feat(server): granular permissions for api keys (#11824)

feat(server): api auth permissions

web/src/lib/components/user-settings-page/user-api-key-list.svelte

@@ -1,6 +1,13 @@
 <script lang="ts">
   import { locale } from '$lib/stores/preferences.store';
-  import { createApiKey, deleteApiKey, getApiKeys, updateApiKey, type ApiKeyResponseDto } from '@immich/sdk';
+  import {
+    createApiKey,
+    deleteApiKey,
+    getApiKeys,
+    Permission,
+    updateApiKey,
+    type ApiKeyResponseDto,
+  } from '@immich/sdk';
   import { mdiPencilOutline, mdiTrashCanOutline } from '@mdi/js';
   import { fade } from 'svelte/transition';
   import { handleError } from '../../utils/handle-error';
@@ -14,7 +21,7 @@
 
   export let keys: ApiKeyResponseDto[];
 
-  let newKey: Partial<ApiKeyResponseDto> | null = null;
+  let newKey: { name: string } | null = null;
   let editKey: ApiKeyResponseDto | null = null;
   let secret = '';
 
@@ -28,9 +35,14 @@
     keys = await getApiKeys();
   }
 
-  const handleCreate = async (detail: Partial<ApiKeyResponseDto>) => {
+  const handleCreate = async ({ name }: { name: string }) => {
     try {
-      const data = await createApiKey({ apiKeyCreateDto: detail });
+      const data = await createApiKey({
+        apiKeyCreateDto: {
+          name,
+          permissions: [Permission.All],
+        },
+      });
       secret = data.secret;
     } catch (error) {
       handleError(error, $t('errors.unable_to_create_api_key'));
@@ -84,8 +96,8 @@
     title={$t('new_api_key')}
     submitText={$t('create')}
     apiKey={newKey}
-    on:submit={({ detail }) => handleCreate(detail)}
-    on:cancel={() => (newKey = null)}
+    onSubmit={(key) => handleCreate(key)}
+    onCancel={() => (newKey = null)}
   />
 {/if}
 
@@ -98,8 +110,8 @@
     title={$t('api_key')}
     submitText={$t('save')}
     apiKey={editKey}
-    on:submit={({ detail }) => handleUpdate(detail)}
-    on:cancel={() => (editKey = null)}
+    onSubmit={(key) => handleUpdate(key)}
+    onCancel={() => (editKey = null)}
   />
 {/if}