adding old routes

2026-04-05 12:17:43 +02:00
parent 4a0d586768
commit 1236f3281d
2 changed files with 273 additions and 0 deletions
--- a/server/src/app.ts
+++ b/server/src/app.ts
@@ -35,6 +35,7 @@ import oidcRoutes from './routes/oidc';
 import vacayRoutes from './routes/vacay';
 import atlasRoutes from './routes/atlas';
 import memoriesRoutes from './routes/memories/unified';
+import immichRoutes from './routes/immich';
 import notificationRoutes from './routes/notifications';
 import shareRoutes from './routes/share';
 import { mcpHandler } from './mcp';
@@ -257,6 +258,8 @@ export function createApp(): express.Application {
  app.use('/api/addons/vacay', vacayRoutes);
  app.use('/api/addons/atlas', atlasRoutes);
  app.use('/api/integrations/memories', memoriesRoutes);
+  //old routes for immich integration (will be removed eventually)
+  app.use('/api/integrations/immich', immichRoutes);
  app.use('/api/maps', mapsRoutes);
  app.use('/api/weather', weatherRoutes);
  app.use('/api/settings', settingsRoutes);
--- a/server/src/routes/immich.ts
+++ b/server/src/routes/immich.ts
@@ -0,0 +1,270 @@
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+//DEPRECATED - This route is no longer used use new routes
+
+
+
+
+import express, { Request, Response, NextFunction } from 'express';
+import { db, canAccessTrip } from '../db/database';
+import { authenticate } from '../middleware/auth';
+import { AuthRequest } from '../types';
+import { consumeEphemeralToken } from '../services/ephemeralTokens';
+import { getClientIp } from '../services/auditLog';
+import {
+    getConnectionSettings,
+    saveImmichSettings,
+    testConnection,
+    getConnectionStatus,
+    browseTimeline,
+    searchPhotos,
+    getAssetInfo,
+    proxyThumbnail,
+    proxyOriginal,
+    isValidAssetId,
+    listAlbums,
+    listAlbumLinks,
+    createAlbumLink,
+    deleteAlbumLink,
+    syncAlbumAssets,
+} from '../services/memories/immichService';
+import { addTripPhotos, listTripPhotos, removeTripPhoto, setTripPhotoSharing } from '../services/memories/unifiedService';
+import { Selection, canAccessUserPhoto } from '../services/memories/helpersService';
+
+const router = express.Router();
+
+// ── Dual auth middleware (JWT or ephemeral token for <img> src) ─────────────
+
+function authFromQuery(req: Request, res: Response, next: NextFunction) {
+    const queryToken = req.query.token as string | undefined;
+    if (queryToken) {
+        const userId = consumeEphemeralToken(queryToken, 'immich');
+        if (!userId) return res.status(401).send('Invalid or expired token');
+        const user = db.prepare('SELECT id, username, email, role, mfa_enabled FROM users WHERE id = ?').get(userId) as any;
+        if (!user) return res.status(401).send('User not found');
+        (req as AuthRequest).user = user;
+        return next();
+    }
+    return (authenticate as any)(req, res, next);
+}
+
+// ── Immich Connection Settings ─────────────────────────────────────────────
+
+router.get('/settings', authenticate, (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    res.json(getConnectionSettings(authReq.user.id));
+});
+
+router.put('/settings', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { immich_url, immich_api_key } = req.body;
+    const result = await saveImmichSettings(authReq.user.id, immich_url, immich_api_key, getClientIp(req));
+    if (!result.success) return res.status(400).json({ error: result.error });
+    if (result.warning) return res.json({ success: true, warning: result.warning });
+    res.json({ success: true });
+});
+
+router.get('/status', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    res.json(await getConnectionStatus(authReq.user.id));
+});
+
+router.post('/test', authenticate, async (req: Request, res: Response) => {
+    const { immich_url, immich_api_key } = req.body;
+    if (!immich_url || !immich_api_key) return res.json({ connected: false, error: 'URL and API key required' });
+    res.json(await testConnection(immich_url, immich_api_key));
+});
+
+// ── Browse Immich Library (for photo picker) ───────────────────────────────
+
+router.get('/browse', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const result = await browseTimeline(authReq.user.id);
+    if (result.error) return res.status(result.status!).json({ error: result.error });
+    res.json({ buckets: result.buckets });
+});
+
+router.post('/search', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { from, to } = req.body;
+    const result = await searchPhotos(authReq.user.id, from, to);
+    if (result.error) return res.status(result.status!).json({ error: result.error });
+    res.json({ assets: result.assets });
+});
+
+// ── Trip Photos (selected by user) ────────────────────────────────────────
+
+router.get('/trips/:tripId/photos', authenticate, (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { tripId } = req.params;
+    if (!canAccessTrip(tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    res.json({ photos: listTripPhotos(tripId, authReq.user.id) });
+});
+
+router.post('/trips/:tripId/photos', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { tripId } = req.params;
+    const sid = req.headers['x-socket-id'] as string;
+    if (!canAccessTrip(tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    const { asset_ids, shared = true } = req.body;
+
+    if (!Array.isArray(asset_ids) || asset_ids.length === 0) {
+        return res.status(400).json({ error: 'asset_ids required' });
+    }
+
+    const selection: Selection = {
+        provider: 'immich',
+        asset_ids: asset_ids,
+    };
+    const result = await addTripPhotos(tripId, authReq.user.id, shared, [selection], sid);
