17 Commits

Author	SHA1	Message	Date
Jonathan Miller	0abbfc709b	fix: create admin submenu items on update via Joomla MenuTable API ... The <submenu> block in the manifest was empty, so no submenu items were ever created. Additionally, Joomla skips submenu creation on updates, so ensureSubmenuItems() now programmatically creates missing entries using the MenuTable API with proper nested set positioning.	2026-06-11 21:53:52 -05:00
Jonathan Miller	2a9443601e	fix: [DEFAULT_DIR] resolves to JPATH_ROOT/backups, shown as placeholder ... - getDefaultAbsolute() now returns JPATH_ROOT/backups instead of the old admin component directory - SQL default, form default, and install migration all use [DEFAULT_DIR] - portablize() converts ./backups and old literal paths back to [DEFAULT_DIR] - Users see [DEFAULT_DIR] in the field, resolved path shown in status	2026-06-11 15:27:17 -05:00
Jonathan Miller	5c697b9eeb	fix: pretty names for all sub-extensions, default backup dir to ./backups ... - Component: MokoSuiteBackup - Plugins: System/Task/Console/Content/QuickIcon/ActionLog/WebServices - MokoSuiteBackup - Default backup_dir changed to ./backups (relative to site root) - Auto-migrate old defaults on upgrade	2026-06-11 12:48:11 -05:00
Jonathan Miller	49f3d9fdcf	feat: change default backup dir to ../backups (outside web root) ... - Default backup_dir is now ../backups (relative to JPATH_ROOT), which resolves outside public_html on most hosting setups - Added BackupDirectory::normalizePath() to resolve ../ segments without requiring the path to exist on disk - Added BackupDirectory::portablize() to auto-detect absolute paths and replace them with portable placeholders ([HOME], ../backups) - ProfileTable::check() auto-normalizes backup_dir on save - Install postflight auto-migrates old in-webroot defaults to ../backups - Dashboard warning now checks resolved path instead of string matching - .htaccess protection only applied when directory is inside web root	2026-06-11 12:39:59 -05:00
Jonathan Miller	ace33b60fe	feat: rename mokojoombackup → mokosuitebackup, add [HOME] placeholder for backup directory ... Renames all sub-extensions from mokojoombackup to mokosuitebackup (package, component, 7 plugins, language files, manifests). Adds [HOME] placeholder to BackupDirectory and PlaceholderResolver so users can set backup_dir to [HOME]/backups (outside web root). Fixes folder browser "access denied" on PHP-FPM shared hosting where getenv('HOME') returns empty by adding POSIX and JPATH_ROOT fallback detection.	2026-06-11 12:24:27 -05:00
Jonathan Miller	e5fb88e1a4	feat: auto-create default scheduled task on install, fix AkeebaImporter constants ... - Create "Monthly Full Backup" scheduled task (30-day interval, profile 1, 03:00 execution) on fresh install via com_scheduler - Skips if any MokoJoomBackup task already exists - Failure notifications enabled to Super Users group by default - Replace hardcoded backup dir paths in AkeebaImporter with BackupDirectory::DEFAULT_RELATIVE constant	2026-06-07 09:50:32 -05:00
Jonathan Miller	df44518611	fix: skip all postflight actions on uninstall, add install warnings ... - Early return on uninstall to prevent license warning, menu sync, and default-dir check from running during package removal - Add warnDefaultBackupDir() — warns on install/update if any profile uses the default web-root backup directory - Add profile review reminder on fresh install with link to profiles view	2026-06-07 09:46:46 -05:00
Jonathan Miller	814d1b147c	refactor: extract BackupDirectory utility to eliminate code duplication ... - Create BackupDirectory utility class with centralized: - DEFAULT_RELATIVE constant and PLACEHOLDER constant - resolve() — path resolution with [DEFAULT_DIR] and relative path handling - hasPlaceholders() — check for unresolved placeholder tokens - isWebAccessible() — web-root boundary check - protect() — .htaccess and index.html creation with error logging - ensureReady() — mkdir + protect in one call - parseNewlineList() — newline-separated text parsing - logPathFromArchive() — derive .log path from archive path - Remove duplicated methods from BackupEngine, SteppedBackupEngine, ProfileTable, AjaxController, and DashboardModel - All consumers now use BackupDirectory static methods - Net reduction: ~180 lines of duplicated code eliminated	2026-06-07 09:39:43 -05:00
Jonathan Miller	41b481dbfe	fix: address code review — Apache 2.4 htaccess, browseDir traversal, SQL cast ... - Update .htaccess content to support both Apache 2.4 (Require all denied) and Apache 2.2 (Order deny,allow) in all four locations - Guard browseDir parent navigation to prevent escaping allowed boundaries - Add explicit (int) cast on viewLog SQL query for defense-in-depth	2026-06-07 09:17:20 -05:00
