feat: api (#170)

* feat: api

* fix: missing package

---------

Co-authored-by: Daniel Dietzler <[email protected]>

Author: jrasm91

.github/workflows/build.yml

@@ -22,7 +22,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        app_name: ['my', 'buy', 'get', 'next', 'datasets']
+        app_name: ['api', 'next', 'my', 'buy', 'get', 'datasets']
 
     steps:
       - name: Checkout code
@@ -96,7 +96,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        app_name: ['datasets', 'next', 'my', 'buy', 'get']
+        app_name: ['api', 'next', 'my', 'buy', 'get', 'datasets']
     env:
       TF_VAR_app_name: ${{ matrix.app_name }}
       TF_VAR_stage: ${{ github.event_name == 'pull_request' && format('pr-{0}', github.event.number) || '' }}

.github/workflows/destroy.yml

@@ -14,7 +14,7 @@ jobs:
       fail-fast: false
       matrix:
         environment: ['dev', 'prod']
-        name: ['my', 'buy', 'get', 'next', 'datasets']
+        name: ['api', 'next', 'my', 'buy', 'get', 'datasets']
     steps:
       - name: Checkout code
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4

.github/workflows/test.yml

@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        app_name: [my, buy, get, next, datasets]
+        app_name: ['api', 'next', 'my', 'buy', 'get', 'datasets']
 
     steps:
       - name: Checkout code

apps/api.immich.app/routes/(docs)/+layout.svelte

@@ -0,0 +1,89 @@
+<script lang="ts">
+  import { beforeNavigate } from '$app/navigation';
+  import { page } from '$app/state';
+  import { getOpenApi } from '$lib/api/services/open-api';
+  import Header from '$lib/components/Header.svelte';
+  import PageContent from '$lib/components/PageContent.svelte';
+  import { ApiPage } from '$lib/utils/api';
+  import { getIcon } from '$lib/utils/icons';
+  import { AppShell, AppShellHeader, AppShellSidebar, NavbarGroup, NavbarItem } from '@immich/ui';
+  import {
+    mdiApi,
+    mdiCompass,
+    mdiCompassOutline,
+    mdiCube,
+    mdiCubeOutline,
+    mdiLock,
+    mdiLockOutline,
+    mdiNote,
+    mdiNoteOutline,
+    mdiSecurity,
+    mdiTagMultiple,
+    mdiTagMultipleOutline,
+  } from '@mdi/js';
+  import type { Snippet } from 'svelte';
+  import { MediaQuery } from 'svelte/reactivity';
+
+  type Props = {
+    children?: Snippet;
+  };
+
+  const { children }: Props = $props();
+
+  const { tags } = getOpenApi();
+
+  const sidebar = new MediaQuery(`min-width: 850px`);
+  let open = $derived(sidebar.current);
+
+  beforeNavigate(() => {
+    if (!sidebar.current) {
+      open = false;
+    }
+  });
+</script>
+
+<AppShell>
+  <AppShellHeader>
+    <Header onToggleSidebar={() => (open = !open)} />
+  </AppShellHeader>
+
+  <AppShellSidebar bind:open class="border-e">
+    <div class="mt-8 pe-6 flex flex-col gap-4">
+      <div>
+        <NavbarItem title="Introduction" href={ApiPage.Introduction} icon={mdiNoteOutline} activeIcon={mdiNote} />
+        <NavbarItem
+          title="Getting Started"
+          href={ApiPage.GettingStarted}
+          icon={mdiCompassOutline}
+          activeIcon={mdiCompass}
+        />
+        <NavbarItem title="Authentication" href={ApiPage.Authentication} icon={mdiSecurity} />
+        <NavbarItem title="Permissions" href={ApiPage.Permissions} icon={mdiLockOutline} activeIcon={mdiLock} />
+        <NavbarItem title="SDK" href={ApiPage.Sdk} icon={mdiCubeOutline} activeIcon={mdiCube} />
+        <NavbarItem
+          title="Endpoints"
+          href={ApiPage.Endpoints}
+          icon={mdiApi}
+          active={page.url.pathname === ApiPage.Endpoints}
+        />
+        <NavbarItem
+          title="Models"
+          href={ApiPage.Models}
+          icon={mdiTagMultipleOutline}
+          activeIcon={mdiTagMultiple}
+          active={page.url.pathname === ApiPage.Models}
+        />
+      </div>
+      <div>
+        <NavbarGroup title="Endpoints" />
+        {#each tags as tag (tag.href)}
+          <NavbarItem title={tag.name} href={tag.href} icon={getIcon(tag.name)} variant="compact" />
+        {/each}
+      </div>
+    </div>
+  </AppShellSidebar>
+
+  <PageContent class="mx-auto w-full max-w-(--breakpoint-lg)">
+    {@render children?.()}
+  </PageContent>
+</AppShell>

apps/next.immich.app/routes/api/+layout.ts renamed to apps/api.immich.app/routes/(docs)/+layout.ts