+    if ('error' in result) return res.status(result.error.status!).json({ error: result.error });
+});
+
+router.delete('/trips/:tripId/photos/:assetId', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    if (!canAccessTrip(req.params.tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    const result = await removeTripPhoto(req.params.tripId, authReq.user.id,'immich', req.params.assetId);
+    if ('error' in result) return res.status(result.error.status!).json({ error: result.error });
+    res.json({ success: true });
+});
+
+router.put('/trips/:tripId/photos/:assetId/sharing', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    if (!canAccessTrip(req.params.tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    const { shared } = req.body;
+    const result = await setTripPhotoSharing(req.params.tripId, authReq.user.id, req.params.assetId, 'immich', shared);
+    if ('error' in result) return res.status(result.error.status!).json({ error: result.error });
+    res.json({ success: true });
+});
+
+// ── Asset Details ──────────────────────────────────────────────────────────
+
+router.get('/assets/:assetId/info', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { assetId } = req.params;
+    if (!isValidAssetId(assetId)) return res.status(400).json({ error: 'Invalid asset ID' });
+    const queryUserId = req.query.userId ? Number(req.query.userId) : undefined;
+    const ownerUserId = queryUserId && queryUserId !== authReq.user.id ? queryUserId : undefined;
+    if (ownerUserId && !canAccessUserPhoto(authReq.user.id, ownerUserId, req.params.tripId, assetId, 'immich')) {
+        return res.status(403).json({ error: 'Forbidden' });
+    }
+    const result = await getAssetInfo(authReq.user.id, assetId, ownerUserId);
+    if (result.error) return res.status(result.status!).json({ error: result.error });
+    res.json(result.data);
+});
+
+// ── Proxy Immich Assets ────────────────────────────────────────────────────
+
+router.get('/assets/:assetId/thumbnail', authFromQuery, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { assetId } = req.params;
+    if (!isValidAssetId(assetId)) return res.status(400).send('Invalid asset ID');
+    const queryUserId = req.query.userId ? Number(req.query.userId) : undefined;
+    const ownerUserId = queryUserId && queryUserId !== authReq.user.id ? queryUserId : undefined;
+    if (ownerUserId && !canAccessUserPhoto(authReq.user.id, ownerUserId, req.params.tripId, assetId, 'immich')) {
+        return res.status(403).send('Forbidden');
+    }
+    const result = await proxyThumbnail(authReq.user.id, assetId, ownerUserId);
+    if (result.error) return res.status(result.status!).send(result.error);
+    res.set('Content-Type', result.contentType!);
+    res.set('Cache-Control', 'public, max-age=86400');
+    res.send(result.buffer);
+});
+
+router.get('/assets/:assetId/original', authFromQuery, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { assetId } = req.params;
+    if (!isValidAssetId(assetId)) return res.status(400).send('Invalid asset ID');
+    const queryUserId = req.query.userId ? Number(req.query.userId) : undefined;
+    const ownerUserId = queryUserId && queryUserId !== authReq.user.id ? queryUserId : undefined;
+    if (ownerUserId && !canAccessUserPhoto(authReq.user.id, ownerUserId, req.params.tripId, assetId, 'immich')) {
+        return res.status(403).send('Forbidden');
+    }
+    const result = await proxyOriginal(authReq.user.id, assetId, ownerUserId);
+    if (result.error) return res.status(result.status!).send(result.error);
+    res.set('Content-Type', result.contentType!);
+    res.set('Cache-Control', 'public, max-age=86400');
+    res.send(result.buffer);
+});
+
+// ── Album Linking ──────────────────────────────────────────────────────────
+
+router.get('/albums', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const result = await listAlbums(authReq.user.id);
+    if (result.error) return res.status(result.status!).json({ error: result.error });
+    res.json({ albums: result.albums });
+});
+
+router.get('/trips/:tripId/album-links', authenticate, (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    if (!canAccessTrip(req.params.tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    res.json({ links: listAlbumLinks(req.params.tripId) });
+});
+
+router.post('/trips/:tripId/album-links', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { tripId } = req.params;
+    if (!canAccessTrip(tripId, authReq.user.id)) return res.status(404).json({ error: 'Trip not found' });
+    const { album_id, album_name } = req.body;
+    if (!album_id) return res.status(400).json({ error: 'album_id required' });
+    const result = createAlbumLink(tripId, authReq.user.id, album_id, album_name);
+    if (!result.success) return res.status(400).json({ error: result.error });
+    res.json({ success: true });
+});
+
+router.delete('/trips/:tripId/album-links/:linkId', authenticate, (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    deleteAlbumLink(req.params.linkId, req.params.tripId, authReq.user.id);
+    res.json({ success: true });
+});
+
+router.post('/trips/:tripId/album-links/:linkId/sync', authenticate, async (req: Request, res: Response) => {
+    const authReq = req as AuthRequest;
+    const { tripId, linkId } = req.params;
+    const sid = req.headers['x-socket-id'] as string;
+    const result = await syncAlbumAssets(tripId, linkId, authReq.user.id, sid);
+    if (result.error) return res.status(result.status!).json({ error: result.error });
+    res.json({ success: true, added: result.added, total: result.total });
+});
+
+export default router;