At uni so don't have time to test atm. But in 1 word having glanced through this docs: AWESOME :D

Thank you, George!

Awesome... this is one step closer to something I need to create.

Brilliant... nice work Nik ;-)

Excellent PR.

Well done Nicholas 👍

I'm trying to test it, but I'm having some trouble with updating. Detecting the update is ok. I'm using ARS and the same update URL as I used for Akeeba Live Update. Note to other testers: don't forget to check the format of the URL, it should be XML (not ini...). In stead of username=sith&key=darth_vader I used dlid=YOURDOWNLOADID. That should work, shouldn't it?

Errors:

Warning
Update path does not exist

Message
Error updating COM_INSTALLER_TYPE_TYPE_.

I'll give a look later on, first I'll need a break. The problem is likely PEBKAC ;)

I +1 this pull request.

Nice and simple proposal, Nicholas 👍

The loop would be complete if there is an easy way to automatically populate the extra_query database entry from e.g. an appended "&extra_query=[url-encoded-query-params]" argument in the install-from-url URL (which is also used for the Install-from-Web installation).

@beat If I understand the PR correctly, "Install from web" will work with this out of the box since the extra query will be set by the installation script during installation of the extension or by registering/activate it somehow afterwards. So no need to pass the extra query as URL parameters.

@Bakual No, that's just a proposed complement for discussion (if that makes sense, it would be a different PR as Joomla committers love small PRs) ;-)

@beat It's not a matter of keeping the PRs short because this is an arbitrary rule. It's an engineer understanding exactly which problem they set up to solve, solve only that problem and making sure the solution actually works. This is a fundamental concept in development. It is why we have all moved from Subversion to Git: Subversion favours massive commits, with innevitable scope creep, and penalises feature branches due to its merging woes. Git allows you to make small, strict scope commits and makes strict scope feature branches a breeze.

Now, back to your feature request. I already thought about that before submitting this proposal. It's the job of the installed extension to somehow determine the contents of the extra_query used for updates and nothing but updates. It is architecturally incorrect to use the update feature for installing extensions. For all you know the update package may depend on the extension being already installed. It's not a forbidden practice!

The architecturally correct solution is to allow Install from Web to automatically collect the information required by the extension to subsequently make use of this new feature I wrote to provide updates without the user requiring to enter his/her authentication information again. Here's what I mean. When it comes to the one-off installation URL, the necessary query parameters are already provided by the developer's site. Most likely these can be used to determine the missing bits required to construct the extra_query for updates (e.g. for software distributed using ARS, like mine and Jurian's, it's the Download ID). Even if it's a one-off ID, the extension might be able to submit it to the developer's site and retrieve the information required to construct the extra_query (we need to make sure that JED rules allow this). Your code, the "Install from Web" feature, should cache that installation URL somewhere predictable for the extension to find after it's installed. Therefore you are missing a feature. If you can add it we have a complete and architecturally sound solution.

@jurianeven It's neither a bug in the new feature nor a PEBKAC. It's a long standing bug in Joomla!. JInstaller will recognise the package type by its extension. The download URL generated by ARS looks like http://dev3.local.web/index.php/component/ars/?view=download&id=12&dlid=&dummy=my.zip By setting extra query to dlid=1234567890abcdef1234567890abcdef the effective download URL becomes http://dev3.local.web/index.php/component/ars/?view=download&id=12&dlid=&dummy=my.zip&dlid=1234567890abcdef1234567890abcdef and this makes Joomla! not recognise it as a valid package type. If, however, extra_query is set to dlid=1234567890abcdef1234567890abcdef&jcompat=my.zip then Joomla! recognises it as a ZIP package and installs it. Mind blown? Yeah, same here.

I will do a separate PR to fix JInstaller. As an added bonus it will make the Install from Web feature more reliable. Right now if the installation URL does not end with .zip, .tar, .tar.gz (and possibly .tgz, I have to look at the code again) the package cannot be installed. This has been the case at least since Joomla! 1.5. It's high time we fixed it!

@nikosdion A bit offopic but is this bug still existent in Joomla 3.2? Because I can install from the following URL (generated by ARS) just fine
http://www.sermonspeaker.net/download/sermonspeaker-component/sermonspeaker-component-5-1-0/pkg_sermonspeaker510-zip.raw
Or is this only an issue in the updater?

@Bakual I will have to debug the code to answer that. Last time I checked it was with Joomla! 3.1.

@nikosdion :

1. Yes, one PR per issue to solve is good practice, no doubt, now it all depends how fine-grained you divide issues. ;-) This PR is really an atomic grain, and does its own job fine.
2. Install-from-web is not using the update installer. In Joomla 3.2.0, You can now pass an XML file url to the install by url field, or using the install from web too. You do not have to use your update.xml file. You can use a different one. But if your update.xml file allows to also install (which is usually the case), then you can use the same. Architecturaly this is perfectly ok.
3. If we keep populating that field under the exclusive responsibility of the extension (e.g. post-install script) itself, then the information of the URL used to install (if installed by URL or with install-from-web) is already available to it in the JInput, and nothing more has to be done imho on a coding side.
4. JInstaller checks for .xml right now. It could be improved to also check for xml mime types in the http reply to avoid the trick with the mind-blowing extra parameter. PR welcome.

So again to keep my review clear: 👍 from me for this PR.

Re 1: The smallest possible group of changes that does one job. That's my definition. I come from a Mechanical Engineering background. As a Mech Eng if I have to redesign a gearbox and the smallest design change I can do is change the first gear assembly (drive axle's first gear section and the actual cogwheel of the first gear fitted in the output axle) that's my proposed change. It's not the entire gearbox in one go. The idea is to isolate changes so that you can track down and fix issues more efficiently. As my professor told me ten years ago, engineering a complex machine is not much different than engineering complex software. He was right. The break to smaller steps, solve and assemble approach works wonders ;)

Re 2: No, it's not architecturally OK. As I said, there is nothing preventing a developer from providing partial packages on update (think about how Joomla! provides, say, 2.5.14 to 2.5.15 update packages). If you force update XML files to only provision complete, self-sufficient, installable packages it's a bug (technically: a regression). I'd rather avoid going there. I am sure that someone out there must be doing that partial update thing. Update provisioning is bigger than just JED-listed extensions. I have at least two clients that I know of using ARS to do that.

Re 3: The URL will be in JInput when you first access com_installer. After com_installer finishes (goes into the actual post installation step) the URL is no longer in JInput. Should we store it in the session and let extensions' post-installation scripts use it? That would be an acceptable solution from an architectural point of view.

Re 4: You, are a mind reader! That's one of the two things I want to take a look at today and make PRs. I have stopped whining and started fixing what has been a pain in my bottom for ages. My plan: I want to make sure that both the update XML and the install from URL package use MIME type sniffing to determine the content type and only fall back to extension sniffing if MIME type sniffing is not possible or inconclusive (e.g. serving an update XML file through S3 having forgotten to set the content-type header). I am not yet sure if it's going to be one or two PRs as I have currently no solid view of where the sniffing takes place. I have to RTFC (read the fine code) ;)

Re 1: Thank you, Professore Nicholas, we're in sync. :-D Looks like lately, it's trendy to advertise the university degrees in Joomlasphere. I'm not going to follow that trend, even I easly could show off my university, research and business pedigree.

Re 2: Architecturally no issues! Take your breath and read again fully my reply above. You missed a few "not" in the sentences. You can provide a different XML file, specific for installation. If your customers use an incomplete file or misuse their update xmls, it's their problem, not mine, nor an architectural issue.

Re 3: Postinstall script runs in the same page, so no need for session caching imho.

Re 4: Not a mind reader, just logical thinking.

1. (Dear Github, not "1.", but "5.") While at reading installer code, you will notice new events that I added for the install-from-web feature and with the install-from-web feature that you can benefit from in AkeebaBackup Pro for avoiding to have your own display of Joomla Installer, which doesn't (or didn't?) have Install-from-web tab included, and additionally be able to handle your recovery-points for all installations (including install-from-web and any components-own installs) seamlessly. ;-) Architecturally sure better than overriding the joomla installer alltogether ;-)

So again to keep my review clear: 👍 from me for this PR.