@@ -1,5 +1,5 @@
 import { goto } from '$app/navigation';
-import { loadOpenApi } from '$lib/services/open-api';
+import { loadOpenApi } from '$lib/api/services/open-api';
 import type { LayoutLoad } from './$types';
 
 export const load = (async ({ fetch }) => {

apps/api.immich.app/routes/(docs)/authentication/+page.svelte

@@ -0,0 +1,122 @@
+<script lang="ts">
+  import ApiPageContent from '$lib/api/components/ApiPageContent.svelte';
+  import ApiPermission from '$lib/api/components/ApiPermission.svelte';
+  import { ApiPage } from '$lib/utils/api';
+  import { Alert, Card, CardBody, CardHeader, Code, Heading, Link, Text } from '@immich/ui';
+  import { mdiLightbulbOnOutline } from '@mdi/js';
+</script>
+
+<ApiPageContent
+  title="Authentication"
+  description="Learn how to authorize your requests to the Immich API"
+  nextSteps={[
+    { href: ApiPage.Permissions, title: 'Learn about permissions' },
+    { href: ApiPage.Endpoints, title: 'View API endpoints' },
+  ]}
+>
+  <section class="flex flex-col gap-2">
+    <Heading tag="h2">Overview</Heading>
+    <Text>
+      While some endpoints do not require authentication, the majority do. In order to authenticate a request, the
+      Immich API supports a few different schemes: session, shared key, and API key. 3rd party applications are
+      encouraged to use API keys, which support fine-grained permissions. Lastly, shared links and their associated keys
+      or slugs can be used to access a subset of API endpoints, and are scoped to a specific album or set of assets.
+    </Text>
+  </section>
+
+  <section class="flex flex-col gap-2">
+    <Heading tag="h2">Authentication</Heading>
+    <Text
+      >Users or applications can authenticate with the Immich API using one of the values listed below. API keys can
+      optionally be created with scoped permissions, while session tokens are tied to a specific user session, and have
+      an implied <ApiPermission value="all" /> permission.
+    </Text>
+
+    <Card class="mt-2">
+      <CardHeader class="py-1 bg-subtle">
+        <div class="grid grid-cols-3">
+          <div class="font-bold">Type</div>
+          <div class="font-bold">Value</div>
+          <div class="font-bold">Description</div>
+        </div>
+      </CardHeader>
+      <CardBody>
+        <div class="grid grid-cols-3 gap-y-1">
+          <div>Request Header</div>
+          <div><Code>x-api-key</Code></div>
+          <div>API key sent as a http header</div>
+
+          <div>Query Param</div>
+          <div><Code>apiKey</Code></div>
+          <div>API key sent as a query parameter</div>
+
+          <hr class="col-span-3 my-2" />
+
+          <div>Request Header</div>
+          <div><Code>x-immich-user-token</Code></div>
+          <div>Session token sent as a http header</div>
+
+          <div>Request Header</div>
+          <div><Code>x-immich-session-token</Code></div>
+          <div>Session token sent as a http header</div>
+
+          <div>Query Param</div>
+          <div><Code>sessionKey</Code></div>
+          <div>Session token sent as a query parameter</div>
+
+          <hr class="col-span-3 my-2" />
+
+          <div>Request Header</div>
+          <div><Code>x-immich-share-key</Code></div>
+          <div>Shared link key sent as a http header</div>
+
+          <div>Query Param</div>
+          <div><Code>key</Code></div>
+          <div>Shared link key sent as a query parameter</div>
+
+          <hr class="col-span-3 my-2" />
+
+          <div>Request Header</div>
+          <div><Code>x-immich-share-slug</Code></div>
+          <div>Shared link slug sent as a http header</div>
+
+          <div>Query Param</div>
+          <div><Code>slug</Code></div>
+          <div>Shared link slug sent as a query parameter</div>
+        </div>
+      </CardBody>
+    </Card>
+  </section>
+
+  <section class="flex flex-col gap-2">
+    <Heading tag="h2">API Keys</Heading>
+    <Text>
+      In order to authenticate a request with an API key, you need to include the <Code color="info"
+        >x-immich-api-key</Code
+      > header in your request.
+    </Text>
+
+    <Alert color="success" icon={mdiLightbulbOnOutline} class="mt-4">
+      <Text
+        >User-scoped api keys can be created in <Link href="https://my.immich.app/user-settings?isOpen=api-keys"
+          >user settings</Link
+        >
+      </Text>
+    </Alert>
+
+    <Card color="secondary" class="mt-2">
+      <CardBody>
+        <Code>x-immich-api-key: &lt;apiKey&gt;</Code>
+      </CardBody>
+    </Card>
+    <Text class="pt-4">
+      Alternatively, you can also include the API key by using the <Code color="info">apiKey</Code> query parameter in your
+      request.
+    </Text>
+    <Card color="secondary" class="mt-2">
+      <CardBody>
+        <Code>https://demo.immich.app/api/assets?apiKey=&lt;apiKey&gt;</Code>
+      </CardBody>
+    </Card>
+  </section>
+</ApiPageContent>

