Merge branch 'main' of github.com:immich-app/immich into web/automation-ui

2025-05-31 04:05:39 -04:00 · 2024-04-22 06:51:57 -05:00 · 2024-04-22 06:51:57 -05:00 · d5d8426bda
commit d5d8426bda
parent 7e92ef9428 be4a783845
178 changed files with 3797 additions and 2070 deletions
--- a/.github/workflows/build-mobile.yml
+++ b/.github/workflows/build-mobile.yml
@ -37,15 +37,15 @@ jobs:
      - uses: actions/setup-java@v4
        with:
-          distribution: "zulu"
+          distribution: 'zulu'
-          java-version: "11.0.21+9"
+          java-version: '17'
-          cache: "gradle"
+          cache: 'gradle'
      - name: Setup Flutter SDK
        uses: subosito/flutter-action@v2
        with:
-          channel: "stable"
+          channel: 'stable'
-          flutter-version: "3.19.3"
+          flutter-version: '3.19.3'
          cache: true
      - name: Create the Keystore
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@ -208,7 +208,7 @@ jobs:
        uses: subosito/flutter-action@v2
        with:
          channel: 'stable'
-          flutter-version: '3.16.9'
+          flutter-version: '3.19.3'
      - name: Run tests
        working-directory: ./mobile
        run: flutter test -j 1
--- a/cli/Dockerfile
+++ b/cli/Dockerfile
@ -1,4 +1,4 @@
-FROM node:20-alpine3.19@sha256:7e227295e96f5b00aa79555ae166f50610940d888fc2e321cf36304cbd17d7d6 as core
+FROM node:20-alpine3.19@sha256:ec0c413b1d84f3f7f67ec986ba885930c57b5318d2eb3abc6960ee05d4f2eb28 as core
 WORKDIR /usr/src/open-api/typescript-sdk
 COPY open-api/typescript-sdk/package*.json open-api/typescript-sdk/tsconfig*.json ./
--- a/cli/package-lock.json
+++ b/cli/package-lock.json
@ -47,15 +47,15 @@
    },
    "../open-api/typescript-sdk": {
      "name": "@immich/sdk",
-      "version": "1.101.0",
+      "version": "1.102.3",
      "dev": true,
      "license": "GNU Affero General Public License version 3",
      "dependencies": {
        "@oazapfts/runtime": "^1.0.2"
      },
      "devDependencies": {
-        "@types/node": "^20.12.7",
+        "@types/node": "^20.11.0",
-        "typescript": "^5.4.5"
+        "typescript": "^5.3.3"
      }
    },
    "node_modules/@aashutoshrathi/word-wrap": {
--- a/docker/docker-compose.dev.yml
+++ b/docker/docker-compose.dev.yml
@ -97,7 +97,7 @@ services:
  redis:
    container_name: immich_redis
-    image: redis:6.2-alpine@sha256:3fcb624d83a9c478357f16dc173c58ded325ccc5fd2a4375f3916c04cc579f70
+    image: redis:6.2-alpine@sha256:84882e87b54734154586e5f8abd4dce69fe7311315e2fc6d67c29614c8de2672
  database:
    container_name: immich_postgres
--- a/docker/docker-compose.prod.yml
+++ b/docker/docker-compose.prod.yml
@ -54,7 +54,7 @@ services:
  redis:
    container_name: immich_redis
-    image: redis:6.2-alpine@sha256:3fcb624d83a9c478357f16dc173c58ded325ccc5fd2a4375f3916c04cc579f70
+    image: redis:6.2-alpine@sha256:84882e87b54734154586e5f8abd4dce69fe7311315e2fc6d67c29614c8de2672
    restart: always
  database:
--- a/docker/docker-compose.yml
+++ b/docker/docker-compose.yml
@ -58,7 +58,7 @@ services:
  redis:
    container_name: immich_redis
-    image: registry.hub.docker.com/library/redis:6.2-alpine@sha256:51d6c56749a4243096327e3fb964a48ed92254357108449cb6e23999c37773c5
+    image: registry.hub.docker.com/library/redis:6.2-alpine@sha256:84882e87b54734154586e5f8abd4dce69fe7311315e2fc6d67c29614c8de2672
    restart: always
  database:
--- a/docs/docs/administration/oauth.md
+++ b/docs/docs/administration/oauth.md
@ -52,8 +52,8 @@ Before enabling OAuth in Immich, a new client application needs to be configured
   Hostname
-   - `https://immich.example.com/auth/login`)
+   - `https://immich.example.com/auth/login`
-   - `https://immich.example.com/user-settings`)
+   - `https://immich.example.com/user-settings`
 ## Enable OAuth
--- a/docs/docs/install/config-file.md
+++ b/docs/docs/install/config-file.md
@ -120,7 +120,8 @@ The default configuration looks like this:
    "previewFormat": "jpeg",
    "previewSize": 1440,
    "quality": 80,
-    "colorspace": "p3"
+    "colorspace": "p3",
    "extractEmbedded": false
  },
  "newVersionCheck": {
    "enabled": true
--- a/docs/docs/partials/_storage-template.md
+++ b/docs/docs/partials/_storage-template.md
@ -1,4 +1,4 @@
-Immich allows the admin user to set the uploaded filename pattern. Both at the directory and filename level.
+Immich allows the admin user to set the uploaded filename pattern at the directory and filename level as well as the [storage label for a user](/docs/administration/user-management/#set-storage-label-for-user).
 :::note new version
 On new machines running version 1.92.0 storage template engine is off by default, for [more info](https://github.com/immich-app/immich/releases/tag/v1.92.0#:~:text=the%20partner%E2%80%99s%20assets.-,Hardening%20storage%20template,-We%20have%20further).
--- a/e2e/docker-compose.yml
+++ b/e2e/docker-compose.yml
@ -36,7 +36,7 @@ services:
    <<: *server-common
  redis:
-    image: redis:6.2-alpine@sha256:3fcb624d83a9c478357f16dc173c58ded325ccc5fd2a4375f3916c04cc579f70
+    image: redis:6.2-alpine@sha256:84882e87b54734154586e5f8abd4dce69fe7311315e2fc6d67c29614c8de2672
  database:
    image: tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:90724186f0a3517cf6914295b5ab410db9ce23190a2d9d0b9dd6463e3fa298f0
--- a/e2e/package-lock.json
+++ b/e2e/package-lock.json
@ -1,12 +1,12 @@
 {
  "name": "immich-e2e",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "lockfileVersion": 3,
  "requires": true,
  "packages": {
    "": {
      "name": "immich-e2e",
-      "version": "1.101.0",
+      "version": "1.102.3",
      "license": "GNU Affero General Public License version 3",
      "devDependencies": {
        "@immich/cli": "file:../cli",
@ -81,15 +81,15 @@
    },
    "../open-api/typescript-sdk": {
      "name": "@immich/sdk",
-      "version": "1.101.0",
+      "version": "1.102.3",
      "dev": true,
      "license": "GNU Affero General Public License version 3",
      "dependencies": {
        "@oazapfts/runtime": "^1.0.2"
      },
      "devDependencies": {
-        "@types/node": "^20.12.7",
+        "@types/node": "^20.11.0",
-        "typescript": "^5.4.5"
+        "typescript": "^5.3.3"
      }
    },
    "node_modules/@aashutoshrathi/word-wrap": {
--- a/e2e/package.json
+++ b/e2e/package.json
@ -1,6 +1,6 @@
 {
  "name": "immich-e2e",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "description": "",
  "main": "index.js",
  "type": "module",
--- a/e2e/src/api/specs/asset.e2e-spec.ts
+++ b/e2e/src/api/specs/asset.e2e-spec.ts
@ -572,6 +572,22 @@ describe('/asset', () => {
    }
    const tests = [
      {
        input: 'formats/avif/8bit-sRGB.avif',
        expected: {
          type: AssetTypeEnum.Image,
          originalFileName: '8bit-sRGB.avif',
          resized: true,
          exifInfo: {
            description: '',
            exifImageHeight: 1080,
            exifImageWidth: 1617,
            fileSizeInByte: 862_424,
            latitude: null,
            longitude: null,
          },
        },
      },
      {
        input: 'formats/jpg/el_torcal_rocks.jpg',
        expected: {
@ -596,6 +612,22 @@ describe('/asset', () => {
          },
        },
      },
      {
        input: 'formats/jxl/8bit-sRGB.jxl',
        expected: {
          type: AssetTypeEnum.Image,
          originalFileName: '8bit-sRGB.jxl',
          resized: true,
          exifInfo: {
            description: '',
            exifImageHeight: 1080,
            exifImageWidth: 1440,
            fileSizeInByte: 1_780_777,
            latitude: null,
            longitude: null,
          },
        },
      },
      {
        input: 'formats/heic/IMG_2682.heic',
        expected: {
@ -681,6 +713,80 @@ describe('/asset', () => {
          },
        },
      },
      {
        input: 'formats/raw/Panasonic/DMC-GH4/4_3.rw2',
        expected: {
          type: AssetTypeEnum.Image,
          originalFileName: '4_3.rw2',
          resized: true,
          fileCreatedAt: '2018-05-10T08:42:37.842Z',
          exifInfo: {
            make: 'Panasonic',
            model: 'DMC-GH4',
            exifImageHeight: 3456,
            exifImageWidth: 4608,
            exposureTime: '1/100',
            fNumber: 3.2,
            focalLength: 35,
            iso: 400,
            fileSizeInByte: 19_587_072,
            dateTimeOriginal: '2018-05-10T08:42:37.842Z',
            latitude: null,
            longitude: null,
            orientation: '1',
          },
        },
      },
      {
        input: 'formats/raw/Sony/ILCE-6300/12bit-compressed-(3_2).arw',
        expected: {
          type: AssetTypeEnum.Image,
          originalFileName: '12bit-compressed-(3_2).arw',
          resized: true,
          fileCreatedAt: '2016-09-27T10:51:44.000Z',
          exifInfo: {
            make: 'SONY',
            model: 'ILCE-6300',
            exifImageHeight: 4024,
            exifImageWidth: 6048,
            exposureTime: '1/320',
            fNumber: 8,
            focalLength: 97,
            iso: 100,
            lensModel: 'E PZ 18-105mm F4 G OSS',
            fileSizeInByte: 25_001_984,
            dateTimeOriginal: '2016-09-27T10:51:44.000Z',
            latitude: null,
            longitude: null,
            orientation: '1',
          },
        },
      },
      {
        input: 'formats/raw/Sony/ILCE-7M2/14bit-uncompressed-(3_2).arw',
        expected: {
          type: AssetTypeEnum.Image,
          originalFileName: '14bit-uncompressed-(3_2).arw',
          resized: true,
          fileCreatedAt: '2016-01-08T15:08:01.000Z',
          exifInfo: {
            make: 'SONY',
            model: 'ILCE-7M2',
            exifImageHeight: 4024,
            exifImageWidth: 6048,
            exposureTime: '1.3',
            fNumber: 22,
            focalLength: 25,
            iso: 100,
            lensModel: 'E 25mm F2',
            fileSizeInByte: 49_512_448,
            dateTimeOriginal: '2016-01-08T15:08:01.000Z',
            latitude: null,
            longitude: null,
            orientation: '1',
          },
        },
      },
    ];
    for (const { input, expected } of tests) {
--- a/e2e/src/api/specs/auth.e2e-spec.ts
+++ b/e2e/src/api/specs/auth.e2e-spec.ts
@ -1,7 +1,7 @@
-import { LoginResponseDto, getAuthDevices, login, signUpAdmin } from '@immich/sdk';
+import { LoginResponseDto, login, signUpAdmin } from '@immich/sdk';
-import { loginDto, signupDto, uuidDto } from 'src/fixtures';
+import { loginDto, signupDto } from 'src/fixtures';
-import { deviceDto, errorDto, loginResponseDto, signupResponseDto } from 'src/responses';
+import { errorDto, loginResponseDto, signupResponseDto } from 'src/responses';
-import { app, asBearerAuth, utils } from 'src/utils';
+import { app, utils } from 'src/utils';
 import request from 'supertest';
 import { beforeEach, describe, expect, it } from 'vitest';
@ -112,70 +112,29 @@ describe('/auth/*', () => {
      const cookies = headers['set-cookie'];
      expect(cookies).toHaveLength(3);
-      expect(cookies[0]).toEqual(`immich_access_token=${token}; HttpOnly; Path=/; Max-Age=34560000; SameSite=Lax;`);
+      expect(cookies[0].split(';').map((item) => item.trim())).toEqual([
-      expect(cookies[1]).toEqual('immich_auth_type=password; HttpOnly; Path=/; Max-Age=34560000; SameSite=Lax;');
+        `immich_access_token=${token}`,
-      expect(cookies[2]).toEqual('immich_is_authenticated=true; Path=/; Max-Age=34560000; SameSite=Lax;');
+        'Max-Age=34560000',
-    });
+        'Path=/',
-  });
+        expect.stringContaining('Expires='),
-
+        'HttpOnly',
-  describe('GET /auth/devices', () => {
+        'SameSite=Lax',
-    it('should require authentication', async () => {
+      ]);
-      const { status, body } = await request(app).get('/auth/devices');
+      expect(cookies[1].split(';').map((item) => item.trim())).toEqual([
-      expect(status).toBe(401);
+        'immich_auth_type=password',
-      expect(body).toEqual(errorDto.unauthorized);
+        'Max-Age=34560000',
-    });
+        'Path=/',
-
+        expect.stringContaining('Expires='),
-    it('should get a list of authorized devices', async () => {
+        'HttpOnly',
-      const { status, body } = await request(app)
+        'SameSite=Lax',
-        .get('/auth/devices')
+      ]);
-        .set('Authorization', `Bearer ${admin.accessToken}`);
+      expect(cookies[2].split(';').map((item) => item.trim())).toEqual([
-      expect(status).toBe(200);
+        'immich_is_authenticated=true',
-      expect(body).toEqual([deviceDto.current]);
+        'Max-Age=34560000',
-    });
+        'Path=/',
-  });
+        expect.stringContaining('Expires='),
-
+        'SameSite=Lax',
-  describe('DELETE /auth/devices', () => {
+      ]);
    it('should require authentication', async () => {
      const { status, body } = await request(app).delete(`/auth/devices`);
      expect(status).toBe(401);
      expect(body).toEqual(errorDto.unauthorized);
    });
    it('should logout all devices (except the current one)', async () => {
      for (let i = 0; i < 5; i++) {
        await login({ loginCredentialDto: loginDto.admin });
      }
      await expect(getAuthDevices({ headers: asBearerAuth(admin.accessToken) })).resolves.toHaveLength(6);
      const { status } = await request(app).delete(`/auth/devices`).set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(204);
      await expect(getAuthDevices({ headers: asBearerAuth(admin.accessToken) })).resolves.toHaveLength(1);
    });
    it('should throw an error for a non-existent device id', async () => {
      const { status, body } = await request(app)
        .delete(`/auth/devices/${uuidDto.notFound}`)
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(400);
      expect(body).toEqual(errorDto.badRequest('Not found or no authDevice.delete access'));
    });
    it('should logout a device', async () => {
      const [device] = await getAuthDevices({
        headers: asBearerAuth(admin.accessToken),
      });
      const { status } = await request(app)
        .delete(`/auth/devices/${device.id}`)
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(204);
      const response = await request(app)
        .post('/auth/validateToken')
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(response.body).toEqual(errorDto.invalidToken);
      expect(response.status).toBe(401);
    });
  });
--- a/e2e/src/api/specs/server-info.e2e-spec.ts
+++ b/e2e/src/api/specs/server-info.e2e-spec.ts
@ -1,4 +1,4 @@
-import { LoginResponseDto, getServerConfig } from '@immich/sdk';
+import { LoginResponseDto } from '@immich/sdk';
 import { createUserDto } from 'src/fixtures';
 import { errorDto } from 'src/responses';
 import { app, utils } from 'src/utils';
@ -162,19 +162,4 @@ describe('/server-info', () => {
      });
    });
  });
  describe('POST /server-info/admin-onboarding', () => {
    it('should set admin onboarding', async () => {
      const config = await getServerConfig({});
      expect(config.isOnboarded).toBe(false);
      const { status } = await request(app)
        .post('/server-info/admin-onboarding')
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(204);
      const newConfig = await getServerConfig({});
      expect(newConfig.isOnboarded).toBe(true);
    });
  });
 });
--- a/e2e/src/api/specs/session.e2e-spec.ts
+++ b/e2e/src/api/specs/session.e2e-spec.ts
@ -0,0 +1,75 @@
 import { LoginResponseDto, getSessions, login, signUpAdmin } from '@immich/sdk';
 import { loginDto, signupDto, uuidDto } from 'src/fixtures';
 import { deviceDto, errorDto } from 'src/responses';
 import { app, asBearerAuth, utils } from 'src/utils';
 import request from 'supertest';
 import { beforeEach, describe, expect, it } from 'vitest';
 describe('/sessions', () => {
  let admin: LoginResponseDto;
  beforeEach(async () => {
    await utils.resetDatabase();
    await signUpAdmin({ signUpDto: signupDto.admin });
    admin = await login({ loginCredentialDto: loginDto.admin });
  });
  describe('GET /sessions', () => {
    it('should require authentication', async () => {
      const { status, body } = await request(app).get('/sessions');
      expect(status).toBe(401);
      expect(body).toEqual(errorDto.unauthorized);
    });
    it('should get a list of authorized devices', async () => {
      const { status, body } = await request(app).get('/sessions').set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(200);
      expect(body).toEqual([deviceDto.current]);
    });
  });
  describe('DELETE /sessions', () => {
    it('should require authentication', async () => {
      const { status, body } = await request(app).delete(`/sessions`);
      expect(status).toBe(401);
      expect(body).toEqual(errorDto.unauthorized);
    });
    it('should logout all devices (except the current one)', async () => {
      for (let i = 0; i < 5; i++) {
        await login({ loginCredentialDto: loginDto.admin });
      }
      await expect(getSessions({ headers: asBearerAuth(admin.accessToken) })).resolves.toHaveLength(6);
      const { status } = await request(app).delete(`/sessions`).set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(204);
      await expect(getSessions({ headers: asBearerAuth(admin.accessToken) })).resolves.toHaveLength(1);
    });
    it('should throw an error for a non-existent device id', async () => {
      const { status, body } = await request(app)
        .delete(`/sessions/${uuidDto.notFound}`)
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(400);
      expect(body).toEqual(errorDto.badRequest('Not found or no authDevice.delete access'));
    });
    it('should logout a device', async () => {
      const [device] = await getSessions({
        headers: asBearerAuth(admin.accessToken),
      });
      const { status } = await request(app)
        .delete(`/sessions/${device.id}`)
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(204);
      const response = await request(app)
        .post('/auth/validateToken')
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(response.body).toEqual(errorDto.invalidToken);