Jonathan Miller	e72a007041	fix: address PR review — error logging, ACL check, fetch error handling ... - Log failures in protectBackupDir() and protectWebAccessibleDir() instead of silently suppressing with @ (security-critical .htaccess writes) - Add error_log() to empty catch blocks in boot() and syncMenuIcons() - Add core.manage ACL check to checkDir() AJAX endpoint - Surface opendir() failures in browseDir() with warning message - Add HTTP status check (r.ok) to JS fetch calls before parsing JSON - Log temp SQL file deletion failures in SteppedBackupEngine	2026-06-07 09:11:39 -05:00
Jonathan Miller	6e18c77670	feat: add submenu icons via FA6 CSS injection and sync menu icons on install ... - Inject Font Awesome 6 icons for Dashboard, Backups, and Profiles submenu items via MokoJoomBackupComponent::boot() using WebAssetManager - Add syncMenuIcons() to installer script to set img column in #__menu on both install and update (Joomla doesn't refresh icons on upgrade) - Add encryptionPassword property to SteppedSession for stepped backup encryption support	2026-06-07 08:59:30 -05:00
Jonathan Miller	608aeb3641	feat: add dashboard menu, [DEFAULT_DIR] placeholder, live dir validation, and backup security ... - Add Dashboard as first submenu entry in component manifest - Add [DEFAULT_DIR] placeholder to PlaceholderResolver for portable profiles - Add live AJAX directory permission checking on backup_dir field changes - Add web-accessible warning badge on backup download buttons - Auto-create .htaccess protection in web-accessible backup dirs on profile save - Auto-create .htaccess protection at backup time in both engines - Add checkDir AJAX endpoint for real-time directory validation - Fix script.php warnMissingLicenseKey running on uninstall	2026-06-07 06:54:46 -05:00
Jonathan Miller	026b72deed	fix: address all PR review findings — error handling, security, validation ... Security: - browseDir restricted to JPATH_ROOT and current user $HOME (not all /home/) - MokoRestore db_prefix validated with regex to prevent SQL injection - MokoRestore DB import returns failure when zero statements succeed Error handling (fatal — would produce corrupt backups): - BackupEngine/SteppedEngine mkdir() checked, returns error on failure - SteppedSession save() checked, throws on write failure - SteppedEngine SQL dump file_put_contents checked, throws on failure - MokoRestore configuration.php write checked, throws on failure Error handling (logged — secondary operations): - BackupEngine dispatchAfterRun catch block logs to error_log - BackupEngine/SteppedEngine log file write failures logged - NotificationSender user group email resolution logged - script.php download key save/restore logged Operational fixes: - Cleanup plugin: don't delete DB record if file unlink fails (prevents orphans) - BackupEngine: count and log skipped unreadable files - BackupEngine: handle MokoRestore rename failure gracefully - SteppedEngine: add S3Uploader to stepUpload match (feature parity) Authored-by: Moko Consulting Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-06-06 21:10:11 -05:00
Jonathan Miller	8338eabf81	fix: replace showUpdateSiteNotice with warnMissingLicenseKey (MokoWaaS pattern)	2026-06-06 17:25:38 -05:00
Jonathan Miller	67329507f4	feat: beforeunload warning during backup, placeholder-aware directory checks ... - Browser warns before closing/navigating while backup is in progress - FolderPickerField shows info status for paths with [placeholders] instead of "Directory not found" - Dashboard health check skips filesystem check when backup_dir uses placeholders (resolved at backup time by PlaceholderResolver) Authored-by: Moko Consulting Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-06-06 16:33:31 -05:00
Jonathan Miller	37d325f1ed	chore: rename mokobackup to mokojoombackup throughout ... Full rename of all extension elements, namespaces, language keys, database tables, file names, and directory names: - pkg_mokobackup → pkg_mokojoombackup - com_mokobackup → com_mokojoombackup - plg_*_mokobackup → plg_*_mokojoombackup - MokoBackup namespace → MokoJoomBackup - #__mokobackup_ tables → #__mokojoombackup_ - COM_MOKOBACKUP_ keys → COM_MOKOJOOMBACKUP_ Authored-by: Moko Consulting Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-06-06 14:54:04 -05:00
Jonathan Miller	a13f7ca6a6	chore: rename src/ to source/ per MokoStandards convention ... Update all references in Makefile, manifest.xml, .gitignore, and CI workflows (ci-joomla, pr-check, repo-health) to use source/ as the primary directory with src/ as a fallback for compatibility. Authored-by: Moko Consulting Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-06-06 08:08:33 -05:00