docs: Split features into new administration category (#1440)

* docs: Split features into new administration category

* docs: Add redirects for moved pages

docs/docs/features/jobs.md

@@ -1,23 +0,0 @@
-# Jobs
-
-Several Immich functionalities are implemented as jobs, which run in the background. To view the status of a job navigate to the Administration Screen, and then the `Jobs` page.
-
-
-## Generate Thumbnails
-
-![Generate Thumbnails](./img/admin-jobs-thumbnails.png)
-
-
-## Extract Exif
-
-![Extract Exif](./img/admin-jobs-exif.png)
-
-## Detect Objects
-
-![Detect Objects](./img/admin-jobs-objects.png)
-
-## Storage Migration
-
-This job can be run after changing the [Storage Template](/docs/features/storage-template.mdx), in order to apply the change to the existing library.
-
-![Storage Migration](./img/admin-jobs-template.png)

docs/docs/features/oauth.md

@@ -1,107 +0,0 @@
-# OAuth Authentication
-
-This page contains details about using OAuth in Immich.
-
-:::tip
-Unable to set `app.immich:/` as a valid redirect URI? See [Mobile Redirect URI](#mobile-redirect-uri) for an alternative solution.
-:::
-
-## Overview
-
-Immich supports 3rd party authentication via [OpenID Connect][oidc] (OIDC), an identity layer built on top of OAuth2. OIDC is supported by most identity providers, including:
-
-- [Authentik](https://goauthentik.io/integrations/sources/oauth/#openid-connect)
-- [Authelia](https://www.authelia.com/configuration/identity-providers/open-id-connect/)
-- [Okta](https://www.okta.com/openid-connect/)
-- [Google](https://developers.google.com/identity/openid-connect/openid-connect)
-
-## Prerequisites
-
-Before enabling OAuth in Immich, a new client application needs to be configured in the 3rd-party authentication server. While the specifics of this setup vary from provider to provider, the general approach should be the same.
-
-1. Create a new (Client) Application
-
-   1. The **Provider** type should be `OpenID Connect` or `OAuth2`
-   2. The **Client type** should be `Confidential`
-   3. The **Application** type should be `Web`
-   4. The **Grant** type should be `Authorization Code`
-
-2. Configure Redirect URIs/Origins
-
-   The **Sign-in redirect URIs** should include:
-
-   - `app.immich:/` - for logging in with OAuth from the [Mobile App](/docs/features/mobile-app.mdx)
-   - `http://DOMAIN:PORT/auth/login` - for logging in with OAuth from the Web Client
-   - `http://DOMAIN:PORT/user-settings` - for manually linking OAuth in the Web Client
-
-   Redirect URIs should contain all the domains you will be using to access Immich. Some examples include:
-
-   Mobile
-
-   - `app.immich:/` (You **MUST** include this for iOS and Android mobile apps to work properly)
-
-   Localhost
-
-   - `http://localhost:2283/auth/login`
-   - `http://localhost:2283/user-settings`
-
-   Local IP
-
-   - `http://192.168.0.200:2283/auth/login`
-   - `http://192.168.0.200:2283/user-settings`
-
-   Hostname
-
-   - `https://immich.example.com/auth/login`)
-   - `https://immich.example.com/user-settings`)
-
-## Enable OAuth
-
-Once you have a new OAuth client application configured, Immich can be configured using the Administration Settings page, available on the web (Administration -> Settings).
-
-| Setting                                              | Type    | Default              | Description                                                                         |
-| ---------------------------------------------------- | ------- | -------------------- | ----------------------------------------------------------------------------------- |
-| Enabled                                              | boolean | false                | Enable/disable OAuth                                                                |
-| Issuer URL                                           | URL     | (required)           | Required. Self-discovery URL for client (from previous step)                        |
-| Client ID                                            | string  | (required)           | Required. Client ID (from previous step)                                            |
-| Client Secret                                        | string  | (required)           | Required. Client Secret (previous step)                                             |
-| Scope                                                | string  | openid email profile | Full list of scopes to send with the request (space delimited)                      |
-| Button Text                                          | string  | Login with OAuth     | Text for the OAuth button on the web                                                |
-| Auto Register                                        | boolean | true                 | When true, will automatically register a user the first time they sign in           |
-| [Auto Launch](#auto-launch)                          | boolean | false                | When true, will skip the login page and automatically start the OAuth login process |
-| [Mobile Redirect URI Override](#mobile-redirect-uri) | URL     | (empty)              | Http(s) alternative mobile redirect URI                                             |
-
-:::info
-The Issuer URL should look something like the following, and return a valid json document.
-
-- `https://accounts.google.com/.well-known/openid-configuration`
-- `http://localhost:9000/application/o/immich/.well-known/openid-configuration`
-
-The `.well-known/openid-configuration` part of the url is optional and will be automatically added during discovery.
-:::
-
-## Auto Launch
-
-When Auto Launch is enabled, the login page will automatically redirect the user to the OAuth authorization url, to login with OAuth. To access the login screen again, use the browser's back button, or navigate directly to `/auth/login?autoLaunch=0`.
-
-## Mobile Redirect URI
-
-The redirect URI for the mobile app is `app.immich:/`, which is a [Custom Scheme](https://developer.apple.com/documentation/xcode/defining-a-custom-url-scheme-for-your-app). If this custom scheme is an invalid redirect URI for your OAuth Provider, you can work around this by doing the following:
-
-1. Configure an http(s) endpoint to forwards requests to `app.immich:/`
-2. Whitelist the new endpoint as a valid redirect URI with your provider.
-3. Specify the new endpoint as the `Mobile Redirect URI Override`, in the OAuth settings.
-
-With these steps in place, you should be able to use OAuth from the [Mobile App](/docs/features/mobile-app.mdx) without a custom scheme redirect URI.
-
-:::info
-Immich has a route (`/api/oauth/mobile-redirect`) that is already configured to forward requests to `app.immich:/`, and can be used for step 1.
-:::
-
-## Example Configuration
-
-Here's an example of OAuth configured for Authentik:
-
-![OAuth Settings](./img/oauth-settings.png)
-
-[oidc]: https://openid.net/connect/