      expect(response.status).toBe(401);
    });
  });
 });
--- a/e2e/src/api/specs/system-metadata.e2e-spec.ts
+++ b/e2e/src/api/specs/system-metadata.e2e-spec.ts
@ -0,0 +1,76 @@
 import { LoginResponseDto, getServerConfig } from '@immich/sdk';
 import { createUserDto } from 'src/fixtures';
 import { errorDto } from 'src/responses';
 import { app, utils } from 'src/utils';
 import request from 'supertest';
 import { beforeAll, describe, expect, it } from 'vitest';
 describe('/server-info', () => {
  let admin: LoginResponseDto;
  let nonAdmin: LoginResponseDto;
  beforeAll(async () => {
    await utils.resetDatabase();
    admin = await utils.adminSetup({ onboarding: false });
    nonAdmin = await utils.userSetup(admin.accessToken, createUserDto.user1);
  });
  describe('POST /system-metadata/admin-onboarding', () => {
    it('should require authentication', async () => {
      const { status, body } = await request(app).post('/system-metadata/admin-onboarding').send({ isOnboarded: true });
      expect(status).toBe(401);
      expect(body).toEqual(errorDto.unauthorized);
    });
    it('should only work for admins', async () => {
      const { status, body } = await request(app)
        .post('/system-metadata/admin-onboarding')
        .set('Authorization', `Bearer ${nonAdmin.accessToken}`)
        .send({ isOnboarded: true });
      expect(status).toBe(403);
      expect(body).toEqual(errorDto.forbidden);
    });
    it('should set admin onboarding', async () => {
      const config = await getServerConfig({});
      expect(config.isOnboarded).toBe(false);
      const { status } = await request(app)
        .post('/system-metadata/admin-onboarding')
        .set('Authorization', `Bearer ${admin.accessToken}`)
        .send({ isOnboarded: true });
      expect(status).toBe(204);
      const newConfig = await getServerConfig({});
      expect(newConfig.isOnboarded).toBe(true);
    });
  });
  describe('GET /system-metadata/reverse-geocoding-state', () => {
    it('should require authentication', async () => {
      const { status, body } = await request(app).get('/system-metadata/reverse-geocoding-state');
      expect(status).toBe(401);
      expect(body).toEqual(errorDto.unauthorized);
    });
    it('should only work for admins', async () => {
      const { status, body } = await request(app)
        .get('/system-metadata/reverse-geocoding-state')
        .set('Authorization', `Bearer ${nonAdmin.accessToken}`);
      expect(status).toBe(403);
      expect(body).toEqual(errorDto.forbidden);
    });
    it('should get the reverse geocoding state', async () => {
      const { status, body } = await request(app)
        .get('/system-metadata/reverse-geocoding-state')
        .set('Authorization', `Bearer ${admin.accessToken}`);
      expect(status).toBe(200);
      expect(body).toEqual({
        lastUpdate: expect.any(String),
        lastImportFileName: 'cities500.txt',
      });
    });
  });
 });
--- a/e2e/src/immich-admin/specs/immich-admin.e2e-spec.ts
+++ b/e2e/src/immich-admin/specs/immich-admin.e2e-spec.ts
@ -0,0 +1,19 @@
 import { immichAdmin, utils } from 'src/utils';
 import { beforeAll, describe, expect, it } from 'vitest';
 describe(`immich-admin`, () => {
  beforeAll(async () => {
    await utils.resetDatabase();
    await utils.adminSetup();
  });
  describe('list-users', () => {
    it('should list the admin user', async () => {
      const { stdout, stderr, exitCode } = await immichAdmin(['list-users']);
      expect(exitCode).toBe(0);
      expect(stderr).toBe('');
      expect(stdout).toContain("email: 'admin@immich.cloud'");
      expect(stdout).toContain("name: 'Immich Admin'");
    });
  });
 });
--- a/e2e/src/utils.ts
+++ b/e2e/src/utils.ts
@ -24,8 +24,8 @@ import {
  getConfigDefaults,
  login,
  searchMetadata,
  setAdminOnboarding,
  signUpAdmin,
  updateAdminOnboarding,
  updateConfig,
  validate,
 } from '@immich/sdk';
@ -43,7 +43,7 @@ import { loginDto, signupDto } from 'src/fixtures';
 import { makeRandomImage } from 'src/generators';
 import request from 'supertest';
-type CliResponse = { stdout: string; stderr: string; exitCode: number | null };
+type CommandResponse = { stdout: string; stderr: string; exitCode: number | null };
 type EventType = 'assetUpload' | 'assetUpdate' | 'assetDelete' | 'userDelete';
 type WaitOptions = { event: EventType; id?: string; total?: number; timeout?: number };
 type AdminSetupOptions = { onboarding?: boolean };
@ -59,13 +59,15 @@ export const testAssetDirInternal = '/data/assets';
 export const tempDir = tmpdir();
 export const asBearerAuth = (accessToken: string) => ({ Authorization: `Bearer ${accessToken}` });
 export const asKeyAuth = (key: string) => ({ 'x-api-key': key });
-export const immichCli = async (args: string[]) => {
+export const immichCli = (args: string[]) =>
-  let _resolve: (value: CliResponse) => void;
+  executeCommand('node', ['node_modules/.bin/immich', '-d', `/${tempDir}/immich/`, ...args]);
-  const deferred = new Promise<CliResponse>((resolve) => (_resolve = resolve));
+export const immichAdmin = (args: string[]) =>
-  const _args = ['node_modules/.bin/immich', '-d', `/${tempDir}/immich/`, ...args];
+  executeCommand('docker', ['exec', '-i', 'immich-e2e-server', '/bin/bash', '-c', `immich-admin ${args.join(' ')}`]);
-  const child = spawn('node', _args, {
+
-    stdio: 'pipe',
+const executeCommand = (command: string, args: string[]) => {
-  });
+  let _resolve: (value: CommandResponse) => void;
  const deferred = new Promise<CommandResponse>((resolve) => (_resolve = resolve));
  const child = spawn(command, args, { stdio: 'pipe' });
  let stdout = '';
  let stderr = '';
@ -138,7 +140,7 @@ export const utils = {
        'asset_faces',
        'activity',
        'api_keys',
-        'user_token',
+        'sessions',
        'users',
        'system_metadata',
        'system_config',
@ -262,7 +264,10 @@ export const utils = {
    await signUpAdmin({ signUpDto: signupDto.admin });
    const response = await login({ loginCredentialDto: loginDto.admin });
    if (options.onboarding) {
-      await setAdminOnboarding({ headers: asBearerAuth(response.accessToken) });
+      await updateAdminOnboarding(
        { adminOnboardingUpdateDto: { isOnboarded: true } },
        { headers: asBearerAuth(response.accessToken) },
      );
    }
    return response;
  },
--- a/e2e/vitest.config.ts
+++ b/e2e/vitest.config.ts
@ -10,7 +10,7 @@ try {
 export default defineConfig({
  test: {
-    include: ['src/{api,cli}/specs/*.e2e-spec.ts'],
+    include: ['src/{api,cli,immich-admin}/specs/*.e2e-spec.ts'],
    globalSetup,
    testTimeout: 15_000,
    poolOptions: {
--- a/machine-learning/poetry.lock
+++ b/machine-learning/poetry.lock
@ -1150,22 +1150,23 @@ test = ["objgraph", "psutil"]
 [[package]]
 name = "gunicorn"
-version = "21.2.0"
+version = "22.0.0"
 description = "WSGI HTTP Server for UNIX"
 optional = false
-python-versions = ">=3.5"
+python-versions = ">=3.7"
 files = [
-    {file = "gunicorn-21.2.0-py3-none-any.whl", hash = "sha256:3213aa5e8c24949e792bcacfc176fef362e7aac80b76c56f6b5122bf350722f0"},
+    {file = "gunicorn-22.0.0-py3-none-any.whl", hash = "sha256:350679f91b24062c86e386e198a15438d53a7a8207235a78ba1b53df4c4378d9"},
-    {file = "gunicorn-21.2.0.tar.gz", hash = "sha256:88ec8bff1d634f98e61b9f65bc4bf3cd918a90806c6f5c48bc5603849ec81033"},
+    {file = "gunicorn-22.0.0.tar.gz", hash = "sha256:4a0b436239ff76fb33f11c07a16482c521a7e09c1ce3cc293c2330afe01bec63"},
 ]
 [package.dependencies]
 packaging = "*"
 [package.extras]
-eventlet = ["eventlet (>=0.24.1)"]
+eventlet = ["eventlet (>=0.24.1,!=0.36.0)"]
 gevent = ["gevent (>=1.4.0)"]
 setproctitle = ["setproctitle"]
 testing = ["coverage", "eventlet", "gevent", "pytest", "pytest-cov"]
 tornado = ["tornado (>=0.2)"]
 [[package]]
--- a/machine-learning/pyproject.toml
+++ b/machine-learning/pyproject.toml
@ -1,6 +1,6 @@
 [tool.poetry]
 name = "machine-learning"
-version = "1.101.0"
+version = "1.102.3"
 description = ""
 authors = ["Hau Tran <alex.tran1502@gmail.com>"]
 readme = "README.md"
--- a/mobile/android/app/build.gradle
+++ b/mobile/android/app/build.gradle
@ -1,14 +1,14 @@
 plugins {
    id "com.android.application"
    id "kotlin-android"
    id "dev.flutter.flutter-gradle-plugin"
    id "kotlin-kapt"
 }
 def localProperties = new Properties()
 def localPropertiesFile = rootProject.file('local.properties')
 if (localPropertiesFile.exists()) {
-    localPropertiesFile.withReader('UTF-8') { reader ->
+    localPropertiesFile.withInputStream { localProperties.load(it) }
        localProperties.load(reader)
    }
 }
 def flutterRoot = localProperties.getProperty('flutter.sdk')
 if (flutterRoot == null) {
    throw new GradleException("Flutter SDK not found. Define location with flutter.sdk in the local.properties file.")
 }
 def flutterVersionCode = localProperties.getProperty('flutter.versionCode')
@ -21,18 +21,12 @@ if (flutterVersionName == null) {
    flutterVersionName = '1.0'
 }
 apply plugin: 'com.android.application'
 apply plugin: 'kotlin-android'
 apply plugin: 'kotlin-kapt'
 apply from: "$flutterRoot/packages/flutter_tools/gradle/flutter.gradle"
 def keystoreProperties = new Properties()
 def keystorePropertiesFile = rootProject.file('key.properties')
 if (keystorePropertiesFile.exists()) {
-    keystoreProperties.load(new FileInputStream(keystorePropertiesFile))
+    keystorePropertiesFile.withInputStream { keystoreProperties.load(it) }
 }
 android {
    compileSdkVersion 34
@ -50,7 +44,6 @@ android {
    }
    defaultConfig {
        // TODO: Specify your own unique Application ID (https://developer.android.com/studio/build/application-id.html).
        applicationId "app.alextran.immich"
        minSdkVersion 26
        targetSdkVersion 33
@ -88,6 +81,13 @@ flutter {
 }
 dependencies {
    def kotlin_version = '1.9.23'
    def kotlin_coroutines_version = '1.8.0'
    def work_version = '2.9.0'
    def concurrent_version = '1.1.0'
    def guava_version = '33.1.0-android'
    def glide_version = '4.16.0'
    implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk8:$kotlin_version"
    implementation "org.jetbrains.kotlinx:kotlinx-coroutines-android:$kotlin_coroutines_version"
    implementation "androidx.work:work-runtime-ktx:$work_version"
--- a/mobile/android/app/src/main/kotlin/com/example/mobile/BackupWorker.kt
+++ b/mobile/android/app/src/main/kotlin/com/example/mobile/BackupWorker.kt
@ -276,7 +276,7 @@ class BackupWorker(ctx: Context, params: WorkerParameters) : ListenableWorker(ct
        private const val NOTIFICATION_CHANNEL_ERROR_ID = "immich/backgroundServiceError"
        private const val NOTIFICATION_DEFAULT_TITLE = "Immich"
        private const val NOTIFICATION_ID = 1
-        private const val NOTIFICATION_ERROR_ID = 2 
+        private const val NOTIFICATION_ERROR_ID = 2
        private const val NOTIFICATION_DETAIL_ID = 3
        private const val ONE_MINUTE = 60000L
@ -304,7 +304,7 @@ class BackupWorker(ctx: Context, params: WorkerParameters) : ListenableWorker(ct
                val workInfoList = workInfoFuture.get(1000, TimeUnit.MILLISECONDS)
                if (workInfoList != null) {
                    for (workInfo in workInfoList) {
-                        if (workInfo.getState() == WorkInfo.State.ENQUEUED) {
+                        if (workInfo.state == WorkInfo.State.ENQUEUED) {
                            val workRequest = buildWorkRequest(requireWifi, requireCharging)
                            wm.enqueueUniqueWork(TASK_NAME_BACKUP, ExistingWorkPolicy.REPLACE, workRequest)
                            Log.d(TAG, "updateBackupWorker updated BackupWorker constraints")
@ -346,7 +346,7 @@ class BackupWorker(ctx: Context, params: WorkerParameters) : ListenableWorker(ct
                .setRequiresBatteryNotLow(true)
                .setRequiresCharging(requireCharging)
                .build();
-            
+
            val work = OneTimeWorkRequest.Builder(BackupWorker::class.java)
                .setConstraints(constraints)
                .setBackoffCriteria(BackoffPolicy.EXPONENTIAL, ONE_MINUTE, TimeUnit.MILLISECONDS)
@ -359,4 +359,4 @@ class BackupWorker(ctx: Context, params: WorkerParameters) : ListenableWorker(ct
    }
 }
-private const val TAG = "BackupWorker"
+private const val TAG = "BackupWorker"
--- a/mobile/android/build.gradle
+++ b/mobile/android/build.gradle
@ -1,21 +1,3 @@
 buildscript {
    ext.kotlin_version = '1.8.20'
    ext.kotlin_coroutines_version = '1.7.1'
    ext.work_version = '2.7.1'
    ext.concurrent_version = '1.1.0'
    ext.guava_version = '33.0.0-android'
    ext.glide_version = '4.14.2'
    repositories {
        google()
        mavenCentral()
    }
    dependencies {
        classpath 'com.android.tools.build:gradle:7.4.2'
        classpath "org.jetbrains.kotlin:kotlin-gradle-plugin:$kotlin_version"
    }
 }
 allprojects {
    repositories {
        google()
@ -34,3 +16,7 @@ subprojects {
 tasks.register("clean", Delete) {
    delete rootProject.buildDir
 }
 tasks.named('wrapper') {
    distributionType = Wrapper.DistributionType.ALL
 }
--- a/mobile/android/fastlane/Fastfile
+++ b/mobile/android/fastlane/Fastfile
@ -35,8 +35,8 @@ platform :android do
      task: 'bundle', 
      build_type: 'Release',
      properties: {
-        "android.injected.version.code" => 131,
+        "android.injected.version.code" => 136,
-        "android.injected.version.name" => "1.101.0",
+        "android.injected.version.name" => "1.102.3",
      }
    )
    upload_to_play_store(skip_upload_apk: true, skip_upload_images: true, skip_upload_screenshots: true, aab: '../build/app/outputs/bundle/release/app-release.aab')
--- a/mobile/android/fastlane/report.xml
+++ b/mobile/android/fastlane/report.xml
@ -5,17 +5,17 @@
-      <testcase classname="fastlane.lanes" name="0: default_platform" time="0.000219">
+      <testcase classname="fastlane.lanes" name="0: default_platform" time="0.000261">
      </testcase>
-      <testcase classname="fastlane.lanes" name="1: bundleRelease" time="67.515419">
+      <testcase classname="fastlane.lanes" name="1: bundleRelease" time="32.48099">
      </testcase>
-      <testcase classname="fastlane.lanes" name="2: upload_to_play_store" time="35.431743">
+      <testcase classname="fastlane.lanes" name="2: upload_to_play_store" time="30.236974">
      </testcase>
--- a/mobile/android/gradle/wrapper/gradle-wrapper.properties
+++ b/mobile/android/gradle/wrapper/gradle-wrapper.properties
@ -1,6 +1,7 @@
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
 validateDistributionUrl=true
 zipStoreBase=GRADLE_USER_HOME
 zipStorePath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-7.6.3-all.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-7.6.4-all.zip
-distributionSha256Sum=6001aba9b2204d26fa25a5800bb9382cf3ee01ccb78fe77317b2872336eb2f80
+distributionSha256Sum=fe696c020f241a5f69c30f763c5a7f38eec54b490db19cd2b0962dda420d7d12
--- a/mobile/android/settings.gradle
+++ b/mobile/android/settings.gradle
@ -1,11 +1,26 @@
-include ':app'
+pluginManagement {
    def flutterSdkPath = {
        def properties = new Properties()
        file("local.properties").withInputStream { properties.load(it) }
        def flutterSdkPath = properties.getProperty("flutter.sdk")
        assert flutterSdkPath != null, "flutter.sdk not set in local.properties"
        return flutterSdkPath
    }()
-def localPropertiesFile = new File(rootProject.projectDir, "local.properties")
+    includeBuild("$flutterSdkPath/packages/flutter_tools/gradle")
 def properties = new Properties()
-assert localPropertiesFile.exists()
+    repositories {
-localPropertiesFile.withReader("UTF-8") { reader -> properties.load(reader) }
+        google()
        mavenCentral()
        gradlePluginPortal()
    }
 }
-def flutterSdkPath = properties.getProperty("flutter.sdk")
+plugins {
-assert flutterSdkPath != null, "flutter.sdk not set in local.properties"
+    id "dev.flutter.flutter-plugin-loader" version "1.0.0"
-apply from: "$flutterSdkPath/packages/flutter_tools/gradle/app_plugin_loader.gradle"
+    id "com.android.application" version "7.4.2" apply false
    id "org.jetbrains.kotlin.android" version "1.9.23" apply false
    id "org.jetbrains.kotlin.kapt" version "1.9.23" apply false
 }
 include ":app"
--- a/mobile/assets/i18n/en-US.json
+++ b/mobile/assets/i18n/en-US.json
@ -296,6 +296,7 @@
  "motion_photos_page_title": "Motion Photos",
  "multiselect_grid_edit_date_time_err_read_only": "Cannot edit date of read only asset(s), skipping",
  "multiselect_grid_edit_gps_err_read_only": "Cannot edit location of read only asset(s), skipping",
  "no_assets_to_show" : "No assets to show",
  "notification_permission_dialog_cancel": "Cancel",
  "notification_permission_dialog_content": "To enable notifications, go to Settings and select allow.",
  "notification_permission_dialog_settings": "Settings",
--- a/mobile/assets/i18n/fr-FR.json
+++ b/mobile/assets/i18n/fr-FR.json
@ -296,6 +296,7 @@
  "motion_photos_page_title": "Photos avec mouvement",
  "multiselect_grid_edit_date_time_err_read_only": "Impossible de modifier la date d'un élément d'actif en lecture seule.",
  "multiselect_grid_edit_gps_err_read_only": "Impossible de modifier l'emplacement d'un élément en lecture seule.",
  "no_assets_to_show" : "Aucun élément à afficher",
  "notification_permission_dialog_cancel": "Annuler",
  "notification_permission_dialog_content": "Pour activer les notifications, allez dans Paramètres et sélectionnez Autoriser.",
  "notification_permission_dialog_settings": "Paramètres",
@ -509,5 +510,7 @@
  "version_announcement_overlay_title": "Nouvelle version serveur disponible \uD83C\uDF89",
  "viewer_remove_from_stack": "Retirer de la pile",
  "viewer_stack_use_as_main_asset": "Utiliser comme élément principal",
-  "viewer_unstack": "Désempiler"
+  "viewer_unstack": "Désempiler",
  "haptic_feedback_title": "Retour haptique",
  "haptic_feedback_switch": "Activer le retour haptique"
 }
--- a/mobile/fonts/SnowburstOne.ttf
+++ b/mobile/fonts/SnowburstOne.ttf
--- a/mobile/ios/Runner.xcodeproj/project.pbxproj
