feat: storage template file move hardening (#5917)

* fix: pgvecto.rs extension breaks typeorm schema:drop command

* fix: parse postgres bigints to javascript number types when selecting data

* feat: verify file size is the same as original asset after copying file for storage template job

* feat: allow disabling of storage template job, defaults to disabled for new instances

* fix: don't allow setting concurrency for storage template migration, can cause race conditions above 1

* feat: add checksum verification when file is copied for storage template job

* fix: extract metadata for assets that aren't visible on timeline

server/src/infra/repositories/filesystem.provider.ts

@@ -9,14 +9,10 @@ import {
 import { ImmichLogger } from '@app/infra/logger';
 import archiver from 'archiver';
 import { constants, createReadStream, existsSync, mkdirSync } from 'fs';
-import fs, { readdir, writeFile } from 'fs/promises';
+import fs, { copyFile, readdir, rename, writeFile } from 'fs/promises';
 import { glob } from 'glob';
-import mv from 'mv';
-import { promisify } from 'node:util';
 import path from 'path';
 
-const moveFile = promisify<string, string, mv.Options>(mv);
-
 export class FilesystemProvider implements IStorageRepository {
   private logger = new ImmichLogger(FilesystemProvider.name);
 
@@ -54,15 +50,9 @@ export class FilesystemProvider implements IStorageRepository {
 
   writeFile = writeFile;
 
-  async moveFile(source: string, destination: string): Promise<void> {
-    this.logger.verbose(`Moving ${source} to ${destination}`);
+  rename = rename;
 
-    if (await this.checkFileExists(destination)) {
-      throw new Error(`Destination file already exists: ${destination}`);
-    }
-
-    await moveFile(source, destination, { mkdirp: true, clobber: true });
-  }
+  copyFile = copyFile;
 
   async checkFileExists(filepath: string, mode = constants.F_OK): Promise<boolean> {
     try {