docs/docs/features/password-login.md

@@ -1,32 +0,0 @@
-# Password Login
-
-An overview of password login and related settings for Immich.
-
-## Enable/Disable
-
-Immich supports password login, which is enabled by default. The preferred way to disable it is via the [Administration Page](#administration-page), although it can also be changed via a [Server Command](#server-command) as well.
-
-### Administration Page
-
-To toggle the password login setting via the web, navigate to the "Administration", expand "Password Authentication", toggle the "Enabled" switch, and press "Save".
-
-![Password Login Settings](./img/password-login-settings.png)
-
-### Server Command
-
-There are two [Server Commands](/docs/features/server-commands.md) for password login:
-
-1. `enable-password-login`
-2. `disable-password-login`
-
-See [Server Commands](/docs/features/server-commands.md) for more details about how to run them.
-
-## Password Reset
-
-### Admin
-
-To reset the administrator password, use the `reset-admin-password` [Server Command](/docs/features/server-commands.md).
-
-### User
-
-Immich does not currently support self-service password reset. However, the administration can reset passwords for other users. See [User Management: Password Reset](/docs/features/user-management.mdx#password-reset) for more information about how to do this.

docs/docs/features/server-commands.md

@@ -1,33 +0,0 @@
-# Server Commands
-
-The `immich-server` docker image comes preinstalled with an administrative CLI (`immich`) that supports the following commands:
-
-| Command                  | Description                           |
-| ------------------------ | ------------------------------------- |
-| `help`                   | Display help                          |
-| `reset-admin-password`   | Reset the password for the admin user |
-| `disable-password-login` | Disable password login                |
-| `enable-password-login`  | Enable password login                 |
-| `list-users`             | List Immich users                     |
-
-## How to run a command
-
-To run a command, [connect](/docs/guides/docker-help.md#attach-to-a-container) to the `immich_server` container and then execute the command via `immich <command>`.
-
-## Examples
-
-Reset Admin Password
-
-![Reset Admin Password](./img/reset-admin-password.png)
-
-Disable Password Login
-
-![Disable Password Login](./img/disable-password-login.png)
-
-Enabled Password Login
-
-![Enable Password Login](./img/enable-password-login.png)
-
-List Users
-
-![List Users](./img/list-users.png)

docs/docs/features/storage-template.mdx

@@ -1,5 +0,0 @@
-import StorageTemplate from '../partials/_storage-template.md';
-
-# Storage Template
-
-<StorageTemplate />

docs/docs/features/user-management.mdx

@@ -1,24 +0,0 @@
-import RegisterAdminUser from '../partials/_register-admin.md';
-import UserCreate from '../partials/_user-create.md';
-
-# User Management
-
-Immich supports multiple users, each with their own library.
-
-## Register the Admin User
-
-<RegisterAdminUser />
-
-## Create a New User
-
-<UserCreate />
-
-## Delete a User
-
-If you need to remove a user from Immich, head to "Administration", where users can be scheduled for deletion. The user account will immediately become disabled and their library and all associated data will be removed after 7 days.
-
-## Password Reset
-
-To reset a user's password, click the pencil icon to edit a user, then click "Reset Password". The user's password will be reset to "password" and they have to change it next time the sign in.
-
-![Reset Password](./img/user-management-update.png)

docs/docs/features/user-settings.md

@@ -15,9 +15,9 @@ Users can change their own passwords.
 ![Change Password](./img/user-change-password.png)
 
 :::tip Reset Password
-The admin can reset a password through the [User Management](/docs/features/user-management.mdx) screen.
+The admin can reset a password through the [User Management](/docs/administration/user-management.mdx) screen.
 :::
 
 :::tip Reset Admin Password
-The admin password can be reset using a [Server Command](/docs/features/server-commands.md)
+The admin password can be reset using a [Server Command](/docs/administration/server-commands.md)
 :::