+++ b/mobile/ios/Runner.xcodeproj/project.pbxproj
@ -383,7 +383,7 @@
 				CODE_SIGN_ENTITLEMENTS = Runner/RunnerProfile.entitlements;
 				CODE_SIGN_IDENTITY = "Apple Development";
 				CODE_SIGN_STYLE = Automatic;
-				CURRENT_PROJECT_VERSION = 147;
+				CURRENT_PROJECT_VERSION = 150;
 				DEVELOPMENT_TEAM = 2F67MQ8R79;
 				ENABLE_BITCODE = NO;
 				INFOPLIST_FILE = Runner/Info.plist;
@ -525,7 +525,7 @@
 				CLANG_ENABLE_MODULES = YES;
 				CODE_SIGN_IDENTITY = "Apple Development";
 				CODE_SIGN_STYLE = Automatic;
-				CURRENT_PROJECT_VERSION = 147;
+				CURRENT_PROJECT_VERSION = 150;
 				DEVELOPMENT_TEAM = 2F67MQ8R79;
 				ENABLE_BITCODE = NO;
 				INFOPLIST_FILE = Runner/Info.plist;
@ -553,7 +553,7 @@
 				CLANG_ENABLE_MODULES = YES;
 				CODE_SIGN_IDENTITY = "Apple Development";
 				CODE_SIGN_STYLE = Automatic;
-				CURRENT_PROJECT_VERSION = 147;
+				CURRENT_PROJECT_VERSION = 150;
 				DEVELOPMENT_TEAM = 2F67MQ8R79;
 				ENABLE_BITCODE = NO;
 				INFOPLIST_FILE = Runner/Info.plist;
--- a/mobile/ios/Runner/Info.plist
+++ b/mobile/ios/Runner/Info.plist
@ -58,11 +58,11 @@
    <key>CFBundlePackageType</key>
    <string>APPL</string>
    <key>CFBundleShortVersionString</key>
-    <string>1.101.0</string>
+    <string>1.102.2</string>
    <key>CFBundleSignature</key>
    <string>????</string>
    <key>CFBundleVersion</key>
-    <string>147</string>
+    <string>150</string>
    <key>FLTEnableImpeller</key>
    <true />
    <key>ITSAppUsesNonExemptEncryption</key>
--- a/mobile/ios/fastlane/Fastfile
+++ b/mobile/ios/fastlane/Fastfile
@ -19,7 +19,7 @@ platform :ios do
  desc "iOS Beta"
  lane :beta do
    increment_version_number(
-      version_number: "1.101.0"
+      version_number: "1.102.3"
    )
    increment_build_number(
      build_number: latest_testflight_build_number + 1,
--- a/mobile/ios/fastlane/report.xml
+++ b/mobile/ios/fastlane/report.xml
@ -5,32 +5,32 @@
-      <testcase classname="fastlane.lanes" name="0: default_platform" time="0.000242">
+      <testcase classname="fastlane.lanes" name="0: default_platform" time="0.000231">
      </testcase>
-      <testcase classname="fastlane.lanes" name="1: increment_version_number" time="0.761829">
+      <testcase classname="fastlane.lanes" name="1: increment_version_number" time="0.155919">
      </testcase>
-      <testcase classname="fastlane.lanes" name="2: latest_testflight_build_number" time="4.47461">
+      <testcase classname="fastlane.lanes" name="2: latest_testflight_build_number" time="4.252784">
      </testcase>
-      <testcase classname="fastlane.lanes" name="3: increment_build_number" time="0.179512">
+      <testcase classname="fastlane.lanes" name="3: increment_build_number" time="0.210502">
      </testcase>
-      <testcase classname="fastlane.lanes" name="4: build_app" time="165.636347">
+      <testcase classname="fastlane.lanes" name="4: build_app" time="175.813647">
      </testcase>
-      <testcase classname="fastlane.lanes" name="5: upload_to_testflight" time="77.651963">
+      <testcase classname="fastlane.lanes" name="5: upload_to_testflight" time="73.512517">
      </testcase>
--- a/mobile/lib/shared/ui/app_bar_dialog/app_bar_dialog.dart
+++ b/mobile/lib/shared/ui/app_bar_dialog/app_bar_dialog.dart
@ -39,27 +39,24 @@ class ImmichAppBarDialog extends HookConsumerWidget {
    );
    buildTopRow() {
-      return Row(
+      return Stack(
        children: [
-          InkWell(
+          Align(
-            onTap: () => context.pop(),
+            alignment: Alignment.topLeft,
-            child: const Icon(
+            child: InkWell(
-              Icons.close,
+              onTap: () => context.pop(),
-              size: 20,
+              child: const Icon(
                Icons.close,
                size: 20,
              ),
            ),
          ),
-          Expanded(
+          Center(
-            child: Align(
+            child: Image.asset(
-              alignment: Alignment.center,
+              context.isDarkTheme
-              child: Text(
+                  ? 'assets/immich-text-dark.png'
-                'IMMICH',
+                  : 'assets/immich-text-light.png',
-                style: TextStyle(
+              height: 16,
                  fontFamily: 'SnowburstOne',
                  fontWeight: FontWeight.bold,
                  color: context.primaryColor,
                  fontSize: 16,
                ),
              ),
            ),
          ),
        ],
--- a/mobile/lib/shared/ui/asset_grid/multiselect_grid.dart
+++ b/mobile/lib/shared/ui/asset_grid/multiselect_grid.dart
@ -63,7 +63,7 @@ class MultiselectGrid extends HookConsumerWidget {
      const Center(child: ImmichLoadingIndicator());
  Widget buildEmptyIndicator() =>
-      emptyIndicator ?? const Center(child: Text("No assets to show"));
+      emptyIndicator ?? Center(child: const Text("no_assets_to_show").tr());
  @override
  Widget build(BuildContext context, WidgetRef ref) {
--- a/mobile/lib/shared/views/splash_screen.dart
+++ b/mobile/lib/shared/views/splash_screen.dart
@ -25,7 +25,6 @@ class SplashScreenPage extends HookConsumerWidget {
    void performLoggingIn() async {
      bool isSuccess = false;
      bool deviceIsOffline = false;
      if (accessToken != null && serverUrl != null) {
        try {
          // Resolve API server endpoint from user provided serverUrl
@ -51,11 +50,15 @@ class SplashScreenPage extends HookConsumerWidget {
                offlineLogin: deviceIsOffline,
              );
        } catch (error, stackTrace) {
          ref.read(authenticationProvider.notifier).logout();
          log.severe(
            'Cannot set success login info',
            error,
            stackTrace,
          );
          context.pushRoute(const LoginRoute());
        }
      }
@ -73,11 +76,6 @@ class SplashScreenPage extends HookConsumerWidget {
        }
        context.replaceRoute(const TabControllerRoute());
      } else {
        log.severe(
          'Unable to login through offline or online methods - logging out completely',
        );
        ref.read(authenticationProvider.notifier).logout();
        // User was unable to login through either offline or online methods
        context.replaceRoute(const LoginRoute());
      }
--- a/mobile/openapi/.openapi-generator/FILES
+++ b/mobile/openapi/.openapi-generator/FILES
@ -13,6 +13,7 @@ doc/ActivityCreateDto.md
 doc/ActivityResponseDto.md
 doc/ActivityStatisticsResponseDto.md
 doc/AddUsersDto.md
 doc/AdminOnboardingUpdateDto.md
 doc/AlbumApi.md
 doc/AlbumCountResponseDto.md
 doc/AlbumResponseDto.md
@ -41,7 +42,6 @@ doc/AssetTypeEnum.md
 doc/AudioCodec.md
 doc/AuditApi.md
 doc/AuditDeletesResponseDto.md
 doc/AuthDeviceResponseDto.md
 doc/AuthenticationApi.md
 doc/BulkIdResponseDto.md
 doc/BulkIdsDto.md
@ -70,6 +70,7 @@ doc/FaceApi.md
 doc/FaceDto.md
 doc/FileChecksumDto.md
 doc/FileChecksumResponseDto.md
 doc/FileReportApi.md
 doc/FileReportDto.md
 doc/FileReportFixDto.md
 doc/FileReportItemDto.md
@ -123,6 +124,7 @@ doc/QueueStatusDto.md
 doc/ReactionLevel.md
 doc/ReactionType.md
 doc/RecognitionConfig.md
 doc/ReverseGeocodingStateResponseDto.md
 doc/ScanLibraryDto.md
 doc/SearchAlbumResponseDto.md
 doc/SearchApi.md
@ -142,6 +144,8 @@ doc/ServerPingResponse.md
 doc/ServerStatsResponseDto.md
 doc/ServerThemeDto.md
 doc/ServerVersionResponseDto.md
 doc/SessionResponseDto.md
 doc/SessionsApi.md
 doc/SharedLinkApi.md
 doc/SharedLinkCreateDto.md
 doc/SharedLinkEditDto.md
@ -172,6 +176,7 @@ doc/SystemConfigTemplateStorageOptionDto.md
 doc/SystemConfigThemeDto.md
 doc/SystemConfigTrashDto.md
 doc/SystemConfigUserDto.md
 doc/SystemMetadataApi.md
 doc/TagApi.md
 doc/TagResponseDto.md
 doc/TagTypeEnum.md
@ -211,6 +216,7 @@ lib/api/audit_api.dart
 lib/api/authentication_api.dart
 lib/api/download_api.dart
 lib/api/face_api.dart
 lib/api/file_report_api.dart
 lib/api/job_api.dart
 lib/api/library_api.dart
 lib/api/memory_api.dart
@ -219,9 +225,11 @@ lib/api/partner_api.dart
 lib/api/person_api.dart
 lib/api/search_api.dart
 lib/api/server_info_api.dart
 lib/api/sessions_api.dart
 lib/api/shared_link_api.dart
 lib/api/sync_api.dart
 lib/api/system_config_api.dart
 lib/api/system_metadata_api.dart
 lib/api/tag_api.dart
 lib/api/timeline_api.dart
 lib/api/trash_api.dart
@ -238,6 +246,7 @@ lib/model/activity_create_dto.dart
 lib/model/activity_response_dto.dart
 lib/model/activity_statistics_response_dto.dart
 lib/model/add_users_dto.dart
 lib/model/admin_onboarding_update_dto.dart
 lib/model/album_count_response_dto.dart
 lib/model/album_response_dto.dart
 lib/model/all_job_status_response_dto.dart
@ -267,7 +276,6 @@ lib/model/asset_stats_response_dto.dart
 lib/model/asset_type_enum.dart
 lib/model/audio_codec.dart
 lib/model/audit_deletes_response_dto.dart
 lib/model/auth_device_response_dto.dart
 lib/model/bulk_id_response_dto.dart
 lib/model/bulk_ids_dto.dart
 lib/model/change_password_dto.dart
@ -340,6 +348,7 @@ lib/model/queue_status_dto.dart
 lib/model/reaction_level.dart
 lib/model/reaction_type.dart
 lib/model/recognition_config.dart
 lib/model/reverse_geocoding_state_response_dto.dart
 lib/model/scan_library_dto.dart
 lib/model/search_album_response_dto.dart
 lib/model/search_asset_response_dto.dart
@ -357,6 +366,7 @@ lib/model/server_ping_response.dart
 lib/model/server_stats_response_dto.dart
 lib/model/server_theme_dto.dart
 lib/model/server_version_response_dto.dart
 lib/model/session_response_dto.dart
 lib/model/shared_link_create_dto.dart
 lib/model/shared_link_edit_dto.dart
 lib/model/shared_link_response_dto.dart
@ -415,6 +425,7 @@ test/activity_create_dto_test.dart
 test/activity_response_dto_test.dart
 test/activity_statistics_response_dto_test.dart
 test/add_users_dto_test.dart
 test/admin_onboarding_update_dto_test.dart
 test/album_api_test.dart
 test/album_count_response_dto_test.dart
 test/album_response_dto_test.dart
@ -448,7 +459,6 @@ test/asset_type_enum_test.dart
 test/audio_codec_test.dart
 test/audit_api_test.dart
 test/audit_deletes_response_dto_test.dart
 test/auth_device_response_dto_test.dart
 test/authentication_api_test.dart
 test/bulk_id_response_dto_test.dart
 test/bulk_ids_dto_test.dart
@ -477,6 +487,7 @@ test/face_api_test.dart
 test/face_dto_test.dart
 test/file_checksum_dto_test.dart
 test/file_checksum_response_dto_test.dart
 test/file_report_api_test.dart
 test/file_report_dto_test.dart
 test/file_report_fix_dto_test.dart
 test/file_report_item_dto_test.dart
@ -530,6 +541,7 @@ test/queue_status_dto_test.dart
 test/reaction_level_test.dart
 test/reaction_type_test.dart
 test/recognition_config_test.dart
 test/reverse_geocoding_state_response_dto_test.dart
 test/scan_library_dto_test.dart
 test/search_album_response_dto_test.dart
 test/search_api_test.dart
@ -549,6 +561,8 @@ test/server_ping_response_test.dart
 test/server_stats_response_dto_test.dart
 test/server_theme_dto_test.dart
 test/server_version_response_dto_test.dart
 test/session_response_dto_test.dart
 test/sessions_api_test.dart
 test/shared_link_api_test.dart
 test/shared_link_create_dto_test.dart
 test/shared_link_edit_dto_test.dart
@ -579,6 +593,7 @@ test/system_config_template_storage_option_dto_test.dart
 test/system_config_theme_dto_test.dart
 test/system_config_trash_dto_test.dart
 test/system_config_user_dto_test.dart
 test/system_metadata_api_test.dart
 test/tag_api_test.dart
 test/tag_response_dto_test.dart
 test/tag_type_enum_test.dart
--- a/mobile/openapi/README.md
+++ b/mobile/openapi/README.md
@ -3,7 +3,7 @@ Immich API
 This Dart package is automatically generated by the [OpenAPI Generator](https://openapi-generator.tech) project:
- API version: 1.101.0
+- API version: 1.102.3
 - Build package: org.openapitools.codegen.languages.DartClientCodegen
 ## Requirements
@ -112,16 +112,10 @@ Class | Method | HTTP request | Description
 *AssetApi* | [**updateAssets**](doc//AssetApi.md#updateassets) | **PUT** /asset | 
 *AssetApi* | [**updateStackParent**](doc//AssetApi.md#updatestackparent) | **PUT** /asset/stack/parent | 
 *AssetApi* | [**uploadFile**](doc//AssetApi.md#uploadfile) | **POST** /asset/upload | 
 *AuditApi* | [**fixAuditFiles**](doc//AuditApi.md#fixauditfiles) | **POST** /audit/file-report/fix | 
 *AuditApi* | [**getAuditDeletes**](doc//AuditApi.md#getauditdeletes) | **GET** /audit/deletes | 
 *AuditApi* | [**getAuditFiles**](doc//AuditApi.md#getauditfiles) | **GET** /audit/file-report | 
 *AuditApi* | [**getFileChecksums**](doc//AuditApi.md#getfilechecksums) | **POST** /audit/file-report/checksum | 
 *AuthenticationApi* | [**changePassword**](doc//AuthenticationApi.md#changepassword) | **POST** /auth/change-password | 
 *AuthenticationApi* | [**getAuthDevices**](doc//AuthenticationApi.md#getauthdevices) | **GET** /auth/devices | 
 *AuthenticationApi* | [**login**](doc//AuthenticationApi.md#login) | **POST** /auth/login | 
 *AuthenticationApi* | [**logout**](doc//AuthenticationApi.md#logout) | **POST** /auth/logout | 
 *AuthenticationApi* | [**logoutAuthDevice**](doc//AuthenticationApi.md#logoutauthdevice) | **DELETE** /auth/devices/{id} | 
 *AuthenticationApi* | [**logoutAuthDevices**](doc//AuthenticationApi.md#logoutauthdevices) | **DELETE** /auth/devices | 
 *AuthenticationApi* | [**signUpAdmin**](doc//AuthenticationApi.md#signupadmin) | **POST** /auth/admin-sign-up | 
 *AuthenticationApi* | [**validateAccessToken**](doc//AuthenticationApi.md#validateaccesstoken) | **POST** /auth/validateToken | 
 *DownloadApi* | [**downloadArchive**](doc//DownloadApi.md#downloadarchive) | **POST** /download/archive | 
@ -129,6 +123,9 @@ Class | Method | HTTP request | Description
 *DownloadApi* | [**getDownloadInfo**](doc//DownloadApi.md#getdownloadinfo) | **POST** /download/info | 
 *FaceApi* | [**getFaces**](doc//FaceApi.md#getfaces) | **GET** /face | 
 *FaceApi* | [**reassignFacesById**](doc//FaceApi.md#reassignfacesbyid) | **PUT** /face/{id} | 
 *FileReportApi* | [**fixAuditFiles**](doc//FileReportApi.md#fixauditfiles) | **POST** /report/fix | 
 *FileReportApi* | [**getAuditFiles**](doc//FileReportApi.md#getauditfiles) | **GET** /report | 
 *FileReportApi* | [**getFileChecksums**](doc//FileReportApi.md#getfilechecksums) | **POST** /report/checksum | 
 *JobApi* | [**getAllJobsStatus**](doc//JobApi.md#getalljobsstatus) | **GET** /jobs | 
 *JobApi* | [**sendJobCommand**](doc//JobApi.md#sendjobcommand) | **PUT** /jobs/{id} | 
 *LibraryApi* | [**createLibrary**](doc//LibraryApi.md#createlibrary) | **POST** /library | 
@ -182,7 +179,9 @@ Class | Method | HTTP request | Description
 *ServerInfoApi* | [**getSupportedMediaTypes**](doc//ServerInfoApi.md#getsupportedmediatypes) | **GET** /server-info/media-types | 
 *ServerInfoApi* | [**getTheme**](doc//ServerInfoApi.md#gettheme) | **GET** /server-info/theme | 
 *ServerInfoApi* | [**pingServer**](doc//ServerInfoApi.md#pingserver) | **GET** /server-info/ping | 
-*ServerInfoApi* | [**setAdminOnboarding**](doc//ServerInfoApi.md#setadminonboarding) | **POST** /server-info/admin-onboarding | 
+*SessionsApi* | [**deleteAllSessions**](doc//SessionsApi.md#deleteallsessions) | **DELETE** /sessions | 
 *SessionsApi* | [**deleteSession**](doc//SessionsApi.md#deletesession) | **DELETE** /sessions/{id} | 
 *SessionsApi* | [**getSessions**](doc//SessionsApi.md#getsessions) | **GET** /sessions | 
 *SharedLinkApi* | [**addSharedLinkAssets**](doc//SharedLinkApi.md#addsharedlinkassets) | **PUT** /shared-link/{id}/assets | 
 *SharedLinkApi* | [**createSharedLink**](doc//SharedLinkApi.md#createsharedlink) | **POST** /shared-link | 
 *SharedLinkApi* | [**getAllSharedLinks**](doc//SharedLinkApi.md#getallsharedlinks) | **GET** /shared-link | 
@ -198,6 +197,9 @@ Class | Method | HTTP request | Description
 *SystemConfigApi* | [**getMapStyle**](doc//SystemConfigApi.md#getmapstyle) | **GET** /system-config/map/style.json | 
 *SystemConfigApi* | [**getStorageTemplateOptions**](doc//SystemConfigApi.md#getstoragetemplateoptions) | **GET** /system-config/storage-template-options | 
 *SystemConfigApi* | [**updateConfig**](doc//SystemConfigApi.md#updateconfig) | **PUT** /system-config | 
 *SystemMetadataApi* | [**getAdminOnboarding**](doc//SystemMetadataApi.md#getadminonboarding) | **GET** /system-metadata/admin-onboarding | 
 *SystemMetadataApi* | [**getReverseGeocodingState**](doc//SystemMetadataApi.md#getreversegeocodingstate) | **GET** /system-metadata/reverse-geocoding-state | 
 *SystemMetadataApi* | [**updateAdminOnboarding**](doc//SystemMetadataApi.md#updateadminonboarding) | **POST** /system-metadata/admin-onboarding | 
 *TagApi* | [**createTag**](doc//TagApi.md#createtag) | **POST** /tag | 
 *TagApi* | [**deleteTag**](doc//TagApi.md#deletetag) | **DELETE** /tag/{id} | 
 *TagApi* | [**getAllTags**](doc//TagApi.md#getalltags) | **GET** /tag | 
@ -233,6 +235,7 @@ Class | Method | HTTP request | Description
 - [ActivityResponseDto](doc//ActivityResponseDto.md)
 - [ActivityStatisticsResponseDto](doc//ActivityStatisticsResponseDto.md)
 - [AddUsersDto](doc//AddUsersDto.md)
 - [AdminOnboardingUpdateDto](doc//AdminOnboardingUpdateDto.md)
 - [AlbumCountResponseDto](doc//AlbumCountResponseDto.md)
 - [AlbumResponseDto](doc//AlbumResponseDto.md)
 - [AllJobStatusResponseDto](doc//AllJobStatusResponseDto.md)
@ -258,7 +261,6 @@ Class | Method | HTTP request | Description
 - [AssetTypeEnum](doc//AssetTypeEnum.md)
 - [AudioCodec](doc//AudioCodec.md)
 - [AuditDeletesResponseDto](doc//AuditDeletesResponseDto.md)
 - [AuthDeviceResponseDto](doc//AuthDeviceResponseDto.md)
 - [BulkIdResponseDto](doc//BulkIdResponseDto.md)
 - [BulkIdsDto](doc//BulkIdsDto.md)
 - [CLIPConfig](doc//CLIPConfig.md)
@ -331,6 +333,7 @@ Class | Method | HTTP request | Description
 - [ReactionLevel](doc//ReactionLevel.md)
 - [ReactionType](doc//ReactionType.md)
 - [RecognitionConfig](doc//RecognitionConfig.md)
 - [ReverseGeocodingStateResponseDto](doc//ReverseGeocodingStateResponseDto.md)
 - [ScanLibraryDto](doc//ScanLibraryDto.md)
 - [SearchAlbumResponseDto](doc//SearchAlbumResponseDto.md)
 - [SearchAssetResponseDto](doc//SearchAssetResponseDto.md)
@ -348,6 +351,7 @@ Class | Method | HTTP request | Description
 - [ServerStatsResponseDto](doc//ServerStatsResponseDto.md)
 - [ServerThemeDto](doc//ServerThemeDto.md)
 - [ServerVersionResponseDto](doc//ServerVersionResponseDto.md)
 - [SessionResponseDto](doc//SessionResponseDto.md)
 - [SharedLinkCreateDto](doc//SharedLinkCreateDto.md)
 - [SharedLinkEditDto](doc//SharedLinkEditDto.md)
 - [SharedLinkResponseDto](doc//SharedLinkResponseDto.md)
--- a/mobile/openapi/doc/AdminOnboardingUpdateDto.md
+++ b/mobile/openapi/doc/AdminOnboardingUpdateDto.md
@ -0,0 +1,15 @@
 # openapi.model.AdminOnboardingUpdateDto
 ## Load the model package
 ```dart
 import 'package:openapi/api.dart';
 ```
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **isOnboarded** | **bool** |  | 
 [[Back to Model list]](../README.md#documentation-for-models) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/AuditApi.md
+++ b/mobile/openapi/doc/AuditApi.md
@ -9,66 +9,9 @@ All URIs are relative to */api*
 Method | HTTP request | Description
 ------------- | ------------- | -------------
 [**fixAuditFiles**](AuditApi.md#fixauditfiles) | **POST** /audit/file-report/fix | 
 [**getAuditDeletes**](AuditApi.md#getauditdeletes) | **GET** /audit/deletes | 
 [**getAuditFiles**](AuditApi.md#getauditfiles) | **GET** /audit/file-report | 
 [**getFileChecksums**](AuditApi.md#getfilechecksums) | **POST** /audit/file-report/checksum | 
 # **fixAuditFiles**
 > fixAuditFiles(fileReportFixDto)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuditApi();
 final fileReportFixDto = FileReportFixDto(); // FileReportFixDto | 
 try {
    api_instance.fixAuditFiles(fileReportFixDto);
 } catch (e) {
    print('Exception when calling AuditApi->fixAuditFiles: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **fileReportFixDto** | [**FileReportFixDto**](FileReportFixDto.md)|  | 
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: application/json
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getAuditDeletes**
 > AuditDeletesResponseDto getAuditDeletes(after, entityType, userId)
@ -128,109 +71,3 @@ Name | Type | Description  | Notes
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getAuditFiles**
 > FileReportDto getAuditFiles()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuditApi();
 try {
    final result = api_instance.getAuditFiles();
    print(result);
 } catch (e) {
    print('Exception when calling AuditApi->getAuditFiles: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**FileReportDto**](FileReportDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getFileChecksums**
 > List<FileChecksumResponseDto> getFileChecksums(fileChecksumDto)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuditApi();
 final fileChecksumDto = FileChecksumDto(); // FileChecksumDto | 
 try {
    final result = api_instance.getFileChecksums(fileChecksumDto);
    print(result);
 } catch (e) {
    print('Exception when calling AuditApi->getFileChecksums: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **fileChecksumDto** | [**FileChecksumDto**](FileChecksumDto.md)|  | 
 ### Return type
 [**List<FileChecksumResponseDto>**](FileChecksumResponseDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: application/json
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/AuthenticationApi.md
+++ b/mobile/openapi/doc/AuthenticationApi.md
@ -10,11 +10,8 @@ All URIs are relative to */api*
 Method | HTTP request | Description
 ------------- | ------------- | -------------
 [**changePassword**](AuthenticationApi.md#changepassword) | **POST** /auth/change-password | 
 [**getAuthDevices**](AuthenticationApi.md#getauthdevices) | **GET** /auth/devices | 
 [**login**](AuthenticationApi.md#login) | **POST** /auth/login | 
 [**logout**](AuthenticationApi.md#logout) | **POST** /auth/logout | 
 [**logoutAuthDevice**](AuthenticationApi.md#logoutauthdevice) | **DELETE** /auth/devices/{id} | 
 [**logoutAuthDevices**](AuthenticationApi.md#logoutauthdevices) | **DELETE** /auth/devices | 
 [**signUpAdmin**](AuthenticationApi.md#signupadmin) | **POST** /auth/admin-sign-up | 
 [**validateAccessToken**](AuthenticationApi.md#validateaccesstoken) | **POST** /auth/validateToken | 
@ -74,57 +71,6 @@ Name | Type | Description  | Notes
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getAuthDevices**
 > List<AuthDeviceResponseDto> getAuthDevices()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuthenticationApi();
 try {
    final result = api_instance.getAuthDevices();
    print(result);
 } catch (e) {
    print('Exception when calling AuthenticationApi->getAuthDevices: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**List<AuthDeviceResponseDto>**](AuthDeviceResponseDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **login**
 > LoginResponseDto login(loginCredentialDto)
@ -217,110 +163,6 @@ This endpoint does not need any parameter.
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **logoutAuthDevice**
 > logoutAuthDevice(id)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuthenticationApi();
 final id = 38400000-8cf0-11bd-b23e-10b96e4ef00d; // String | 
 try {
    api_instance.logoutAuthDevice(id);
 } catch (e) {
    print('Exception when calling AuthenticationApi->logoutAuthDevice: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **id** | **String**|  | 
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **logoutAuthDevices**
 > logoutAuthDevices()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = AuthenticationApi();
 try {
    api_instance.logoutAuthDevices();
 } catch (e) {
    print('Exception when calling AuthenticationApi->logoutAuthDevices: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **signUpAdmin**
 > UserResponseDto signUpAdmin(signUpDto)
--- a/mobile/openapi/doc/FileReportApi.md
+++ b/mobile/openapi/doc/FileReportApi.md
@ -0,0 +1,176 @@
 # openapi.api.FileReportApi
 ## Load the API package
 ```dart
 import 'package:openapi/api.dart';
 ```
 All URIs are relative to */api*
 Method | HTTP request | Description
 ------------- | ------------- | -------------
 [**fixAuditFiles**](FileReportApi.md#fixauditfiles) | **POST** /report/fix | 
 [**getAuditFiles**](FileReportApi.md#getauditfiles) | **GET** /report | 
 [**getFileChecksums**](FileReportApi.md#getfilechecksums) | **POST** /report/checksum | 
 # **fixAuditFiles**
 > fixAuditFiles(fileReportFixDto)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = FileReportApi();
 final fileReportFixDto = FileReportFixDto(); // FileReportFixDto | 
 try {
    api_instance.fixAuditFiles(fileReportFixDto);
 } catch (e) {
    print('Exception when calling FileReportApi->fixAuditFiles: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **fileReportFixDto** | [**FileReportFixDto**](FileReportFixDto.md)|  | 
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: application/json
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getAuditFiles**
 > FileReportDto getAuditFiles()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = FileReportApi();
 try {
    final result = api_instance.getAuditFiles();
    print(result);
 } catch (e) {
    print('Exception when calling FileReportApi->getAuditFiles: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**FileReportDto**](FileReportDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getFileChecksums**
 > List<FileChecksumResponseDto> getFileChecksums(fileChecksumDto)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = FileReportApi();
 final fileChecksumDto = FileChecksumDto(); // FileChecksumDto | 
 try {
    final result = api_instance.getFileChecksums(fileChecksumDto);
    print(result);
 } catch (e) {
    print('Exception when calling FileReportApi->getFileChecksums: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **fileChecksumDto** | [**FileChecksumDto**](FileChecksumDto.md)|  | 
 ### Return type
 [**List<FileChecksumResponseDto>**](FileChecksumResponseDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: application/json
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/ReverseGeocodingStateResponseDto.md
+++ b/mobile/openapi/doc/ReverseGeocodingStateResponseDto.md
@ -0,0 +1,16 @@
 # openapi.model.ReverseGeocodingStateResponseDto
 ## Load the model package
 ```dart
 import 'package:openapi/api.dart';
 ```
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **lastImportFileName** | **String** |  | 
 **lastUpdate** | **String** |  | 
 [[Back to Model list]](../README.md#documentation-for-models) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/ServerInfoApi.md
+++ b/mobile/openapi/doc/ServerInfoApi.md
@ -17,7 +17,6 @@ Method | HTTP request | Description
 [**getSupportedMediaTypes**](ServerInfoApi.md#getsupportedmediatypes) | **GET** /server-info/media-types | 
 [**getTheme**](ServerInfoApi.md#gettheme) | **GET** /server-info/theme | 
 [**pingServer**](ServerInfoApi.md#pingserver) | **GET** /server-info/ping | 
 [**setAdminOnboarding**](ServerInfoApi.md#setadminonboarding) | **POST** /server-info/admin-onboarding | 
 # **getServerConfig**
@ -344,53 +343,3 @@ No authorization required
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **setAdminOnboarding**
 > setAdminOnboarding()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = ServerInfoApi();
 try {
    api_instance.setAdminOnboarding();
 } catch (e) {
    print('Exception when calling ServerInfoApi->setAdminOnboarding: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/AuthDeviceResponseDto.md
+++ b/mobile/openapi/doc/AuthDeviceResponseDto.md
@ -1,4 +1,4 @@
-# openapi.model.AuthDeviceResponseDto
+# openapi.model.SessionResponseDto
 ## Load the model package
 ```dart
--- a/mobile/openapi/doc/SessionsApi.md
+++ b/mobile/openapi/doc/SessionsApi.md
@ -0,0 +1,171 @@
 # openapi.api.SessionsApi
 ## Load the API package
 ```dart
 import 'package:openapi/api.dart';
 ```
 All URIs are relative to */api*
 Method | HTTP request | Description
 ------------- | ------------- | -------------
 [**deleteAllSessions**](SessionsApi.md#deleteallsessions) | **DELETE** /sessions | 
 [**deleteSession**](SessionsApi.md#deletesession) | **DELETE** /sessions/{id} | 
 [**getSessions**](SessionsApi.md#getsessions) | **GET** /sessions | 
 # **deleteAllSessions**
 > deleteAllSessions()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SessionsApi();
 try {
    api_instance.deleteAllSessions();
 } catch (e) {
    print('Exception when calling SessionsApi->deleteAllSessions: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **deleteSession**
 > deleteSession(id)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SessionsApi();
 final id = 38400000-8cf0-11bd-b23e-10b96e4ef00d; // String | 
 try {
    api_instance.deleteSession(id);
 } catch (e) {
    print('Exception when calling SessionsApi->deleteSession: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **id** | **String**|  | 
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getSessions**
 > List<SessionResponseDto> getSessions()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SessionsApi();
 try {
    final result = api_instance.getSessions();
    print(result);
 } catch (e) {
    print('Exception when calling SessionsApi->getSessions: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**List<SessionResponseDto>**](SessionResponseDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
--- a/mobile/openapi/doc/SystemConfigImageDto.md
+++ b/mobile/openapi/doc/SystemConfigImageDto.md
@ -9,6 +9,7 @@ import 'package:openapi/api.dart';
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **colorspace** | [**Colorspace**](Colorspace.md) |  | 
 **extractEmbedded** | **bool** |  | 
 **previewFormat** | [**ImageFormat**](ImageFormat.md) |  | 
 **previewSize** | **int** |  | 
 **quality** | **int** |  | 
--- a/mobile/openapi/doc/SystemMetadataApi.md
+++ b/mobile/openapi/doc/SystemMetadataApi.md
@ -0,0 +1,172 @@
 # openapi.api.SystemMetadataApi
 ## Load the API package
 ```dart
 import 'package:openapi/api.dart';
 ```
 All URIs are relative to */api*
 Method | HTTP request | Description
 ------------- | ------------- | -------------
 [**getAdminOnboarding**](SystemMetadataApi.md#getadminonboarding) | **GET** /system-metadata/admin-onboarding | 
 [**getReverseGeocodingState**](SystemMetadataApi.md#getreversegeocodingstate) | **GET** /system-metadata/reverse-geocoding-state | 
 [**updateAdminOnboarding**](SystemMetadataApi.md#updateadminonboarding) | **POST** /system-metadata/admin-onboarding | 
 # **getAdminOnboarding**
 > AdminOnboardingUpdateDto getAdminOnboarding()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SystemMetadataApi();
 try {
    final result = api_instance.getAdminOnboarding();
    print(result);
 } catch (e) {
    print('Exception when calling SystemMetadataApi->getAdminOnboarding: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**AdminOnboardingUpdateDto**](AdminOnboardingUpdateDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **getReverseGeocodingState**
 > ReverseGeocodingStateResponseDto getReverseGeocodingState()
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SystemMetadataApi();
 try {
    final result = api_instance.getReverseGeocodingState();
    print(result);
 } catch (e) {
    print('Exception when calling SystemMetadataApi->getReverseGeocodingState: $e\n');
 }
 ```
 ### Parameters
 This endpoint does not need any parameter.
 ### Return type
 [**ReverseGeocodingStateResponseDto**](ReverseGeocodingStateResponseDto.md)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: Not defined
 - **Accept**: application/json
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 # **updateAdminOnboarding**
 > updateAdminOnboarding(adminOnboardingUpdateDto)
 ### Example
 ```dart
 import 'package:openapi/api.dart';
 // TODO Configure API key authorization: cookie
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
 // TODO Configure API key authorization: api_key
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
 // uncomment below to setup prefix (e.g. Bearer) for API key, if needed
 //defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
 // TODO Configure HTTP Bearer authorization: bearer
 // Case 1. Use String Token
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
 // Case 2. Use Function which generate token.
 // String yourTokenGeneratorFunction() { ... }
 //defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);
 final api_instance = SystemMetadataApi();
 final adminOnboardingUpdateDto = AdminOnboardingUpdateDto(); // AdminOnboardingUpdateDto | 
 try {
    api_instance.updateAdminOnboarding(adminOnboardingUpdateDto);
 } catch (e) {
    print('Exception when calling SystemMetadataApi->updateAdminOnboarding: $e\n');
 }
 ```
 ### Parameters
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
 **adminOnboardingUpdateDto** | [**AdminOnboardingUpdateDto**](AdminOnboardingUpdateDto.md)|  | 
 ### Return type
 void (empty response body)
 ### Authorization
 [cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)
 ### HTTP request headers
 - **Content-Type**: application/json
 - **Accept**: Not defined
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
--- a/mobile/openapi/lib/api.dart
+++ b/mobile/openapi/lib/api.dart
@ -37,6 +37,7 @@ part 'api/audit_api.dart';
 part 'api/authentication_api.dart';
 part 'api/download_api.dart';
 part 'api/face_api.dart';
 part 'api/file_report_api.dart';
 part 'api/job_api.dart';
 part 'api/library_api.dart';
 part 'api/memory_api.dart';
@ -45,9 +46,11 @@ part 'api/partner_api.dart';
 part 'api/person_api.dart';
 part 'api/search_api.dart';
 part 'api/server_info_api.dart';
 part 'api/sessions_api.dart';
 part 'api/shared_link_api.dart';
 part 'api/sync_api.dart';
 part 'api/system_config_api.dart';
 part 'api/system_metadata_api.dart';
 part 'api/tag_api.dart';
 part 'api/timeline_api.dart';
 part 'api/trash_api.dart';
@ -61,6 +64,7 @@ part 'model/activity_create_dto.dart';
 part 'model/activity_response_dto.dart';
 part 'model/activity_statistics_response_dto.dart';
 part 'model/add_users_dto.dart';
 part 'model/admin_onboarding_update_dto.dart';
 part 'model/album_count_response_dto.dart';
 part 'model/album_response_dto.dart';
 part 'model/all_job_status_response_dto.dart';
@ -86,7 +90,6 @@ part 'model/asset_stats_response_dto.dart';
 part 'model/asset_type_enum.dart';
 part 'model/audio_codec.dart';
 part 'model/audit_deletes_response_dto.dart';
 part 'model/auth_device_response_dto.dart';
 part 'model/bulk_id_response_dto.dart';
 part 'model/bulk_ids_dto.dart';
 part 'model/clip_config.dart';
@ -159,6 +162,7 @@ part 'model/queue_status_dto.dart';
 part 'model/reaction_level.dart';
 part 'model/reaction_type.dart';
 part 'model/recognition_config.dart';
 part 'model/reverse_geocoding_state_response_dto.dart';
 part 'model/scan_library_dto.dart';
 part 'model/search_album_response_dto.dart';
 part 'model/search_asset_response_dto.dart';
@ -176,6 +180,7 @@ part 'model/server_ping_response.dart';
 part 'model/server_stats_response_dto.dart';
 part 'model/server_theme_dto.dart';
 part 'model/server_version_response_dto.dart';
 part 'model/session_response_dto.dart';
 part 'model/shared_link_create_dto.dart';
 part 'model/shared_link_edit_dto.dart';
 part 'model/shared_link_response_dto.dart';
--- a/mobile/openapi/lib/api/audit_api.dart
+++ b/mobile/openapi/lib/api/audit_api.dart
@ -16,45 +16,6 @@ class AuditApi {
  final ApiClient apiClient;
  /// Performs an HTTP 'POST /audit/file-report/fix' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [FileReportFixDto] fileReportFixDto (required):
  Future<Response> fixAuditFilesWithHttpInfo(FileReportFixDto fileReportFixDto,) async {
    // ignore: prefer_const_declarations
    final path = r'/audit/file-report/fix';
    // ignore: prefer_final_locals
    Object? postBody = fileReportFixDto;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>['application/json'];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [FileReportFixDto] fileReportFixDto (required):
  Future<void> fixAuditFiles(FileReportFixDto fileReportFixDto,) async {
    final response = await fixAuditFilesWithHttpInfo(fileReportFixDto,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'GET /audit/deletes' operation and returns the [Response].
