fix(updater): Prevent EventSource auto-reconnect from triggering concurrent upgrades

[joshtrichards]

• Resolves: #

Summary

The native EventSource API automatically reconnects when a connection drops. For the web updater, this is dangerous: core/ajax/update.php is not idempotent -- it runs database migrations, toggles maintenance mode, and modifies app state. A silent reconnect spawns a second PHP process that races against the still-running first one, which can cause migration deadlocks, database corruption, or inconsistent app state.

The auto-reconnect is dangerous specifically because it re-enters core/ajax/update.php directly, which has no guard against concurrent execution -- it just checks Util::needUpgrade() and calls $updater->upgrade(). A manual reload goes through normal routing (e.g. OC::handleRequest()) which respects maintenance mode.

This is especially insidious because the reconnect is invisible to the user. Resulting failures (stuck maintenance mode, broken apps, corrupted schema) would never be traced back to the SSE transport layer.

Changes:

• Add an onerror handler to the underlying EventSource that immediately closes the connection instead of allowing auto-reconnect.
• Display a warning message advising the user to reload the page to check the current upgrade status.

TODO

• Decide whether to backport

Checklist

• Code is properly formatted
• Sign-off message is added to all commits
• Tests (unit, integration, api and/or acceptance) are included
• Screenshots before/after for front-end changes
• Documentation (manuals or wiki) has been updated or is not required
• Backports requested where applicable (ex: critical bugfixes)
• Labels added where applicable (ex: bug/enhancement, 3. to review, feature component)
• Milestone added for target branch/version (ex: 32.x for stable32)

AI (if applicable)

• The content of this PR was partly or fully generated using AI

[joshtrichards]

/compile