Re 1: Passive aggressive much? I was trying to be polite and explain my definition of small, per your request. Take a chill pill :)

Re 2: As I said, I don't mind using a different file. I mind having to use the same file for both updates and installation. As you said, using a different or the same file is possible right now and I'm cool with that. I am against having the user decide which installation source to use. It's something that only the developer can decide within any degree of accuracy. Is it the user's problem that they used a bad option exposed by Joomla! developers, or is it the Joomla! developers' fault for exposing a bad option? I say it's the Joomla! developers' fault, making it a bad architecture decision. You said that right now the developer can choose to serve the same XML file and that is perfectly fine! Ain't broken, don't fix it.

Re 3: Um, I actually consider the current architecture in com_installer a problem, as it's trying to download and install the extension in one go. On slow shared hosting this is a major issue and I'd like to fix that. It's further down my to-do list. Corollary: you won't have the URL in JInput. That's a solution I've tried with great success in my Live Update, that's why I want to fix that semi-broken architecture. Sorry, I forgot I never had that discussion with you. Is it more clear why I propose saving the URL in the session now instead of relying to JInput?

Re 5: The new features are not even necessary as far as I can see, but it's anyway item number 4 on my to-do list. The current feature dates back from the Joomla! 1.5 days and was scheduled to be refactored a year ago. The exact circumstances that led to this feature stagnating are beyond the scope of this PR so I'll spare you the gory details. We can talk about it later today on Skype if you wish.

Re 1: Thanks for clarifying 👍 (no punching intended) :-D

Re 2: Ok, then not "No, it's not architecturally OK" as I understood above. So it's architecturally OKay 👍

Re 3: Nw, understand now: Right now in 3.2.0, it is available in JInput, as it is in same page, and if you do a PR to change it for a 2-step-process, then yes, the corresponding input would be lost and should be preserved. I guess that would be the responsibility of the new PR to preserve it in JInput using session for B/C (and, maybe to provide a new clean API for it), if I understand it right ?

Re 5: No worries. Fully understand. The new installer-type plugin events now allow you to do what you planed (even with current installer). Me too didn't want to rewrite the installer as part of web-installer improvements for exact same change-control granularity as we agree in "1."). 👍

So again to keep my review clear: 👍 from me for this PR.

Thanks Nicholas, appending &jcompat=my.zip fixed it. I've marked the test as successfull on the tracker. I only had my extensions' postinstall message rendered in a <div class="alert alert-info">, making the whole output blue. But I think that's either just the way the installer renders it or I have to adapt my installer script.

Jurian,

The postinstall message renders in a clear div. The alert-info class has to come from something in your custom component installation script. Just to be clear, I did not touch the code that renders those messages.

I also didn't suspect you've touched it. I see it's definitely coming from com_installer, it wraps the installer code.

See:
joomla-cms/administrator/components/com_installer/views/update/tmpl/default.php (line 30)

   <?php if ($this->showMessage) : ?>
        <div class="alert alert-info">
            <a class="close" data-dismiss="alert" href="#">×</a>
            <?php echo $this->loadTemplate('message'); ?>
        </div>
    <?php endif; ?>

It works when I use this in stead:

   <?php if ($this->showMessage) : ?>
        <div>
            <?php echo $this->loadTemplate('message'); ?>
        </div>
    <?php endif; ?>

Again, this is unrelated to this patch, but it's an issue though.

I wonder when that was added. I was testing with Joomla! 3.2 yesterday and didn't see that :s

I had one update and after installing it I got the message: "There are no updates available at the moment. Please check again later.". Maybe it's related, but I don't see it in the code.

That sounds about right, you installed the update, there is no available update.

Just traced it back and it was for J3.0.0 when we bootstrapped the administrator (e11117d#diff-c522b589c32e0f38c81e2151a3a64d2cL20)

Thanks @wilsonge I probably never spotted it as I'm wrapping my messages inside a div to give them full width (required for the tables I use).

(@nicholas Haha yes, for sure. But perhaps that triggers the blue alert box. I don't see this in that code though.)

@wilsonge I see, there this issue seems to be introduced.

I created a tracker with fix, just like it was before that commit:
http://joomlacode.org/gf/project/joomla/tracker/?action=TrackerItemEdit&tracker_item_id=32742&start=0

where can i run such a code (saving did) in case of a module?

@rbismut Please don't post on closed PR/issues.

As i see in the code you are updating #__update_sites_extensions tables instead #__update_sites table, is this typing mistake?

This is a very old tracker item. Please post a new issue if you have found a bug and not comment on closed issues. Thanks.