  /// Parameters:
  ///
@ -115,95 +76,4 @@ class AuditApi {
    }
    return null;
  }
  /// Performs an HTTP 'GET /audit/file-report' operation and returns the [Response].
  Future<Response> getAuditFilesWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/audit/file-report';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<FileReportDto?> getAuditFiles() async {
    final response = await getAuditFilesWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      return await apiClient.deserializeAsync(await _decodeBodyBytes(response), 'FileReportDto',) as FileReportDto;
    }
    return null;
  }
  /// Performs an HTTP 'POST /audit/file-report/checksum' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [FileChecksumDto] fileChecksumDto (required):
  Future<Response> getFileChecksumsWithHttpInfo(FileChecksumDto fileChecksumDto,) async {
    // ignore: prefer_const_declarations
    final path = r'/audit/file-report/checksum';
    // ignore: prefer_final_locals
    Object? postBody = fileChecksumDto;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>['application/json'];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [FileChecksumDto] fileChecksumDto (required):
  Future<List<FileChecksumResponseDto>?> getFileChecksums(FileChecksumDto fileChecksumDto,) async {
    final response = await getFileChecksumsWithHttpInfo(fileChecksumDto,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      final responseBody = await _decodeBodyBytes(response);
      return (await apiClient.deserializeAsync(responseBody, 'List<FileChecksumResponseDto>') as List)
        .cast<FileChecksumResponseDto>()
        .toList(growable: false);
    }
    return null;
  }
 }
--- a/mobile/openapi/lib/api/authentication_api.dart
+++ b/mobile/openapi/lib/api/authentication_api.dart
@ -63,50 +63,6 @@ class AuthenticationApi {
    return null;
  }
  /// Performs an HTTP 'GET /auth/devices' operation and returns the [Response].
  Future<Response> getAuthDevicesWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/auth/devices';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<List<AuthDeviceResponseDto>?> getAuthDevices() async {
    final response = await getAuthDevicesWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      final responseBody = await _decodeBodyBytes(response);
      return (await apiClient.deserializeAsync(responseBody, 'List<AuthDeviceResponseDto>') as List)
        .cast<AuthDeviceResponseDto>()
        .toList(growable: false);
    }
    return null;
  }
  /// Performs an HTTP 'POST /auth/login' operation and returns the [Response].
  /// Parameters:
  ///
@ -195,79 +151,6 @@ class AuthenticationApi {
    return null;
  }
  /// Performs an HTTP 'DELETE /auth/devices/{id}' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [String] id (required):
  Future<Response> logoutAuthDeviceWithHttpInfo(String id,) async {
    // ignore: prefer_const_declarations
    final path = r'/auth/devices/{id}'
      .replaceAll('{id}', id);
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'DELETE',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [String] id (required):
  Future<void> logoutAuthDevice(String id,) async {
    final response = await logoutAuthDeviceWithHttpInfo(id,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'DELETE /auth/devices' operation and returns the [Response].
  Future<Response> logoutAuthDevicesWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/auth/devices';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'DELETE',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<void> logoutAuthDevices() async {
    final response = await logoutAuthDevicesWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'POST /auth/admin-sign-up' operation and returns the [Response].
  /// Parameters:
  ///
--- a/mobile/openapi/lib/api/file_report_api.dart
+++ b/mobile/openapi/lib/api/file_report_api.dart
@ -0,0 +1,148 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 part of openapi.api;
 class FileReportApi {
  FileReportApi([ApiClient? apiClient]) : apiClient = apiClient ?? defaultApiClient;
  final ApiClient apiClient;
  /// Performs an HTTP 'POST /report/fix' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [FileReportFixDto] fileReportFixDto (required):
  Future<Response> fixAuditFilesWithHttpInfo(FileReportFixDto fileReportFixDto,) async {
    // ignore: prefer_const_declarations
    final path = r'/report/fix';
    // ignore: prefer_final_locals
    Object? postBody = fileReportFixDto;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>['application/json'];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [FileReportFixDto] fileReportFixDto (required):
  Future<void> fixAuditFiles(FileReportFixDto fileReportFixDto,) async {
    final response = await fixAuditFilesWithHttpInfo(fileReportFixDto,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'GET /report' operation and returns the [Response].
  Future<Response> getAuditFilesWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/report';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<FileReportDto?> getAuditFiles() async {
    final response = await getAuditFilesWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      return await apiClient.deserializeAsync(await _decodeBodyBytes(response), 'FileReportDto',) as FileReportDto;
    }
    return null;
  }
  /// Performs an HTTP 'POST /report/checksum' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [FileChecksumDto] fileChecksumDto (required):
  Future<Response> getFileChecksumsWithHttpInfo(FileChecksumDto fileChecksumDto,) async {
    // ignore: prefer_const_declarations
    final path = r'/report/checksum';
    // ignore: prefer_final_locals
    Object? postBody = fileChecksumDto;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>['application/json'];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [FileChecksumDto] fileChecksumDto (required):
  Future<List<FileChecksumResponseDto>?> getFileChecksums(FileChecksumDto fileChecksumDto,) async {
    final response = await getFileChecksumsWithHttpInfo(fileChecksumDto,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      final responseBody = await _decodeBodyBytes(response);
      return (await apiClient.deserializeAsync(responseBody, 'List<FileChecksumResponseDto>') as List)
        .cast<FileChecksumResponseDto>()
        .toList(growable: false);
    }
    return null;
  }
 }
--- a/mobile/openapi/lib/api/server_info_api.dart
+++ b/mobile/openapi/lib/api/server_info_api.dart
@ -343,37 +343,4 @@ class ServerInfoApi {
    }
    return null;
  }
  /// Performs an HTTP 'POST /server-info/admin-onboarding' operation and returns the [Response].
  Future<Response> setAdminOnboardingWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/server-info/admin-onboarding';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<void> setAdminOnboarding() async {
    final response = await setAdminOnboardingWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
 }
--- a/mobile/openapi/lib/api/sessions_api.dart
+++ b/mobile/openapi/lib/api/sessions_api.dart
@ -0,0 +1,135 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 part of openapi.api;
 class SessionsApi {
  SessionsApi([ApiClient? apiClient]) : apiClient = apiClient ?? defaultApiClient;
  final ApiClient apiClient;
  /// Performs an HTTP 'DELETE /sessions' operation and returns the [Response].
  Future<Response> deleteAllSessionsWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/sessions';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'DELETE',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<void> deleteAllSessions() async {
    final response = await deleteAllSessionsWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'DELETE /sessions/{id}' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [String] id (required):
  Future<Response> deleteSessionWithHttpInfo(String id,) async {
    // ignore: prefer_const_declarations
    final path = r'/sessions/{id}'
      .replaceAll('{id}', id);
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'DELETE',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [String] id (required):
  Future<void> deleteSession(String id,) async {
    final response = await deleteSessionWithHttpInfo(id,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
  /// Performs an HTTP 'GET /sessions' operation and returns the [Response].
  Future<Response> getSessionsWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/sessions';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<List<SessionResponseDto>?> getSessions() async {
    final response = await getSessionsWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      final responseBody = await _decodeBodyBytes(response);
      return (await apiClient.deserializeAsync(responseBody, 'List<SessionResponseDto>') as List)
        .cast<SessionResponseDto>()
        .toList(growable: false);
    }
    return null;
  }
 }
--- a/mobile/openapi/lib/api/system_metadata_api.dart
+++ b/mobile/openapi/lib/api/system_metadata_api.dart
@ -0,0 +1,139 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 part of openapi.api;
 class SystemMetadataApi {
  SystemMetadataApi([ApiClient? apiClient]) : apiClient = apiClient ?? defaultApiClient;
  final ApiClient apiClient;
  /// Performs an HTTP 'GET /system-metadata/admin-onboarding' operation and returns the [Response].
  Future<Response> getAdminOnboardingWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/system-metadata/admin-onboarding';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<AdminOnboardingUpdateDto?> getAdminOnboarding() async {
    final response = await getAdminOnboardingWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      return await apiClient.deserializeAsync(await _decodeBodyBytes(response), 'AdminOnboardingUpdateDto',) as AdminOnboardingUpdateDto;
    }
    return null;
  }
  /// Performs an HTTP 'GET /system-metadata/reverse-geocoding-state' operation and returns the [Response].
  Future<Response> getReverseGeocodingStateWithHttpInfo() async {
    // ignore: prefer_const_declarations
    final path = r'/system-metadata/reverse-geocoding-state';
    // ignore: prefer_final_locals
    Object? postBody;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>[];
    return apiClient.invokeAPI(
      path,
      'GET',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  Future<ReverseGeocodingStateResponseDto?> getReverseGeocodingState() async {
    final response = await getReverseGeocodingStateWithHttpInfo();
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
    // When a remote server returns no body with a status of 204, we shall not decode it.
    // At the time of writing this, `dart:convert` will throw an "Unexpected end of input"
    // FormatException when trying to decode an empty string.
    if (response.body.isNotEmpty && response.statusCode != HttpStatus.noContent) {
      return await apiClient.deserializeAsync(await _decodeBodyBytes(response), 'ReverseGeocodingStateResponseDto',) as ReverseGeocodingStateResponseDto;
    }
    return null;
  }
  /// Performs an HTTP 'POST /system-metadata/admin-onboarding' operation and returns the [Response].
  /// Parameters:
  ///
  /// * [AdminOnboardingUpdateDto] adminOnboardingUpdateDto (required):
  Future<Response> updateAdminOnboardingWithHttpInfo(AdminOnboardingUpdateDto adminOnboardingUpdateDto,) async {
    // ignore: prefer_const_declarations
    final path = r'/system-metadata/admin-onboarding';
    // ignore: prefer_final_locals
    Object? postBody = adminOnboardingUpdateDto;
    final queryParams = <QueryParam>[];
    final headerParams = <String, String>{};
    final formParams = <String, String>{};
    const contentTypes = <String>['application/json'];
    return apiClient.invokeAPI(
      path,
      'POST',
      queryParams,
      postBody,
      headerParams,
      formParams,
      contentTypes.isEmpty ? null : contentTypes.first,
    );
  }
  /// Parameters:
  ///
  /// * [AdminOnboardingUpdateDto] adminOnboardingUpdateDto (required):
  Future<void> updateAdminOnboarding(AdminOnboardingUpdateDto adminOnboardingUpdateDto,) async {
    final response = await updateAdminOnboardingWithHttpInfo(adminOnboardingUpdateDto,);
    if (response.statusCode >= HttpStatus.badRequest) {
      throw ApiException(response.statusCode, await _decodeBodyBytes(response));
    }
  }
 }
--- a/mobile/openapi/lib/api_client.dart
+++ b/mobile/openapi/lib/api_client.dart
@ -198,6 +198,8 @@ class ApiClient {
          return ActivityStatisticsResponseDto.fromJson(value);
        case 'AddUsersDto':
          return AddUsersDto.fromJson(value);
        case 'AdminOnboardingUpdateDto':
          return AdminOnboardingUpdateDto.fromJson(value);
        case 'AlbumCountResponseDto':
          return AlbumCountResponseDto.fromJson(value);
        case 'AlbumResponseDto':
@ -248,8 +250,6 @@ class ApiClient {
          return AudioCodecTypeTransformer().decode(value);
        case 'AuditDeletesResponseDto':
          return AuditDeletesResponseDto.fromJson(value);
        case 'AuthDeviceResponseDto':
          return AuthDeviceResponseDto.fromJson(value);
        case 'BulkIdResponseDto':
          return BulkIdResponseDto.fromJson(value);
        case 'BulkIdsDto':
@ -394,6 +394,8 @@ class ApiClient {
          return ReactionTypeTypeTransformer().decode(value);
        case 'RecognitionConfig':
          return RecognitionConfig.fromJson(value);
        case 'ReverseGeocodingStateResponseDto':
          return ReverseGeocodingStateResponseDto.fromJson(value);
        case 'ScanLibraryDto':
          return ScanLibraryDto.fromJson(value);
        case 'SearchAlbumResponseDto':
@ -428,6 +430,8 @@ class ApiClient {
          return ServerThemeDto.fromJson(value);
        case 'ServerVersionResponseDto':
          return ServerVersionResponseDto.fromJson(value);
        case 'SessionResponseDto':
          return SessionResponseDto.fromJson(value);
        case 'SharedLinkCreateDto':
          return SharedLinkCreateDto.fromJson(value);
        case 'SharedLinkEditDto':
--- a/mobile/openapi/lib/model/admin_onboarding_update_dto.dart
+++ b/mobile/openapi/lib/model/admin_onboarding_update_dto.dart
@ -0,0 +1,98 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 part of openapi.api;
 class AdminOnboardingUpdateDto {
  /// Returns a new [AdminOnboardingUpdateDto] instance.
  AdminOnboardingUpdateDto({
    required this.isOnboarded,
  });
  bool isOnboarded;
  @override
  bool operator ==(Object other) => identical(this, other) || other is AdminOnboardingUpdateDto &&
    other.isOnboarded == isOnboarded;
  @override
  int get hashCode =>
    // ignore: unnecessary_parenthesis
    (isOnboarded.hashCode);
  @override
  String toString() => 'AdminOnboardingUpdateDto[isOnboarded=$isOnboarded]';
  Map<String, dynamic> toJson() {
    final json = <String, dynamic>{};
      json[r'isOnboarded'] = this.isOnboarded;
    return json;
  }
  /// Returns a new [AdminOnboardingUpdateDto] instance and imports its values from
  /// [value] if it's a [Map], null otherwise.
  // ignore: prefer_constructors_over_static_methods
  static AdminOnboardingUpdateDto? fromJson(dynamic value) {
    if (value is Map) {
      final json = value.cast<String, dynamic>();
      return AdminOnboardingUpdateDto(
        isOnboarded: mapValueOfType<bool>(json, r'isOnboarded')!,
      );
    }
    return null;
  }
  static List<AdminOnboardingUpdateDto> listFromJson(dynamic json, {bool growable = false,}) {
    final result = <AdminOnboardingUpdateDto>[];
    if (json is List && json.isNotEmpty) {
      for (final row in json) {
        final value = AdminOnboardingUpdateDto.fromJson(row);
        if (value != null) {
          result.add(value);
        }
      }
    }
    return result.toList(growable: growable);
  }
  static Map<String, AdminOnboardingUpdateDto> mapFromJson(dynamic json) {
    final map = <String, AdminOnboardingUpdateDto>{};
    if (json is Map && json.isNotEmpty) {
      json = json.cast<String, dynamic>(); // ignore: parameter_assignments
      for (final entry in json.entries) {
        final value = AdminOnboardingUpdateDto.fromJson(entry.value);
        if (value != null) {
          map[entry.key] = value;
        }
      }
    }
    return map;
  }
  // maps a json object with a list of AdminOnboardingUpdateDto-objects as value to a dart map
  static Map<String, List<AdminOnboardingUpdateDto>> mapListFromJson(dynamic json, {bool growable = false,}) {
    final map = <String, List<AdminOnboardingUpdateDto>>{};
    if (json is Map && json.isNotEmpty) {
      // ignore: parameter_assignments
      json = json.cast<String, dynamic>();
      for (final entry in json.entries) {
        map[entry.key] = AdminOnboardingUpdateDto.listFromJson(entry.value, growable: growable,);
      }
    }
    return map;
  }
  /// The list of required keys that must be present in a JSON.
  static const requiredKeys = <String>{
    'isOnboarded',
  };
 }
--- a/mobile/openapi/lib/model/reverse_geocoding_state_response_dto.dart
+++ b/mobile/openapi/lib/model/reverse_geocoding_state_response_dto.dart
@ -0,0 +1,114 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 part of openapi.api;
 class ReverseGeocodingStateResponseDto {
  /// Returns a new [ReverseGeocodingStateResponseDto] instance.
  ReverseGeocodingStateResponseDto({
    required this.lastImportFileName,
    required this.lastUpdate,
  });
  String? lastImportFileName;
  String? lastUpdate;
  @override
  bool operator ==(Object other) => identical(this, other) || other is ReverseGeocodingStateResponseDto &&
    other.lastImportFileName == lastImportFileName &&
    other.lastUpdate == lastUpdate;
  @override
  int get hashCode =>
    // ignore: unnecessary_parenthesis
    (lastImportFileName == null ? 0 : lastImportFileName!.hashCode) +
    (lastUpdate == null ? 0 : lastUpdate!.hashCode);
  @override
  String toString() => 'ReverseGeocodingStateResponseDto[lastImportFileName=$lastImportFileName, lastUpdate=$lastUpdate]';
  Map<String, dynamic> toJson() {
    final json = <String, dynamic>{};
    if (this.lastImportFileName != null) {
      json[r'lastImportFileName'] = this.lastImportFileName;
    } else {
    //  json[r'lastImportFileName'] = null;
    }
    if (this.lastUpdate != null) {
      json[r'lastUpdate'] = this.lastUpdate;
    } else {
    //  json[r'lastUpdate'] = null;
    }
    return json;
  }
  /// Returns a new [ReverseGeocodingStateResponseDto] instance and imports its values from
  /// [value] if it's a [Map], null otherwise.
  // ignore: prefer_constructors_over_static_methods
  static ReverseGeocodingStateResponseDto? fromJson(dynamic value) {
    if (value is Map) {
      final json = value.cast<String, dynamic>();
      return ReverseGeocodingStateResponseDto(
        lastImportFileName: mapValueOfType<String>(json, r'lastImportFileName'),
        lastUpdate: mapValueOfType<String>(json, r'lastUpdate'),
      );
    }
    return null;
  }
  static List<ReverseGeocodingStateResponseDto> listFromJson(dynamic json, {bool growable = false,}) {
    final result = <ReverseGeocodingStateResponseDto>[];
    if (json is List && json.isNotEmpty) {
      for (final row in json) {
        final value = ReverseGeocodingStateResponseDto.fromJson(row);
        if (value != null) {
          result.add(value);
        }
      }
    }
    return result.toList(growable: growable);
  }
  static Map<String, ReverseGeocodingStateResponseDto> mapFromJson(dynamic json) {
    final map = <String, ReverseGeocodingStateResponseDto>{};
    if (json is Map && json.isNotEmpty) {
      json = json.cast<String, dynamic>(); // ignore: parameter_assignments
      for (final entry in json.entries) {
        final value = ReverseGeocodingStateResponseDto.fromJson(entry.value);
        if (value != null) {
          map[entry.key] = value;
        }
      }
    }
    return map;
  }
  // maps a json object with a list of ReverseGeocodingStateResponseDto-objects as value to a dart map
  static Map<String, List<ReverseGeocodingStateResponseDto>> mapListFromJson(dynamic json, {bool growable = false,}) {
    final map = <String, List<ReverseGeocodingStateResponseDto>>{};
    if (json is Map && json.isNotEmpty) {
      // ignore: parameter_assignments
      json = json.cast<String, dynamic>();
      for (final entry in json.entries) {
        map[entry.key] = ReverseGeocodingStateResponseDto.listFromJson(entry.value, growable: growable,);
      }
    }
    return map;
  }
  /// The list of required keys that must be present in a JSON.
  static const requiredKeys = <String>{
    'lastImportFileName',
    'lastUpdate',
  };
 }
--- a/mobile/openapi/lib/model/auth_device_response_dto.dart
+++ b/mobile/openapi/lib/model/auth_device_response_dto.dart
@ -10,9 +10,9 @@
 part of openapi.api;
-class AuthDeviceResponseDto {
+class SessionResponseDto {
-  /// Returns a new [AuthDeviceResponseDto] instance.
