Define recipe runtime configuration update requirements

Updating to cover recipe-provided config

Depending on the answers, there may or may not be additional scope not yet captured.

For example, as well as implications for the way config is created or updated, it may be necessary to track which extensions were originally installed via recipes, and which recipes were previously applied on a given site.

yes we can probably improve how this comparison is done but it is working nicely atm and tested.

Yes, there turn out to be a number of wrinkles here that can lead to false negatives when determining if a provided config item is essentially equivalent to a version in the active storage. It's why I wrote the Configuration Normalizer module. There's sort order, of course. That's probably helped by the work in #2852557: Config export key order is not predictable, use config schema to order keys for maps, but there's nothing to require that provided config is in the same order as what's saved to the active storage. There are quirks like the roles key in a filter_format, which is present in a provided item but removed on install; see #3007203: Add a plugin for normalizing filter_format config. There are various programmatic changes that are made to specific config types on save and so show up as diffs; see #3007481: Assess and address changes applied at install time. I've been thinking of all this as part of the normalization problem space. That's why, way back when, I opened #2960867: Add a ::normalize() method to config entities to support comparing extension- and recipe-provided to installed configuration (which I recently updated and which may still be as good a place as any to work on this). But now this seems to be a potential fit for config actions. For example, the filter_format type could provide an action that removes the roles key when appropriate (recipe- or extension-provided config is being prepared for comparison to that in the active storage). Does that make sense?

We can deal with the more complex situations later as the requirements for doing that become more apparent.

I totally understand the attraction and benefits of quick iteration, of roughing things in and circling back. What else have I been doing for the past 20+ years ;) ? But we're all also familiar with the contrary tension. How easy it is for a quick fix to linger, for what's the simplest and most direct to double down on previous patterns and assumptions, to end up taking us further away from rather than closer to a new direction.

My bigger concerns here are:

• Support for customization--config originally installed from a recipe or extension and then edited on the site.
• Support for changes in the config as provided.

With composable recipes, we expect, even hope, that the normal workflow will be particular base recipes are routinely re-installed on a given site. We have to also expect that the config in those recipes will evolve over time and that admins will make edits to config as installed. These are not edge cases--they're the core use case.

In D8 the model was that config was installed once then owned by the site. For this initiative to succeed (and here I'll go out on a limb), we need to fundamentally revise that assumption. In theory we're already doing so--updating extension-provided config is explicitly in scope. But - paradoxically - we're focusing all initial work on a model, recipes, that explicitly are not updatable. Except - and this is my hunch in this issue - they actually have to be updatable to serve their own purpose. If a recipe throws an exception the moment any piece of configuration anywhere in the recipe's chain of required recipes has been modified on disk, or even slightly customized by a site owner, we're going to end up with a beautiful system that routinely errors out.

I think we should consider in future allowing recipes to be force applied and overwrite configuration in a more destructive manner - and present diffs etc so people will know what's going to change

Agreed. And alongside that, an option to merge in config changes while respecting any customizations. In Configuration Synchronizer we do this by snapshotting config as previously provided and then doing a three-way merge (snapshot, current provided version, active).

All this is part of why I'd love to see ConfigImporter here rather than ConfigInstaller, and why I opened #3292038: Use ConfigImporter to create/update recipe-provided configuration. It lends itself to these possibilities in ways ConfigInstaller does not.

One by one, we're encountering in recipes pretty much exactly the same challenges as we find in updating extension-provided config--the sub-issues of #2960999: Support updating extension-provided config via configuration synchronization API and UI that I opened years ago. If we solve them generically for recipes, we could get config updates almost for free.

Yes, there's the Update Helper option. There's lots to like there. But - and this is probably my key objection - we need fewer config APIs in core, not more. We have an API for installing config, a whole different one for importing it. And yet a third for updating it? I suspect, by standardizing on ConfigImporter, we could cover all three use cases and, for extra marks, eventually deprecate ConfigInstaller.

Going out on another limb--my ideal for the recipe code would be that it actually does little or nothing. Instead, it calls other core config wrangling methods, ones we've long had hacks and workarounds for in contrib but that in the end can only be properly solved in core. For which the new config actions work is an impressive first example.

But - and maybe this is the key point - in the end, all I'm offering here and elsewhere in the initiative is some comments and suggestions. I'm not planning to do much - maybe any - coding. Jobwise I no longer work in Drupal 8+. I'm in wrapup mode. My first Drupal job was at CivicSpace Labs on the first Drupal distribution (I wrote what was probably the first solution set for exporting config to code, a predecessor of Features that I called Packages but that, sadly, CivicSpace declined to open source) and I've focused on distros ever since. This means I've probably worked in Drupal distributions as long as or longer than anyone else. As I prepare to move on from the project, I'm happy to offer what insights I've gained. But it's for others to decide whether and how to take them into account moving forward.

Which I'm happy to be reminded of if at times I seem too stuck or insistent on a supposedly "right" approach ;)