Automatic core updates
Build a system to automatically check for core updates and perform the updates according to settings and administrator input.
AdminMark Dexter
(Admin, Joomla!)
shared this idea
This request has been addressed with the new automatic update notification in Joomla 2.5. A true automatic update (without user action) won’t be done since it is considered to risky.
128 comments
-
Nicholas Dionysopoulos
commented
Whenever you edit core PHP files a kitten dies. Really. If you are editing core PHP files you are doing it wrong! I have been developing sites and extensions since 2003 and since Joomla! 1.5.0 was released there has been no case where what I wanted to do could not be implemented with a template override or a plugin.
-
Henri Henry commented
i like this idea a lot, but i do sometimes edit core joomla php, so before upgrading or in this proces i need a comparison file scanner that can look for SGML comment tags
<!-- editbyadmin -->
<!-- rule this and that change to blabla ----> -
Sam Multty
commented
See this discussion:
https://mail.google.com/mail/u/0/?shva=1#inbox/134ae23b9e44c7eb (joomla-dev-cms) -
AdminRouven Weßling
(Admin, Joomla!)
commented
jQuery isn't part of the core ;)
-
Sam Multty
commented
Automatic updating joomla to the entire system. Core, jquery, mootools, components, modules, and plugins.
-
adronbeast
commented
I think it to be a very useful feature. But, may be, it must have an ability to be turned on/off in administrative panel.
-
Erick B
commented
I find this feature very important
-
James Durrant
commented
Great to know that suggestions here have been accepted.
Now that the vote has been rocked, it's time to start moving votes to other great ideas such as HTML5 support - http://goo.gl/xlvoV
-
Nicholas Dionysopoulos
commented
Your wish is granted, folks :) The ability to install core updates has been in there since Joomla! 1.6.0, but there was no way to have update notifications in the back-end, so that you realise the availability of updates on time and install them. I have made a patch which allows Joomla! to automatically notify the back-end users about core updates and allow them to update the extensions using the built-in extensions update system with three click in total.
Because this patch implements significant changes in the database, it won't be included in 1.7.x, but will make it in Joomla! 2.5, scheduled for release in January 2012.
-
Nicholas Dionysopoulos
commented
"Core" means everything you see inside the Joomla! package you download from http://joomla.org/download.html That is, Joomla! without any third party extensions. When you build a site, you usually add a lot of third party extensions (templates, components, modules and plugins) in order to create a site the way you want it to be. The term "core" in the "Automatic core updates" description was added for disambiguation, as what it is discussing is a way to update the Joomla! core, not Joomla! and all of the extensions you're using at once.
-
Fábio Garcia
commented
What is core?
-
Node-0
commented
My apologies for the off-topic reference here, but I just wanted to post and mention that, you can read about a very cool new Joomla technology being developed right now by me and a team of truly cool (and brave/nutty) coders.
The goal is to make Joomla so easy to use that it becomes fun. Here is the link: http://www.joomla-ology.com/the-making-of-nexus.html@Nicholas Dionysopoulos, there you go now I can post references to how I'm totally serious about changing Joomla's user experience.
We now return you to your regularly scheduled discussion.
Cheers!
-
Nicholas Dionysopoulos
commented
Yes, "should have" is the key here :)
Just a note to users, that if they perform this kind of overrides restoring their site with Akeeba Backup to a different host/account may not work out of the box (it requires manual editing). The simple reason being that defines.php uses PHP define() statements to do its thing which are impossible to edit automatically in a reliable fashion during restoration - not to mention that the way most shared hosts work makes it impossible to back up files stored outside your site's root.
-
AdminRouven Weßling
(Admin, Joomla!)
commented
The operative words are "should have" - as you probably know of all people ;)
Anyways, there's a supported option for those who wanna do this, so no need for core hacks.
-
Nicholas Dionysopoulos
commented
Well, in order for that to happen you would have to mess your .htaccess file or mess your Apache/PHP upgrade. In both cases, you should have tested in a dev environment before doing that. Not to mention that if my server ever starts doing that the last thing that would concern me is the configuration.php contents - for several reasons ;)
-
AdminRouven Weßling
(Admin, Joomla!)
commented
I think it does add a tiny bit of security. If your servers start outputting PHP files as source for whatever reason at least your db password will still be protected.
But either way there's an officially supported way to move the configuration.php and some other files and folders outside the web root: http://docs.joomla.org/Security_and_Performance_FAQs#Overriding_defines.php
-
Moutasem Shahin
commented
Nicholas Dionysopoulos Thank you very much
-
Nicholas Dionysopoulos
commented
I insist that you're doing it wrong. What you did does not add to the security of your website. If I find a vulnerable component on your site, I can still dump JConfig and steal your configuration settings. Besides, what you want can be done by a. symlinking configuration.php to another file or b. using a require_once in configuration.php to include the "real" configuration file.
-
Moutasem Shahin
commented
OK you are right but what about changing the path or name for configuration file for more security; in this case i have to change the core specially framework file and application file (core files), if there is any automatically update the new files will overwrite my work and my website goes down :(
-
Nicholas Dionysopoulos
commented
Moutasem, if you are modifying the Joomla! core you're doing it wrong. There is nothing (and I stress, NOTHING) which can't be done with plugins and requires core hacking.