+  /// Returns a new [SessionResponseDto] instance.
-  AuthDeviceResponseDto({
+  SessionResponseDto({
    required this.createdAt,
    required this.current,
    required this.deviceOS,
@ -34,7 +34,7 @@ class AuthDeviceResponseDto {
  String updatedAt;
  @override
-  bool operator ==(Object other) => identical(this, other) || other is AuthDeviceResponseDto &&
+  bool operator ==(Object other) => identical(this, other) || other is SessionResponseDto &&
    other.createdAt == createdAt &&
    other.current == current &&
    other.deviceOS == deviceOS &&
@ -53,7 +53,7 @@ class AuthDeviceResponseDto {
    (updatedAt.hashCode);
  @override
-  String toString() => 'AuthDeviceResponseDto[createdAt=$createdAt, current=$current, deviceOS=$deviceOS, deviceType=$deviceType, id=$id, updatedAt=$updatedAt]';
+  String toString() => 'SessionResponseDto[createdAt=$createdAt, current=$current, deviceOS=$deviceOS, deviceType=$deviceType, id=$id, updatedAt=$updatedAt]';
  Map<String, dynamic> toJson() {
    final json = <String, dynamic>{};
@ -66,14 +66,14 @@ class AuthDeviceResponseDto {
    return json;
  }
-  /// Returns a new [AuthDeviceResponseDto] instance and imports its values from
+  /// Returns a new [SessionResponseDto] instance and imports its values from
  /// [value] if it's a [Map], null otherwise.
  // ignore: prefer_constructors_over_static_methods
-  static AuthDeviceResponseDto? fromJson(dynamic value) {
+  static SessionResponseDto? fromJson(dynamic value) {
    if (value is Map) {
      final json = value.cast<String, dynamic>();
-      return AuthDeviceResponseDto(
+      return SessionResponseDto(
        createdAt: mapValueOfType<String>(json, r'createdAt')!,
        current: mapValueOfType<bool>(json, r'current')!,
        deviceOS: mapValueOfType<String>(json, r'deviceOS')!,
@ -85,11 +85,11 @@ class AuthDeviceResponseDto {
    return null;
  }
-  static List<AuthDeviceResponseDto> listFromJson(dynamic json, {bool growable = false,}) {
+  static List<SessionResponseDto> listFromJson(dynamic json, {bool growable = false,}) {
-    final result = <AuthDeviceResponseDto>[];
+    final result = <SessionResponseDto>[];
    if (json is List && json.isNotEmpty) {
      for (final row in json) {
-        final value = AuthDeviceResponseDto.fromJson(row);
+        final value = SessionResponseDto.fromJson(row);
        if (value != null) {
          result.add(value);
        }
@ -98,12 +98,12 @@ class AuthDeviceResponseDto {
    return result.toList(growable: growable);
  }
-  static Map<String, AuthDeviceResponseDto> mapFromJson(dynamic json) {
+  static Map<String, SessionResponseDto> mapFromJson(dynamic json) {
-    final map = <String, AuthDeviceResponseDto>{};
+    final map = <String, SessionResponseDto>{};
    if (json is Map && json.isNotEmpty) {
      json = json.cast<String, dynamic>(); // ignore: parameter_assignments
      for (final entry in json.entries) {
-        final value = AuthDeviceResponseDto.fromJson(entry.value);
+        final value = SessionResponseDto.fromJson(entry.value);
        if (value != null) {
          map[entry.key] = value;
        }
@ -112,14 +112,14 @@ class AuthDeviceResponseDto {
    return map;
  }
-  // maps a json object with a list of AuthDeviceResponseDto-objects as value to a dart map
+  // maps a json object with a list of SessionResponseDto-objects as value to a dart map
-  static Map<String, List<AuthDeviceResponseDto>> mapListFromJson(dynamic json, {bool growable = false,}) {
+  static Map<String, List<SessionResponseDto>> mapListFromJson(dynamic json, {bool growable = false,}) {
-    final map = <String, List<AuthDeviceResponseDto>>{};
+    final map = <String, List<SessionResponseDto>>{};
    if (json is Map && json.isNotEmpty) {
      // ignore: parameter_assignments
      json = json.cast<String, dynamic>();
      for (final entry in json.entries) {
-        map[entry.key] = AuthDeviceResponseDto.listFromJson(entry.value, growable: growable,);
+        map[entry.key] = SessionResponseDto.listFromJson(entry.value, growable: growable,);
      }
    }
    return map;
--- a/mobile/openapi/lib/model/system_config_image_dto.dart
+++ b/mobile/openapi/lib/model/system_config_image_dto.dart
@ -14,6 +14,7 @@ class SystemConfigImageDto {
  /// Returns a new [SystemConfigImageDto] instance.
  SystemConfigImageDto({
    required this.colorspace,
    required this.extractEmbedded,
    required this.previewFormat,
    required this.previewSize,
    required this.quality,
@ -23,6 +24,8 @@ class SystemConfigImageDto {
  Colorspace colorspace;
  bool extractEmbedded;
  ImageFormat previewFormat;
  int previewSize;
@ -36,6 +39,7 @@ class SystemConfigImageDto {
  @override
  bool operator ==(Object other) => identical(this, other) || other is SystemConfigImageDto &&
    other.colorspace == colorspace &&
    other.extractEmbedded == extractEmbedded &&
    other.previewFormat == previewFormat &&
    other.previewSize == previewSize &&
    other.quality == quality &&
@ -46,6 +50,7 @@ class SystemConfigImageDto {
  int get hashCode =>
    // ignore: unnecessary_parenthesis
    (colorspace.hashCode) +
    (extractEmbedded.hashCode) +
    (previewFormat.hashCode) +
    (previewSize.hashCode) +
    (quality.hashCode) +
@ -53,11 +58,12 @@ class SystemConfigImageDto {
    (thumbnailSize.hashCode);
  @override
-  String toString() => 'SystemConfigImageDto[colorspace=$colorspace, previewFormat=$previewFormat, previewSize=$previewSize, quality=$quality, thumbnailFormat=$thumbnailFormat, thumbnailSize=$thumbnailSize]';
+  String toString() => 'SystemConfigImageDto[colorspace=$colorspace, extractEmbedded=$extractEmbedded, previewFormat=$previewFormat, previewSize=$previewSize, quality=$quality, thumbnailFormat=$thumbnailFormat, thumbnailSize=$thumbnailSize]';
  Map<String, dynamic> toJson() {
    final json = <String, dynamic>{};
      json[r'colorspace'] = this.colorspace;
      json[r'extractEmbedded'] = this.extractEmbedded;
      json[r'previewFormat'] = this.previewFormat;
      json[r'previewSize'] = this.previewSize;
      json[r'quality'] = this.quality;
@ -75,6 +81,7 @@ class SystemConfigImageDto {
      return SystemConfigImageDto(
        colorspace: Colorspace.fromJson(json[r'colorspace'])!,
        extractEmbedded: mapValueOfType<bool>(json, r'extractEmbedded')!,
        previewFormat: ImageFormat.fromJson(json[r'previewFormat'])!,
        previewSize: mapValueOfType<int>(json, r'previewSize')!,
        quality: mapValueOfType<int>(json, r'quality')!,
@ -128,6 +135,7 @@ class SystemConfigImageDto {
  /// The list of required keys that must be present in a JSON.
  static const requiredKeys = <String>{
    'colorspace',
    'extractEmbedded',
    'previewFormat',
    'previewSize',
    'quality',
--- a/mobile/openapi/test/admin_onboarding_update_dto_test.dart
+++ b/mobile/openapi/test/admin_onboarding_update_dto_test.dart
@ -0,0 +1,27 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
 // tests for AdminOnboardingUpdateDto
 void main() {
  // final instance = AdminOnboardingUpdateDto();
  group('test AdminOnboardingUpdateDto', () {
    // bool isOnboarded
    test('to test the property `isOnboarded`', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/audit_api_test.dart
+++ b/mobile/openapi/test/audit_api_test.dart
@ -17,25 +17,10 @@ void main() {
  // final instance = AuditApi();
  group('tests for AuditApi', () {
    //Future fixAuditFiles(FileReportFixDto fileReportFixDto) async
    test('test fixAuditFiles', () async {
      // TODO
    });
    //Future<AuditDeletesResponseDto> getAuditDeletes(DateTime after, EntityType entityType, { String userId }) async
    test('test getAuditDeletes', () async {
      // TODO
    });
    //Future<FileReportDto> getAuditFiles() async
    test('test getAuditFiles', () async {
      // TODO
    });
    //Future<List<FileChecksumResponseDto>> getFileChecksums(FileChecksumDto fileChecksumDto) async
    test('test getFileChecksums', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/authentication_api_test.dart
+++ b/mobile/openapi/test/authentication_api_test.dart
@ -22,11 +22,6 @@ void main() {
      // TODO
    });
    //Future<List<AuthDeviceResponseDto>> getAuthDevices() async
    test('test getAuthDevices', () async {
      // TODO
    });
    //Future<LoginResponseDto> login(LoginCredentialDto loginCredentialDto) async
    test('test login', () async {
      // TODO
@ -37,16 +32,6 @@ void main() {
      // TODO
    });
    //Future logoutAuthDevice(String id) async
    test('test logoutAuthDevice', () async {
      // TODO
    });
    //Future logoutAuthDevices() async
    test('test logoutAuthDevices', () async {
      // TODO
    });
    //Future<UserResponseDto> signUpAdmin(SignUpDto signUpDto) async
    test('test signUpAdmin', () async {
      // TODO
--- a/mobile/openapi/test/file_report_api_test.dart
+++ b/mobile/openapi/test/file_report_api_test.dart
@ -0,0 +1,36 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
 /// tests for FileReportApi
 void main() {
  // final instance = FileReportApi();
  group('tests for FileReportApi', () {
    //Future fixAuditFiles(FileReportFixDto fileReportFixDto) async
    test('test fixAuditFiles', () async {
      // TODO
    });
    //Future<FileReportDto> getAuditFiles() async
    test('test getAuditFiles', () async {
      // TODO
    });
    //Future<List<FileChecksumResponseDto>> getFileChecksums(FileChecksumDto fileChecksumDto) async
    test('test getFileChecksums', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/reverse_geocoding_state_response_dto_test.dart
+++ b/mobile/openapi/test/reverse_geocoding_state_response_dto_test.dart
@ -0,0 +1,32 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
 // tests for ReverseGeocodingStateResponseDto
 void main() {
  // final instance = ReverseGeocodingStateResponseDto();
  group('test ReverseGeocodingStateResponseDto', () {
    // String lastImportFileName
    test('to test the property `lastImportFileName`', () async {
      // TODO
    });
    // String lastUpdate
    test('to test the property `lastUpdate`', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/server_info_api_test.dart
+++ b/mobile/openapi/test/server_info_api_test.dart
@ -57,10 +57,5 @@ void main() {
      // TODO
    });
    //Future setAdminOnboarding() async
    test('test setAdminOnboarding', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/auth_device_response_dto_test.dart
+++ b/mobile/openapi/test/auth_device_response_dto_test.dart
@ -11,11 +11,11 @@
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
-// tests for AuthDeviceResponseDto
+// tests for SessionResponseDto
 void main() {
-  // final instance = AuthDeviceResponseDto();
+  // final instance = SessionResponseDto();
-  group('test AuthDeviceResponseDto', () {
+  group('test SessionResponseDto', () {
    // String createdAt
    test('to test the property `createdAt`', () async {
      // TODO
--- a/mobile/openapi/test/sessions_api_test.dart
+++ b/mobile/openapi/test/sessions_api_test.dart
@ -0,0 +1,36 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
 /// tests for SessionsApi
 void main() {
  // final instance = SessionsApi();
  group('tests for SessionsApi', () {
    //Future deleteAllSessions() async
    test('test deleteAllSessions', () async {
      // TODO
    });
    //Future deleteSession(String id) async
    test('test deleteSession', () async {
      // TODO
    });
    //Future<List<SessionResponseDto>> getSessions() async
    test('test getSessions', () async {
      // TODO
    });
  });
 }
--- a/mobile/openapi/test/system_config_image_dto_test.dart
+++ b/mobile/openapi/test/system_config_image_dto_test.dart
@ -21,6 +21,11 @@ void main() {
      // TODO
    });
    // bool extractEmbedded
    test('to test the property `extractEmbedded`', () async {
      // TODO
    });
    // ImageFormat previewFormat
    test('to test the property `previewFormat`', () async {
      // TODO
--- a/mobile/openapi/test/system_metadata_api_test.dart
+++ b/mobile/openapi/test/system_metadata_api_test.dart
@ -0,0 +1,36 @@
 //
 // AUTO-GENERATED FILE, DO NOT MODIFY!
 //
 // @dart=2.12
 // ignore_for_file: unused_element, unused_import
 // ignore_for_file: always_put_required_named_parameters_first
 // ignore_for_file: constant_identifier_names
 // ignore_for_file: lines_longer_than_80_chars
 import 'package:openapi/api.dart';
 import 'package:test/test.dart';
 /// tests for SystemMetadataApi
 void main() {
  // final instance = SystemMetadataApi();
  group('tests for SystemMetadataApi', () {
    //Future<AdminOnboardingUpdateDto> getAdminOnboarding() async
    test('test getAdminOnboarding', () async {
      // TODO
    });
    //Future<ReverseGeocodingStateResponseDto> getReverseGeocodingState() async
    test('test getReverseGeocodingState', () async {
      // TODO
    });
    //Future updateAdminOnboarding(AdminOnboardingUpdateDto adminOnboardingUpdateDto) async
    test('test updateAdminOnboarding', () async {
      // TODO
    });
  });
 }
--- a/mobile/pubspec.lock
+++ b/mobile/pubspec.lock
@ -1804,5 +1804,5 @@ packages:
    source: hosted
    version: "3.1.2"
 sdks:
-  dart: ">=3.2.0 <4.0.0"
+  dart: ">=3.3.0 <4.0.0"
  flutter: ">=3.16.0"
--- a/mobile/pubspec.yaml
+++ b/mobile/pubspec.yaml
@ -2,10 +2,10 @@ name: immich_mobile
 description: Immich - selfhosted backup media file on mobile phone
 publish_to: 'none'
-version: 1.101.0+131
+version: 1.102.3+136
 environment:
-  sdk: '>=3.0.0 <4.0.0'
+  sdk: '>=3.3.0 <4.0.0'
 dependencies:
  flutter:
@ -105,9 +105,6 @@ flutter:
    - assets/
    - assets/i18n/
  fonts:
    - family: SnowburstOne
      fonts:
        - asset: fonts/SnowburstOne.ttf
    - family: Inconsolata
      fonts:
        - asset: fonts/Inconsolata-Regular.ttf
--- a/open-api/immich-openapi-specs.json
+++ b/open-api/immich-openapi-specs.json
@ -2345,118 +2345,6 @@
        ]
      }
    },
    "/audit/file-report": {
      "get": {
        "operationId": "getAuditFiles",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "$ref": "#/components/schemas/FileReportDto"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Audit"
        ]
      }
    },
    "/audit/file-report/checksum": {
      "post": {
        "operationId": "getFileChecksums",
        "parameters": [],
        "requestBody": {
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/FileChecksumDto"
              }
            }
          },
          "required": true
        },
        "responses": {
          "201": {
            "content": {
              "application/json": {
                "schema": {
                  "items": {
                    "$ref": "#/components/schemas/FileChecksumResponseDto"
                  },
                  "type": "array"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Audit"
        ]
      }
    },
    "/audit/file-report/fix": {
      "post": {
        "operationId": "fixAuditFiles",
        "parameters": [],
        "requestBody": {
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/FileReportFixDto"
              }
            }
          },
          "required": true
        },
        "responses": {
          "201": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Audit"
        ]
      }
    },
    "/auth/admin-sign-up": {
      "post": {
        "operationId": "signUpAdmin",
@ -2530,99 +2418,6 @@
        ]
      }
    },
    "/auth/devices": {
      "delete": {
        "operationId": "logoutAuthDevices",
        "parameters": [],
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Authentication"
        ]
      },
      "get": {
        "operationId": "getAuthDevices",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "items": {
                    "$ref": "#/components/schemas/AuthDeviceResponseDto"
                  },
                  "type": "array"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Authentication"
        ]
      }
    },
    "/auth/devices/{id}": {
      "delete": {
        "operationId": "logoutAuthDevice",
        "parameters": [
          {
            "name": "id",
            "required": true,
            "in": "path",
            "schema": {
              "format": "uuid",
              "type": "string"
            }
          }
        ],
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Authentication"
        ]
      }
    },
    "/auth/login": {
      "post": {
        "operationId": "login",
@ -4522,6 +4317,118 @@
        ]
      }
    },
    "/report": {
      "get": {
        "operationId": "getAuditFiles",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "$ref": "#/components/schemas/FileReportDto"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "File Report"
        ]
      }
    },
    "/report/checksum": {
      "post": {
        "operationId": "getFileChecksums",
        "parameters": [],
        "requestBody": {
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/FileChecksumDto"
              }
            }
          },
          "required": true
        },
        "responses": {
          "201": {
            "content": {
              "application/json": {
                "schema": {
                  "items": {
                    "$ref": "#/components/schemas/FileChecksumResponseDto"
                  },
                  "type": "array"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "File Report"
        ]
      }
    },
    "/report/fix": {
      "post": {
        "operationId": "fixAuditFiles",
        "parameters": [],
        "requestBody": {
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/FileReportFixDto"
              }
            }
          },
          "required": true
        },
        "responses": {
          "201": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "File Report"
        ]
      }
    },
    "/search": {
      "get": {
        "deprecated": true,
@ -5001,31 +4908,6 @@
        ]
      }
    },
    "/server-info/admin-onboarding": {
      "post": {
        "operationId": "setAdminOnboarding",
        "parameters": [],
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Server Info"
        ]
      }
    },
    "/server-info/config": {
      "get": {
        "operationId": "getServerConfig",
@ -5184,6 +5066,99 @@
        ]
      }
    },
    "/sessions": {
      "delete": {
        "operationId": "deleteAllSessions",
        "parameters": [],
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Sessions"
        ]
      },
      "get": {
        "operationId": "getSessions",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "items": {
                    "$ref": "#/components/schemas/SessionResponseDto"
                  },
                  "type": "array"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Sessions"
        ]
      }
    },
    "/sessions/{id}": {
      "delete": {
        "operationId": "deleteSession",
        "parameters": [
          {
            "name": "id",
            "required": true,
            "in": "path",
            "schema": {
              "format": "uuid",
              "type": "string"
            }
          }
        ],
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "Sessions"
        ]
      }
    },
    "/shared-link": {
      "get": {
        "operationId": "getAllSharedLinks",
@ -5885,6 +5860,103 @@
        ]
      }
    },
    "/system-metadata/admin-onboarding": {
      "get": {
        "operationId": "getAdminOnboarding",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "$ref": "#/components/schemas/AdminOnboardingUpdateDto"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "System Metadata"
        ]
      },
      "post": {
        "operationId": "updateAdminOnboarding",
        "parameters": [],
        "requestBody": {
          "content": {
            "application/json": {
              "schema": {
                "$ref": "#/components/schemas/AdminOnboardingUpdateDto"
              }
            }
          },
          "required": true
        },
        "responses": {
          "204": {
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "System Metadata"
        ]
      }
    },
    "/system-metadata/reverse-geocoding-state": {
      "get": {
        "operationId": "getReverseGeocodingState",
        "parameters": [],
        "responses": {
          "200": {
            "content": {
              "application/json": {
                "schema": {
                  "$ref": "#/components/schemas/ReverseGeocodingStateResponseDto"
                }
              }
            },
            "description": ""
          }
        },
        "security": [
          {
            "bearer": []
          },
          {
            "cookie": []
          },
          {
            "api_key": []
          }
        ],
        "tags": [
          "System Metadata"
        ]
      }
    },
    "/tag": {
      "get": {
        "operationId": "getAllTags",
@ -7006,7 +7078,7 @@
  "info": {
    "title": "Immich",
    "description": "Immich API",
-    "version": "1.101.0",
+    "version": "1.102.3",
    "contact": {}
  },
  "tags": [],
@ -7180,6 +7252,17 @@
        ],
        "type": "object"
      },
      "AdminOnboardingUpdateDto": {
        "properties": {
          "isOnboarded": {
            "type": "boolean"
          }
        },
        "required": [
          "isOnboarded"
        ],
        "type": "object"
      },
      "AlbumCountResponseDto": {
        "properties": {
          "notShared": {
@ -7892,37 +7975,6 @@
        ],
        "type": "object"
      },
      "AuthDeviceResponseDto": {
        "properties": {
          "createdAt": {
            "type": "string"
          },
          "current": {
            "type": "boolean"
          },
          "deviceOS": {
            "type": "string"
          },
          "deviceType": {
            "type": "string"
          },
          "id": {
            "type": "string"
          },
          "updatedAt": {
            "type": "string"
          }
        },
        "required": [
          "createdAt",
          "current",
          "deviceOS",
          "deviceType",
          "id",
          "updatedAt"
        ],
        "type": "object"
      },
      "BulkIdResponseDto": {
        "properties": {
          "error": {
@ -9649,6 +9701,23 @@
        ],
        "type": "object"
      },
      "ReverseGeocodingStateResponseDto": {
        "properties": {
          "lastImportFileName": {
            "nullable": true,
            "type": "string"
          },
          "lastUpdate": {
            "nullable": true,
            "type": "string"
          }
        },
        "required": [
          "lastImportFileName",
          "lastUpdate"
        ],
        "type": "object"
      },
      "ScanLibraryDto": {
        "properties": {
          "refreshAllFiles": {
@ -10049,6 +10118,37 @@
        ],
        "type": "object"
      },
      "SessionResponseDto": {
        "properties": {
          "createdAt": {
            "type": "string"
          },
          "current": {
            "type": "boolean"
          },
          "deviceOS": {
            "type": "string"
          },
          "deviceType": {
            "type": "string"
          },
          "id": {
            "type": "string"
          },
          "updatedAt": {
            "type": "string"
          }
        },
        "required": [
          "createdAt",
          "current",
          "deviceOS",
          "deviceType",
          "id",
          "updatedAt"
        ],
        "type": "object"
      },
      "SharedLinkCreateDto": {
        "properties": {
          "albumId": {
@ -10531,6 +10631,9 @@
          "colorspace": {
            "$ref": "#/components/schemas/Colorspace"
          },
          "extractEmbedded": {
            "type": "boolean"
          },
          "previewFormat": {
            "$ref": "#/components/schemas/ImageFormat"
          },
@ -10549,6 +10652,7 @@
        },
        "required": [
          "colorspace",
          "extractEmbedded",
          "previewFormat",
          "previewSize",
          "quality",
--- a/open-api/typescript-sdk/package-lock.json
+++ b/open-api/typescript-sdk/package-lock.json
@ -1,12 +1,12 @@
 {
  "name": "@immich/sdk",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "lockfileVersion": 3,
  "requires": true,
  "packages": {
    "": {
      "name": "@immich/sdk",
-      "version": "1.101.0",
+      "version": "1.102.3",
      "license": "GNU Affero General Public License version 3",
      "dependencies": {
        "@oazapfts/runtime": "^1.0.2"
--- a/open-api/typescript-sdk/package.json
+++ b/open-api/typescript-sdk/package.json
@ -1,6 +1,6 @@
 {
  "name": "@immich/sdk",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "description": "Auto-generated TypeScript SDK for the Immich API",
  "type": "module",
  "main": "./build/index.js",
--- a/open-api/typescript-sdk/src/fetch-client.ts
+++ b/open-api/typescript-sdk/src/fetch-client.ts
@ -1,6 +1,6 @@
 /**
 * Immich
- * 1.101.0
+ * 1.102.3
 * DO NOT MODIFY - This file has been generated using oazapfts.
