[RFC] Optional dependencies #11635
Comments
|
After discussing this a bit I think something like this would be better: That'd be converted to a conflict internally, but nothing more. No implicit require-dev, and wording is also hopefully less confusing than I think it might be workable, but adding a new top level key for such constraints if we want to do it nicely in terms of error reporting would be quite a lot of effort on the packagist.org side + composer as well I think. If we simply convert them to conflicts in packagist.org on import it'd be easier but probably more confusing when you get errors. |
🙈 You're right. I like
Please reconsider that part. My motivation behind the proposal is that keeping conflict rules and My life would be slightly easier though because I won't have to invert version constraints anymore. |
|
@derrabus you could use |
|
This proposal is exactly what I described in #11610 a few issues earlier. |
Motivation
A common problem for packages is dealing with dependencies that may or may not be present.
Take for example Symfony's Form component
symfony/form. The main purpose of that component is handling HTML forms: Mapping structured data to a rendered HTML form and mapping an HTML form back to a PHP object. A second component, Validator (symfony/validator) can validate arbitrary objects against a set of configured constraints.If you combine both components in compatible versions, you get form validation. ✌🏻 However, making the validator a mandatory dependency of the form component would mean that the validator gets installed even if a project just wants the form handling, e.g. because they use custom validation logic.
The current way to handle such a dependency would be to add the validator to the
require-devsection of the form component, so it gets installed for development/testing, and add a conflict rule to prevent the installation of incompatible validator versions in downstream projects. The version constraint of the conflict rule would be pretty much the inverse of the versions constraint listed inrequire-dev.Sounds complicated? Well, it is, and keeping both constraints in sync is a pain.
Proposal
I'd like to propose a third type of dependecy: optional dependencies, listed under
require-optionalwith the same structure asrequireandrequire-dev. Listing a package inrequire-optionaltells Composer that if the given package is going to be installed, it should allow the given version range only. For the root project,require-optionalis merged withrequire-dev, which means an optional dependency is automatically a development dependency.Example
{ "require-optional": { "acme/foo": "^2.5 || ^3.1" } }Composer would treat this configuration as equivalent to the following
{ "require-dev": { "acme/foo": "^2.5 || ^3.1" }, "conflict": { "acme/foo": "< 2.5 || >= 3, < 3.1 || >= 4" } }Implementation
This feature is syntactic sugar. Because
require-optionalentries can be translated to conflict rules, my hope is that the resolver itself does not have to be changed.Backwards compatibility
If this feature is accepted, older Composer versions would not interpret a composer.json file correctly that makes use of
require-optional. However, when consuming such a package via Packagist, the Packagist server could act as a BC proxy by merging allrequire-optionalentries intorequire-devandconflict.The text was updated successfully, but these errors were encountered: