMaintenanceMode: true,
|
|
secret,
|
|
action: {
|
|
action: MaintenanceAction.Start,
|
|
},
|
|
});
|
|
|
|
await this.appRepository.sendOneShotAppRestart({
|
|
isMaintenanceMode: true,
|
|
});
|
|
|
|
return {
|
|
authUrl: await createMaintenanceLoginUrl(baseUrl, payload, secret),
|
|
alreadyEnabled: false,
|
|
};
|
|
}
|
|
|
|
async grantAdminAccess(email: string): Promise<void> {
|
|
const user = await this.userRepository.getByEmail(email);
|
|
if (!user) {
|
|
throw new Error('User does not exist');
|
|
}
|
|
|
|
await this.userRepository.update(user.id, { isAdmin: true });
|
|
}
|
|
|
|
async revokeAdminAccess(email: string): Promise<void> {
|
|
const user = await this.userRepository.getByEmail(email);
|
|
if (!user) {
|
|
throw new Error('User does not exist');
|
|
}
|
|
|
|
await this.userRepository.update(user.id, { isAdmin: false });
|
|
}
|
|
|
|
async disableOAuthLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.oauth.enabled = false;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async enableOAuthLogin(): Promise<void> {
|
|
const config = await this.getConfig({ withCache: false });
|
|
config.oauth.enabled = true;
|
|
await this.updateConfig(config);
|
|
}
|
|
|
|
async getSampleFilePaths(): Promise<string[]> {
|
|
const [assets, people, users] = await Promise.all([
|
|
this.assetRepository.getFileSamples(),
|
|
this.personRepository.getFileSamples(),
|
|
this.userRepository.getFileSamples(),
|
|
]);
|
|
|
|
const paths = [];
|
|
|
|
for (const person of people) {
|
|
paths.push(person.thumbnailPath);
|
|
}
|
|
|
|
for (const user of users) {
|
|
paths.push(user.profileImagePath);
|
|
}
|
|
|
|
for (const asset of assets) {
|
|
paths.push(asset.path);
|
|
}
|
|
|
|
return paths.filter(Boolean) as string[];
|
|
}
|
|
|
|
async migrateFilePaths({
|
|
oldValue,
|
|
newValue,
|
|
confirm,
|
|
}: {
|
|
oldValue: string;
|
|
newValue: string;
|
|
confirm: (data: { sourceFolder: string; targetFolder: string }) => Promise<boolean>;
|
|
}): Promise<boolean> {
|
|
let sourceFolder = oldValue;
|
|
if (sourceFolder.startsWith('./')) {
|
|
sourceFolder = sourceFolder.slice(2);
|
|
}
|
|
|
|
const targetFolder = newValue;
|
|
if (!isAbsolute(targetFolder)) {
|
|
throw new Error('Target media location must be an absolute path');
|
|
}
|
|
|
|
if (!(await confirm({ sourceFolder, targetFolder }))) {
|
|
return false;
|
|
}
|
|
|
|
await this.databaseRepository.migrateFilePaths(sourceFolder, targetFolder);
|
|
|
|
return true;
|
|
}
|
|
|
|
cleanup() {
|
|
return this.databaseRepository.shutdown();
|
|
}
|
|
}
|