feat(server): user and server license endpoints (#10682)

* feat: user license endpoints * feat: server license endpoints * chore: pr feedback * chore: add more test cases * chore: add prod license public keys * chore: open-api generation
2025-11-07 17:27:20 +00:00 · 2024-07-01 18:43:16 +01:00 · 2024-07-01 18:43:16 +01:00 · 3b37b70626
commit 3b37b70626
parent 4193b0dede
40 changed files with 1474 additions and 18 deletions
--- a/server/src/services/server.service.ts
+++ b/server/src/services/server.service.ts
@ -1,8 +1,9 @@
-import { Inject, Injectable } from '@nestjs/common';
-import { getBuildMetadata } from 'src/config';
+import { BadRequestException, Inject, Injectable } from '@nestjs/common';
+import { getBuildMetadata, getServerLicensePublicKey } from 'src/config';
 import { serverVersion } from 'src/constants';
 import { StorageCore, StorageFolder } from 'src/cores/storage.core';
 import { SystemConfigCore } from 'src/cores/system-config.core';
+import { LicenseKeyDto, LicenseResponseDto } from 'src/dtos/license.dto';
 import {
  ServerAboutResponseDto,
  ServerConfigDto,
@ -14,6 +15,7 @@ import {
  UsageByUserDto,
 } from 'src/dtos/server.dto';
 import { SystemMetadataKey } from 'src/entities/system-metadata.entity';
+import { ICryptoRepository } from 'src/interfaces/crypto.interface';
 import { OnEvents } from 'src/interfaces/event.interface';
 import { ILoggerRepository } from 'src/interfaces/logger.interface';
 import { IServerInfoRepository } from 'src/interfaces/server-info.interface';
@ -34,6 +36,7 @@ export class ServerService implements OnEvents {
    @Inject(ISystemMetadataRepository) private systemMetadataRepository: ISystemMetadataRepository,
    @Inject(IServerInfoRepository) private serverInfoRepository: IServerInfoRepository,
    @Inject(ILoggerRepository) private logger: ILoggerRepository,
+    @Inject(ICryptoRepository) private cryptoRepository: ICryptoRepository,
  ) {
    this.logger.setContext(ServerService.name);
    this.configCore = SystemConfigCore.create(systemMetadataRepository, this.logger);
@ -53,10 +56,12 @@ export class ServerService implements OnEvents {
    const version = `v${serverVersion.toString()}`;
    const buildMetadata = getBuildMetadata();
    const buildVersions = await this.serverInfoRepository.getBuildVersions();
+    const licensed = await this.systemMetadataRepository.get(SystemMetadataKey.LICENSE);

    return {
      version,
      versionUrl: `https://github.com/immich-app/immich/releases/tag/${version}`,
+      licensed: !!licensed,
      ...buildMetadata,
      ...buildVersions,
    };
@ -154,4 +159,36 @@ export class ServerService implements OnEvents {
      sidecar: Object.keys(mimeTypes.sidecar),
    };
  }
+
+  async deleteLicense(): Promise<void> {
+    await this.systemMetadataRepository.delete(SystemMetadataKey.LICENSE);
+  }
+
+  async getLicense(): Promise<LicenseKeyDto | null> {
+    return this.systemMetadataRepository.get(SystemMetadataKey.LICENSE);
+  }
+
+  async setLicense(dto: LicenseKeyDto): Promise<LicenseResponseDto> {
+    if (!dto.licenseKey.startsWith('IMSV-')) {
+      throw new BadRequestException('Invalid license key');
+    }
+    const licenseValid = this.cryptoRepository.verifySha256(
+      dto.licenseKey,
+      dto.activationKey,
+      getServerLicensePublicKey(),
+    );
+
+    if (!licenseValid) {
+      throw new BadRequestException('Invalid license key');
+    }
+
+    const licenseData = {
+      ...dto,
+      activatedAt: new Date(),
+    };
+
+    await this.systemMetadataRepository.set(SystemMetadataKey.LICENSE, licenseData);
+
+    return licenseData;
+  }
 }