apps/api.immich.app/routes/(docs)/endpoints/+page.svelte

@@ -0,0 +1,13 @@
+<script lang="ts">
+  import ApiPageContent from '$lib/api/components/ApiPageContent.svelte';
+  import ApiTagSummary from '$lib/api/components/ApiTagSummary.svelte';
+  import { getOpenApi } from '$lib/api/services/open-api';
+
+  const { tags } = getOpenApi();
+</script>
+
+<ApiPageContent title="API Endpoints" description="An overview of all the available API endpoints">
+  {#each tags as tag (tag.href)}
+    <ApiTagSummary {tag} />
+  {/each}
+</ApiPageContent>

apps/api.immich.app/routes/(docs)/endpoints/[tag]/+page.svelte

@@ -0,0 +1,56 @@
+<script lang="ts">
+  import ApiTagSummary from '$lib/api/components/ApiTagSummary.svelte';
+  import { Text, Button, Heading, Stack, Icon } from '@immich/ui';
+  import { type PageData } from './$types';
+  import { ApiPage } from '$lib/utils/api';
+  import { mdiArrowLeft, mdiArrowRight } from '@mdi/js';
+
+  type Props = {
+    data: PageData;
+  };
+
+  const { data }: Props = $props();
+
+  const tag = $derived(data.tag);
+</script>
+
+<Stack gap={4}>
+  <div class="flex justify-between items-center">
+    <Heading size="giant">API Endpoints</Heading>
+    <Button href={ApiPage.Endpoints} color="secondary">View All</Button>
+  </div>
+
+  <ApiTagSummary {tag} />
+
+  <Stack gap={4}>
+    <div class="grid grid-cols-1 lg:grid-cols-2 gap-4">
+      {#if tag.previous}
+        <Button href={tag.previous.href} size="giant" fullWidth color="secondary" variant="outline">
+          <Stack gap={2} class="w-full">
+            <Text size="small">Previous</Text>
+            <div class="flex items-center gap-2">
+              <Icon icon={mdiArrowLeft} />
+              <Text>{tag.previous.name}</Text>
+            </div>
+          </Stack>
+        </Button>
+      {:else}
+        <span></span>
+      {/if}
+
+      {#if tag.next}
+        <Button href={tag.next.href} size="giant" fullWidth color="secondary" variant="outline">
+          <div class="w-full flex flex-col place-items-end">
+            <Text size="small">Next</Text>
+            <div class="flex items-center gap-2">
+              <Text>{tag.next.name}</Text>
+              <Icon icon={mdiArrowRight} />
+            </div>
+          </div>
+        </Button>
+      {:else}
+        <span></span>
+      {/if}
+    </div>
+  </Stack>
+</Stack>

apps/api.immich.app/routes/(docs)/endpoints/[tag]/+page.ts

@@ -0,0 +1,18 @@
+import { getOpenApi } from '$lib/api/services/open-api';
+import { redirect } from '@sveltejs/kit';
+import type { PageLoad } from './$types';
+import { ApiPage } from '$lib/utils/api';
+
+export const load = (async ({ params, parent }) => {
+  await parent();
+  const { tags } = getOpenApi();
+  const tag = tags.find((tag) => tag.href === `${ApiPage.Endpoints}/${params.tag}`);
+
+  if (!tag) {
+    return redirect(307, '/api');
+  }
+
+  return {
+    tag,
+  };
+}) satisfies PageLoad;