 * See https://www.npmjs.com/package/oazapfts
 */
@ -316,27 +316,6 @@ export type AuditDeletesResponseDto = {
    ids: string[];
    needsFullSync: boolean;
 };
 export type FileReportItemDto = {
    checksum?: string;
    entityId: string;
    entityType: PathEntityType;
    pathType: PathType;
    pathValue: string;
 };
 export type FileReportDto = {
    extras: string[];
    orphans: FileReportItemDto[];
 };
 export type FileChecksumDto = {
    filenames: string[];
 };
 export type FileChecksumResponseDto = {
    checksum: string;
    filename: string;
 };
 export type FileReportFixDto = {
    items: FileReportItemDto[];
 };
 export type SignUpDto = {
    email: string;
    name: string;
@ -346,14 +325,6 @@ export type ChangePasswordDto = {
    newPassword: string;
    password: string;
 };
 export type AuthDeviceResponseDto = {
    createdAt: string;
    current: boolean;
    deviceOS: string;
    deviceType: string;
    id: string;
    updatedAt: string;
 };
 export type LoginCredentialDto = {
    email: string;
    password: string;
@ -607,6 +578,27 @@ export type AssetFaceUpdateDto = {
 export type PersonStatisticsResponseDto = {
    assets: number;
 };
 export type FileReportItemDto = {
    checksum?: string;
    entityId: string;
    entityType: PathEntityType;
    pathType: PathType;
    pathValue: string;
 };
 export type FileReportDto = {
    extras: string[];
    orphans: FileReportItemDto[];
 };
 export type FileChecksumDto = {
    filenames: string[];
 };
 export type FileChecksumResponseDto = {
    checksum: string;
    filename: string;
 };
 export type FileReportFixDto = {
    items: FileReportItemDto[];
 };
 export type SearchFacetCountResponseDto = {
    count: number;
    value: string;
@ -791,6 +783,14 @@ export type ServerVersionResponseDto = {
    minor: number;
    patch: number;
 };
 export type SessionResponseDto = {
    createdAt: string;
    current: boolean;
    deviceOS: string;
    deviceType: string;
    id: string;
    updatedAt: string;
 };
 export type SharedLinkResponseDto = {
    album?: AlbumResponseDto;
    allowDownload: boolean;
@ -864,6 +864,7 @@ export type SystemConfigFFmpegDto = {
 };
 export type SystemConfigImageDto = {
    colorspace: Colorspace;
    extractEmbedded: boolean;
    previewFormat: ImageFormat;
    previewSize: number;
    quality: number;
@ -997,6 +998,13 @@ export type SystemConfigTemplateStorageOptionDto = {
    weekOptions: string[];
    yearOptions: string[];
 };
 export type AdminOnboardingUpdateDto = {
    isOnboarded: boolean;
 };
 export type ReverseGeocodingStateResponseDto = {
    lastImportFileName: string | null;
    lastUpdate: string | null;
 };
 export type CreateTagDto = {
    name: string;
    "type": TagTypeEnum;
@ -1650,35 +1658,6 @@ export function getAuditDeletes({ after, entityType, userId }: {
        ...opts
    }));
 }
 export function getAuditFiles(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: FileReportDto;
    }>("/audit/file-report", {
        ...opts
    }));
 }
 export function getFileChecksums({ fileChecksumDto }: {
    fileChecksumDto: FileChecksumDto;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 201;
        data: FileChecksumResponseDto[];
    }>("/audit/file-report/checksum", oazapfts.json({
        ...opts,
        method: "POST",
        body: fileChecksumDto
    })));
 }
 export function fixAuditFiles({ fileReportFixDto }: {
    fileReportFixDto: FileReportFixDto;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/audit/file-report/fix", oazapfts.json({
        ...opts,
        method: "POST",
        body: fileReportFixDto
    })));
 }
 export function signUpAdmin({ signUpDto }: {
    signUpDto: SignUpDto;
 }, opts?: Oazapfts.RequestOpts) {
@ -1703,28 +1682,6 @@ export function changePassword({ changePasswordDto }: {
        body: changePasswordDto
    })));
 }
 export function logoutAuthDevices(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/auth/devices", {
        ...opts,
        method: "DELETE"
    }));
 }
 export function getAuthDevices(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: AuthDeviceResponseDto[];
    }>("/auth/devices", {
        ...opts
    }));
 }
 export function logoutAuthDevice({ id }: {
    id: string;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText(`/auth/devices/${encodeURIComponent(id)}`, {
        ...opts,
        method: "DELETE"
    }));
 }
 export function login({ loginCredentialDto }: {
    loginCredentialDto: LoginCredentialDto;
 }, opts?: Oazapfts.RequestOpts) {
@ -2227,6 +2184,35 @@ export function getPersonThumbnail({ id }: {
        ...opts
    }));
 }
 export function getAuditFiles(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: FileReportDto;
    }>("/report", {
        ...opts
    }));
 }
 export function getFileChecksums({ fileChecksumDto }: {
    fileChecksumDto: FileChecksumDto;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 201;
        data: FileChecksumResponseDto[];
    }>("/report/checksum", oazapfts.json({
        ...opts,
        method: "POST",
        body: fileChecksumDto
    })));
 }
 export function fixAuditFiles({ fileReportFixDto }: {
    fileReportFixDto: FileReportFixDto;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/report/fix", oazapfts.json({
        ...opts,
        method: "POST",
        body: fileReportFixDto
    })));
 }
 export function search({ clip, motion, page, q, query, recent, size, smart, $type, withArchived }: {
    clip?: boolean;
    motion?: boolean;
@ -2351,12 +2337,6 @@ export function getServerInfo(opts?: Oazapfts.RequestOpts) {
        ...opts
    }));
 }
 export function setAdminOnboarding(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/server-info/admin-onboarding", {
        ...opts,
        method: "POST"
    }));
 }
 export function getServerConfig(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
@ -2413,6 +2393,28 @@ export function getServerVersion(opts?: Oazapfts.RequestOpts) {
        ...opts
    }));
 }
 export function deleteAllSessions(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/sessions", {
        ...opts,
        method: "DELETE"
    }));
 }
 export function getSessions(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: SessionResponseDto[];
    }>("/sessions", {
        ...opts
    }));
 }
 export function deleteSession({ id }: {
    id: string;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText(`/sessions/${encodeURIComponent(id)}`, {
        ...opts,
        method: "DELETE"
    }));
 }
 export function getAllSharedLinks(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
@ -2596,6 +2598,31 @@ export function getStorageTemplateOptions(opts?: Oazapfts.RequestOpts) {
        ...opts
    }));
 }
 export function getAdminOnboarding(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: AdminOnboardingUpdateDto;
    }>("/system-metadata/admin-onboarding", {
        ...opts
    }));
 }
 export function updateAdminOnboarding({ adminOnboardingUpdateDto }: {
    adminOnboardingUpdateDto: AdminOnboardingUpdateDto;
 }, opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchText("/system-metadata/admin-onboarding", oazapfts.json({
        ...opts,
        method: "POST",
        body: adminOnboardingUpdateDto
    })));
 }
 export function getReverseGeocodingState(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
        data: ReverseGeocodingStateResponseDto;
    }>("/system-metadata/reverse-geocoding-state", {
        ...opts
    }));
 }
 export function getAllTags(opts?: Oazapfts.RequestOpts) {
    return oazapfts.ok(oazapfts.fetchJson<{
        status: 200;
@ -2947,20 +2974,6 @@ export enum EntityType {
    Asset = "ASSET",
    Album = "ALBUM"
 }
 export enum PathEntityType {
    Asset = "asset",
    Person = "person",
    User = "user"
 }
 export enum PathType {
    Original = "original",
    Preview = "preview",
    Thumbnail = "thumbnail",
    EncodedVideo = "encoded_video",
    Sidecar = "sidecar",
    Face = "face",
    Profile = "profile"
 }
 export enum JobName {
    ThumbnailGeneration = "thumbnailGeneration",
    MetadataExtraction = "metadataExtraction",
@ -2992,6 +3005,20 @@ export enum Type2 {
 export enum MemoryType {
    OnThisDay = "on_this_day"
 }
 export enum PathEntityType {
    Asset = "asset",
    Person = "person",
    User = "user"
 }
 export enum PathType {
    Original = "original",
    Preview = "preview",
    Thumbnail = "thumbnail",
    EncodedVideo = "encoded_video",
    Sidecar = "sidecar",
    Face = "face",
    Profile = "profile"
 }
 export enum SearchSuggestionType {
    Country = "country",
    State = "state",
--- a/renovate.json
+++ b/renovate.json
@ -27,7 +27,8 @@
      "matchFileNames": ["mobile/**"],
      "groupName": "mobile",
      "matchUpdateTypes": ["minor", "patch"],
-      "schedule": "on tuesday"
+      "schedule": "on tuesday",
      "addLabels": ["📱mobile"]
    },
    {
      "groupName": "exiftool",
--- a/server/Dockerfile
+++ b/server/Dockerfile
@ -25,7 +25,7 @@ COPY --from=dev /usr/src/app/node_modules/@img ./node_modules/@img
 COPY --from=dev /usr/src/app/node_modules/exiftool-vendored.pl ./node_modules/exiftool-vendored.pl
 # web build
-FROM node:iron-alpine3.18@sha256:3fb85a68652064ab109ed9730f45a3ede11f064afdd3ad9f96ef7e8a3c55f47e as web
+FROM node:iron-alpine3.18@sha256:d328c7bc3305e1ab26491817936c8151a47a8861ad617c16c1eeaa9c8075c8f6 as web
 WORKDIR /usr/src/open-api/typescript-sdk
 COPY open-api/typescript-sdk/package*.json open-api/typescript-sdk/tsconfig*.json ./
--- a/server/package-lock.json
+++ b/server/package-lock.json
@ -1,12 +1,12 @@
 {
  "name": "immich",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "lockfileVersion": 2,
  "requires": true,
  "packages": {
    "": {
      "name": "immich",
-      "version": "1.101.0",
+      "version": "1.102.3",
      "license": "GNU Affero General Public License version 3",
      "dependencies": {
        "@nestjs/bullmq": "^10.0.1",
--- a/server/package.json
+++ b/server/package.json
@ -1,6 +1,6 @@
 {
  "name": "immich",
-  "version": "1.101.0",
+  "version": "1.102.3",
  "description": "",
  "author": "",
  "private": true,
--- a/server/src/commands/list-users.command.ts
+++ b/server/src/commands/list-users.command.ts
@ -1,5 +1,4 @@
 import { Command, CommandRunner } from 'nest-commander';
 import { UserEntity } from 'src/entities/user.entity';
 import { UserService } from 'src/services/user.service';
@Command({
@ -13,16 +12,7 @@ export class ListUsersCommand extends CommandRunner {
  async run(): Promise<void> {
    try {
-      const users = await this.userService.getAll(
+      const users = await this.userService.listUsers();
        {
          user: {
            id: 'cli',
            email: 'cli@immich.app',
            isAdmin: true,
          } as UserEntity,
        },
        true,
      );
      console.dir(users);
    } catch (error) {
      console.error(error);
--- a/server/src/constants.ts
+++ b/server/src/constants.ts
@ -26,12 +26,7 @@ export const geodataCities500Path = join(GEODATA_ROOT_PATH, citiesFile);
 export const MOBILE_REDIRECT = 'app.immich:/';
 export const LOGIN_URL = '/auth/login?autoLaunch=0';
-export const IMMICH_ACCESS_COOKIE = 'immich_access_token';
+
 export const IMMICH_IS_AUTHENTICATED = 'immich_is_authenticated';
 export const IMMICH_AUTH_TYPE_COOKIE = 'immich_auth_type';
 export const IMMICH_API_KEY_NAME = 'api_key';
 export const IMMICH_API_KEY_HEADER = 'x-api-key';
 export const IMMICH_SHARED_LINK_ACCESS_COOKIE = 'immich_shared_link_token';
 export enum AuthType {
  PASSWORD = 'password',
  OAUTH = 'oauth',
--- a/server/src/controllers/audit.controller.ts
+++ b/server/src/controllers/audit.controller.ts
@ -1,15 +1,8 @@
-import { Body, Controller, Get, Post, Query } from '@nestjs/common';
+import { Controller, Get, Query } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
-import {
+import { AuditDeletesDto, AuditDeletesResponseDto } from 'src/dtos/audit.dto';
  AuditDeletesDto,
  AuditDeletesResponseDto,
  FileChecksumDto,
  FileChecksumResponseDto,
  FileReportDto,
  FileReportFixDto,
 } from 'src/dtos/audit.dto';
 import { AuthDto } from 'src/dtos/auth.dto';
-import { AdminRoute, Auth, Authenticated } from 'src/middleware/auth.guard';
+import { Auth, Authenticated } from 'src/middleware/auth.guard';
 import { AuditService } from 'src/services/audit.service';
@ApiTags('Audit')
@ -22,22 +15,4 @@ export class AuditController {
  getAuditDeletes(@Auth() auth: AuthDto, @Query() dto: AuditDeletesDto): Promise<AuditDeletesResponseDto> {
    return this.service.getDeletes(auth, dto);
  }
  @AdminRoute()
  @Get('file-report')
  getAuditFiles(): Promise<FileReportDto> {
    return this.service.getFileReport();
  }
  @AdminRoute()
  @Post('file-report/checksum')
  getFileChecksums(@Body() dto: FileChecksumDto): Promise<FileChecksumResponseDto[]> {
    return this.service.getChecksums(dto);
  }
  @AdminRoute()
  @Post('file-report/fix')
  fixAuditFiles(@Body() dto: FileReportFixDto): Promise<void> {
    return this.service.fixItems(dto.items);
  }
 }
--- a/server/src/controllers/auth.controller.ts
+++ b/server/src/controllers/auth.controller.ts
@ -1,11 +1,11 @@
-import { Body, Controller, Delete, Get, HttpCode, HttpStatus, Param, Post, Req, Res } from '@nestjs/common';
+import { Body, Controller, HttpCode, HttpStatus, Post, Req, Res } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { Request, Response } from 'express';
-import { IMMICH_ACCESS_COOKIE, IMMICH_AUTH_TYPE_COOKIE, IMMICH_IS_AUTHENTICATED } from 'src/constants';
+import { AuthType } from 'src/constants';
 import {
  AuthDeviceResponseDto,
  AuthDto,
  ChangePasswordDto,
  ImmichCookie,
  LoginCredentialDto,
  LoginResponseDto,
  LogoutResponseDto,
@ -15,7 +15,7 @@ import {
 import { UserResponseDto, mapUser } from 'src/dtos/user.dto';
 import { Auth, Authenticated, GetLoginDetails, PublicRoute } from 'src/middleware/auth.guard';
 import { AuthService, LoginDetails } from 'src/services/auth.service';
-import { UUIDParamDto } from 'src/validation';
+import { respondWithCookie, respondWithoutCookie } from 'src/utils/response';
@ApiTags('Authentication')
@Controller('auth')
@ -30,9 +30,15 @@ export class AuthController {
    @Res({ passthrough: true }) res: Response,
    @GetLoginDetails() loginDetails: LoginDetails,
  ): Promise<LoginResponseDto> {
-    const { response, cookie } = await this.service.login(loginCredential, loginDetails);
+    const body = await this.service.login(loginCredential, loginDetails);
-    res.header('Set-Cookie', cookie);
+    return respondWithCookie(res, body, {
-    return response;
+      isSecure: loginDetails.isSecure,
      values: [
        { key: ImmichCookie.ACCESS_TOKEN, value: body.accessToken },
        { key: ImmichCookie.AUTH_TYPE, value: AuthType.PASSWORD },
        { key: ImmichCookie.IS_AUTHENTICATED, value: 'true' },
      ],
    });
  }
  @PublicRoute()
@ -41,23 +47,6 @@ export class AuthController {
    return this.service.adminSignUp(dto);
  }
  @Get('devices')
  getAuthDevices(@Auth() auth: AuthDto): Promise<AuthDeviceResponseDto[]> {
    return this.service.getDevices(auth);
  }
  @Delete('devices')
  @HttpCode(HttpStatus.NO_CONTENT)
  logoutAuthDevices(@Auth() auth: AuthDto): Promise<void> {
    return this.service.logoutDevices(auth);
  }
