[FR] Add required API key permissions to README

[lenisko]

Since version 1.135.0:

• Granular API key access control creation.

It would be great to list all required permissions in README as it will increase security.

[Xexanos]

Is there any other place, where I can see which permissions are required to use the app?

[ITSecUK]

I am seeing an error that I need to add "all" permission to the api key when I click folders? That's not happening! Anyone fancy sharing their current list of permissions that work? I have just ticked everything that is "read"?

[giejay]

That should be: ["album.read", "activity.read", "asset.read", "asset.view", "asset.download", "album.read", "album.download", "archive.read", "face.read", "library.read", "timeline.read", "memory.read", "partner.read", "person.read", "session.read", "tag.read", "tag.asset"]

Because of a bug in the Immich server, version 136/137, "all" permissions were required.

[ITSecUK]

Hero! Yes I am on 137... ill update! Thanks for this @giejay this app screensaver is vital to me as it allows my photos / memories to play on the kitchen TV which is so much better than having them hidden in a server!

[ITSecUK]

Just to confirm on server 142 I still have this issue when I select Folders I get the error that I need all permissions after verifying I have all the permissions you specified. I suspect it might be an Immich issue as I can't see any other relevant permissions to enable. Its also possibly something to-do with the fact that I use external libraries. Its not a big deal for me because as I said I really just use it for screensaver, but thought I would let you know in case its something obvious!

Thanks again.

[giejay]

Yeah I noticed that as well, I'm gonna guess the API call view/folder/unique-paths does not have a specific role attached, that's why you need all.