  @Delete('devices/:id')
  @HttpCode(HttpStatus.NO_CONTENT)
  logoutAuthDevice(@Auth() auth: AuthDto, @Param() { id }: UUIDParamDto): Promise<void> {
    return this.service.logoutDevice(auth, id);
  }
  @Post('validateToken')
  @HttpCode(HttpStatus.OK)
  validateAccessToken(): ValidateAccessTokenResponseDto {
@ -72,15 +61,18 @@ export class AuthController {
  @Post('logout')
  @HttpCode(HttpStatus.OK)
-  logout(
+  async logout(
    @Req() request: Request,
    @Res({ passthrough: true }) res: Response,
    @Auth() auth: AuthDto,
  ): Promise<LogoutResponseDto> {
-    res.clearCookie(IMMICH_ACCESS_COOKIE);
+    const authType = (request.cookies || {})[ImmichCookie.AUTH_TYPE];
    res.clearCookie(IMMICH_AUTH_TYPE_COOKIE);
    res.clearCookie(IMMICH_IS_AUTHENTICATED);
-    return this.service.logout(auth, (request.cookies || {})[IMMICH_AUTH_TYPE_COOKIE]);
+    const body = await this.service.logout(auth, authType);
    return respondWithoutCookie(res, body, [
      ImmichCookie.ACCESS_TOKEN,
      ImmichCookie.AUTH_TYPE,
      ImmichCookie.IS_AUTHENTICATED,
    ]);
  }
 }
--- a/server/src/controllers/file-report.controller.ts
+++ b/server/src/controllers/file-report.controller.ts
@ -0,0 +1,30 @@
 import { Body, Controller, Get, Post } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { FileChecksumDto, FileChecksumResponseDto, FileReportDto, FileReportFixDto } from 'src/dtos/audit.dto';
 import { AdminRoute, Authenticated } from 'src/middleware/auth.guard';
 import { AuditService } from 'src/services/audit.service';
@ApiTags('File Report')
@Controller('report')
@Authenticated()
 export class ReportController {
  constructor(private service: AuditService) {}
  @AdminRoute()
  @Get()
  getAuditFiles(): Promise<FileReportDto> {
    return this.service.getFileReport();
  }
  @AdminRoute()
  @Post('/checksum')
  getFileChecksums(@Body() dto: FileChecksumDto): Promise<FileChecksumResponseDto[]> {
    return this.service.getChecksums(dto);
  }
  @AdminRoute()
  @Post('/fix')
  fixAuditFiles(@Body() dto: FileReportFixDto): Promise<void> {
    return this.service.fixItems(dto.items);
  }
 }
--- a/server/src/controllers/index.ts
+++ b/server/src/controllers/index.ts
@ -8,6 +8,7 @@ import { AuditController } from 'src/controllers/audit.controller';
 import { AuthController } from 'src/controllers/auth.controller';
 import { DownloadController } from 'src/controllers/download.controller';
 import { FaceController } from 'src/controllers/face.controller';
 import { ReportController } from 'src/controllers/file-report.controller';
 import { JobController } from 'src/controllers/job.controller';
 import { LibraryController } from 'src/controllers/library.controller';
 import { MemoryController } from 'src/controllers/memory.controller';
@ -16,22 +17,24 @@ import { PartnerController } from 'src/controllers/partner.controller';
 import { PersonController } from 'src/controllers/person.controller';
 import { SearchController } from 'src/controllers/search.controller';
 import { ServerInfoController } from 'src/controllers/server-info.controller';
 import { SessionController } from 'src/controllers/session.controller';
 import { SharedLinkController } from 'src/controllers/shared-link.controller';
 import { SyncController } from 'src/controllers/sync.controller';
 import { SystemConfigController } from 'src/controllers/system-config.controller';
 import { SystemMetadataController } from 'src/controllers/system-metadata.controller';
 import { TagController } from 'src/controllers/tag.controller';
 import { TimelineController } from 'src/controllers/timeline.controller';
 import { TrashController } from 'src/controllers/trash.controller';
 import { UserController } from 'src/controllers/user.controller';
 export const controllers = [
  ActivityController,
  AssetsController,
  AssetControllerV1,
  AssetController,
  AppController,
  AlbumController,
  APIKeyController,
  ActivityController,
  AlbumController,
  AppController,
  AssetController,
  AssetControllerV1,
  AssetsController,
  AuditController,
  AuthController,
  DownloadController,
@ -41,14 +44,17 @@ export const controllers = [
  MemoryController,
  OAuthController,
  PartnerController,
  PersonController,
  ReportController,
  SearchController,
  ServerInfoController,
  SessionController,
  SharedLinkController,
  SyncController,
  SystemConfigController,
  SystemMetadataController,
  TagController,
  TimelineController,
  TrashController,
  UserController,
  PersonController,
 ];
--- a/server/src/controllers/oauth.controller.ts
+++ b/server/src/controllers/oauth.controller.ts
@ -1,8 +1,10 @@
 import { Body, Controller, Get, HttpStatus, Post, Redirect, Req, Res } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { Request, Response } from 'express';
 import { AuthType } from 'src/constants';
 import {
  AuthDto,
  ImmichCookie,
  LoginResponseDto,
  OAuthAuthorizeResponseDto,
  OAuthCallbackDto,
@ -11,6 +13,7 @@ import {
 import { UserResponseDto } from 'src/dtos/user.dto';
 import { Auth, Authenticated, GetLoginDetails, PublicRoute } from 'src/middleware/auth.guard';
 import { AuthService, LoginDetails } from 'src/services/auth.service';
 import { respondWithCookie } from 'src/utils/response';
@ApiTags('OAuth')
@Controller('oauth')
@ -41,9 +44,15 @@ export class OAuthController {
    @Body() dto: OAuthCallbackDto,
    @GetLoginDetails() loginDetails: LoginDetails,
  ): Promise<LoginResponseDto> {
-    const { response, cookie } = await this.service.callback(dto, loginDetails);
+    const body = await this.service.callback(dto, loginDetails);
-    res.header('Set-Cookie', cookie);
+    return respondWithCookie(res, body, {
-    return response;
+      isSecure: loginDetails.isSecure,
      values: [
        { key: ImmichCookie.ACCESS_TOKEN, value: body.accessToken },
        { key: ImmichCookie.AUTH_TYPE, value: AuthType.OAUTH },
        { key: ImmichCookie.IS_AUTHENTICATED, value: 'true' },
      ],
    });
  }
  @Post('link')
--- a/server/src/controllers/server-info.controller.ts
+++ b/server/src/controllers/server-info.controller.ts
@ -1,4 +1,4 @@
-import { Controller, Get, HttpCode, HttpStatus, Post } from '@nestjs/common';
+import { Controller, Get } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import {
  ServerConfigDto,
@ -65,11 +65,4 @@ export class ServerInfoController {
  getSupportedMediaTypes(): ServerMediaTypesResponseDto {
    return this.service.getSupportedMediaTypes();
  }
  @AdminRoute()
  @Post('admin-onboarding')
  @HttpCode(HttpStatus.NO_CONTENT)
  setAdminOnboarding(): Promise<void> {
    return this.service.setAdminOnboarding();
  }
 }
--- a/server/src/controllers/session.controller.ts
+++ b/server/src/controllers/session.controller.ts
@ -0,0 +1,31 @@
 import { Controller, Delete, Get, HttpCode, HttpStatus, Param } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { AuthDto } from 'src/dtos/auth.dto';
 import { SessionResponseDto } from 'src/dtos/session.dto';
 import { Auth, Authenticated } from 'src/middleware/auth.guard';
 import { SessionService } from 'src/services/session.service';
 import { UUIDParamDto } from 'src/validation';
@ApiTags('Sessions')
@Controller('sessions')
@Authenticated()
 export class SessionController {
  constructor(private service: SessionService) {}
  @Get()
  getSessions(@Auth() auth: AuthDto): Promise<SessionResponseDto[]> {
    return this.service.getAll(auth);
  }
  @Delete()
  @HttpCode(HttpStatus.NO_CONTENT)
  deleteAllSessions(@Auth() auth: AuthDto): Promise<void> {
    return this.service.deleteAll(auth);
  }
  @Delete(':id')
  @HttpCode(HttpStatus.NO_CONTENT)
  deleteSession(@Auth() auth: AuthDto, @Param() { id }: UUIDParamDto): Promise<void> {
    return this.service.delete(auth, id);
  }
 }
--- a/server/src/controllers/shared-link.controller.ts
+++ b/server/src/controllers/shared-link.controller.ts
@ -1,18 +1,19 @@
 import { Body, Controller, Delete, Get, Param, Patch, Post, Put, Query, Req, Res } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { Request, Response } from 'express';
 import { IMMICH_SHARED_LINK_ACCESS_COOKIE } from 'src/constants';
 import { AssetIdsResponseDto } from 'src/dtos/asset-ids.response.dto';
 import { AssetIdsDto } from 'src/dtos/asset.dto';
-import { AuthDto } from 'src/dtos/auth.dto';
+import { AuthDto, ImmichCookie } from 'src/dtos/auth.dto';
 import {
  SharedLinkCreateDto,
  SharedLinkEditDto,
  SharedLinkPasswordDto,
  SharedLinkResponseDto,
 } from 'src/dtos/shared-link.dto';
-import { Auth, Authenticated, SharedLinkRoute } from 'src/middleware/auth.guard';
+import { Auth, Authenticated, GetLoginDetails, SharedLinkRoute } from 'src/middleware/auth.guard';
 import { LoginDetails } from 'src/services/auth.service';
 import { SharedLinkService } from 'src/services/shared-link.service';
 import { respondWithCookie } from 'src/utils/response';
 import { UUIDParamDto } from 'src/validation';
@ApiTags('Shared Link')
@ -33,20 +34,17 @@ export class SharedLinkController {
    @Query() dto: SharedLinkPasswordDto,
    @Req() request: Request,
    @Res({ passthrough: true }) res: Response,
    @GetLoginDetails() loginDetails: LoginDetails,
  ): Promise<SharedLinkResponseDto> {
-    const sharedLinkToken = request.cookies?.[IMMICH_SHARED_LINK_ACCESS_COOKIE];
+    const sharedLinkToken = request.cookies?.[ImmichCookie.SHARED_LINK_TOKEN];
    if (sharedLinkToken) {
      dto.token = sharedLinkToken;
    }
-    const response = await this.service.getMine(auth, dto);
+    const body = await this.service.getMine(auth, dto);
-    if (response.token) {
+    return respondWithCookie(res, body, {
-      res.cookie(IMMICH_SHARED_LINK_ACCESS_COOKIE, response.token, {
+      isSecure: loginDetails.isSecure,
-        expires: new Date(Date.now() + 1000 * 60 * 60 * 24),
+      values: body.token ? [{ key: ImmichCookie.SHARED_LINK_TOKEN, value: body.token }] : [],
-        httpOnly: true,
+    });
        sameSite: 'lax',
      });
    }
    return response;
  }
  @Get(':id')
--- a/server/src/controllers/system-metadata.controller.ts
+++ b/server/src/controllers/system-metadata.controller.ts
@ -0,0 +1,28 @@
 import { Body, Controller, Get, HttpCode, HttpStatus, Post } from '@nestjs/common';
 import { ApiTags } from '@nestjs/swagger';
 import { AdminOnboardingUpdateDto, ReverseGeocodingStateResponseDto } from 'src/dtos/system-metadata.dto';
 import { Authenticated } from 'src/middleware/auth.guard';
 import { SystemMetadataService } from 'src/services/system-metadata.service';
@ApiTags('System Metadata')
@Controller('system-metadata')
@Authenticated({ admin: true })
 export class SystemMetadataController {
  constructor(private service: SystemMetadataService) {}
  @Get('admin-onboarding')
  getAdminOnboarding(): Promise<AdminOnboardingUpdateDto> {
    return this.service.getAdminOnboarding();
  }
  @Post('admin-onboarding')
  @HttpCode(HttpStatus.NO_CONTENT)
  updateAdminOnboarding(@Body() dto: AdminOnboardingUpdateDto): Promise<void> {
    return this.service.updateAdminOnboarding(dto);
  }
  @Get('reverse-geocoding-state')
  getReverseGeocodingState(): Promise<ReverseGeocodingStateResponseDto> {
    return this.service.getReverseGeocodingState();
  }
 }
--- a/server/src/cores/storage.core.ts
+++ b/server/src/cores/storage.core.ts
@ -1,3 +1,4 @@
 import { randomUUID } from 'node:crypto';
 import { dirname, join, resolve } from 'node:path';
 import { APP_MEDIA_LOCATION } from 'src/constants';
 import { SystemConfigCore } from 'src/cores/system-config.core';
@ -308,4 +309,8 @@ export class StorageCore {
  static getNestedPath(folder: StorageFolder, ownerId: string, filename: string): string {
    return join(this.getNestedFolder(folder, ownerId, filename), filename);
  }
  static getTempPathInDir(dir: string): string {
    return join(dir, `${randomUUID()}.tmp`);
  }
 }
--- a/server/src/cores/system-config.core.ts
+++ b/server/src/cores/system-config.core.ts
@ -120,6 +120,7 @@ export const defaults = Object.freeze<SystemConfig>({
    previewSize: 1440,
    quality: 80,
    colorspace: Colorspace.P3,
    extractEmbedded: false,
  },
  newVersionCheck: {
    enabled: true,
--- a/server/src/dtos/auth.dto.ts
+++ b/server/src/dtos/auth.dto.ts
@ -2,16 +2,35 @@ import { ApiProperty } from '@nestjs/swagger';
 import { Transform } from 'class-transformer';
 import { IsEmail, IsNotEmpty, IsString, MinLength } from 'class-validator';
 import { APIKeyEntity } from 'src/entities/api-key.entity';
 import { SessionEntity } from 'src/entities/session.entity';
 import { SharedLinkEntity } from 'src/entities/shared-link.entity';
 import { UserTokenEntity } from 'src/entities/user-token.entity';
 import { UserEntity } from 'src/entities/user.entity';
 export enum ImmichCookie {
  ACCESS_TOKEN = 'immich_access_token',
  AUTH_TYPE = 'immich_auth_type',
  IS_AUTHENTICATED = 'immich_is_authenticated',
  SHARED_LINK_TOKEN = 'immich_shared_link_token',
 }
 export enum ImmichHeader {
  API_KEY = 'x-api-key',
  USER_TOKEN = 'x-immich-user-token',
  SESSION_TOKEN = 'x-immich-session-token',
  SHARED_LINK_TOKEN = 'x-immich-share-key',
 }
 export type CookieResponse = {
  isSecure: boolean;
  values: Array<{ key: ImmichCookie; value: string }>;
 };
 export class AuthDto {
  user!: UserEntity;
  apiKey?: APIKeyEntity;
  sharedLink?: SharedLinkEntity;
-  userToken?: UserTokenEntity;
+  session?: SessionEntity;
 }
 export class LoginCredentialDto {
@ -39,7 +58,7 @@ export class LoginResponseDto {
 export function mapLoginResponse(entity: UserEntity, accessToken: string): LoginResponseDto {
  return {
-    accessToken: accessToken,
+    accessToken,
    userId: entity.id,
    userEmail: entity.email,
    name: entity.name,
@ -78,24 +97,6 @@ export class ValidateAccessTokenResponseDto {
  authStatus!: boolean;
 }
 export class AuthDeviceResponseDto {
  id!: string;
  createdAt!: string;
  updatedAt!: string;
  current!: boolean;
  deviceType!: string;
  deviceOS!: string;
 }
 export const mapUserToken = (entity: UserTokenEntity, currentId?: string): AuthDeviceResponseDto => ({
  id: entity.id,
  createdAt: entity.createdAt.toISOString(),
  updatedAt: entity.updatedAt.toISOString(),
  current: currentId === entity.id,
  deviceOS: entity.deviceOS,
  deviceType: entity.deviceType,
 });
 export class OAuthCallbackDto {
  @IsNotEmpty()
  @IsString()
--- a/server/src/dtos/session.dto.ts
+++ b/server/src/dtos/session.dto.ts
@ -0,0 +1,19 @@
 import { SessionEntity } from 'src/entities/session.entity';
 export class SessionResponseDto {
  id!: string;
  createdAt!: string;
  updatedAt!: string;
  current!: boolean;
  deviceType!: string;
  deviceOS!: string;
 }
 export const mapSession = (entity: SessionEntity, currentId?: string): SessionResponseDto => ({
  id: entity.id,
  createdAt: entity.createdAt.toISOString(),
  updatedAt: entity.updatedAt.toISOString(),
  current: currentId === entity.id,
  deviceOS: entity.deviceOS,
  deviceType: entity.deviceType,
 });
--- a/server/src/dtos/system-config.dto.ts
+++ b/server/src/dtos/system-config.dto.ts
@ -417,6 +417,9 @@ class SystemConfigImageDto {
  @IsEnum(Colorspace)
  @ApiProperty({ enumName: 'Colorspace', enum: Colorspace })
  colorspace!: Colorspace;
  @ValidateBoolean()
  extractEmbedded!: boolean;
 }
 class SystemConfigTrashDto {
--- a/Show More
+++ b/Show More