Authentication prompt is shown at the *end* of a major distro upgrade

[Pointedstick]

STEPS TO REPRODUCE

1. Launch Discover with a major distro upgrade available (handled by PackageKit)
2. Click the "Upgrade to [distro version]" button
3. Click on "Update all" button

OBSERVED RESULT The update starts downloading and takes a while. At the end of this process, I am shown an authentication dialog.

EXPECTED RESULT The authentication dialog should be shown at the beginning of the process, with credentials cached until the process completes.

ADDITIONAL INFORMATION Not a Discover-specific bug; you can reproduce this by doing the update using pkcon too.

[sidt4]

Update All is for live updateable apps (flatpak / snap etc). That's totally different from Upgrade to .. button which is handled by packagekit.

Also, I don't think PackageKit requests authentication dialog for installing updates. That's the whole purpose of it. It should be non-interactive. But, it also depends on the PolKit policy rules installed by your distro.

Refer: https://github.com/PackageKit/PackageKit/tree/main/policy/

[Pointedstick]

The point is that if it's going to perform an action that might display a Polkit prompt (if the distro has polkit set up that way) it should do this at the beginning of the process, rather than in the middle or at the end.

[sidt4]

Personally I think it's a bad idea to cache the auth credentials for too long. But, it will be Matt's call to make.

Which distro was this on ?

[Pointedstick]

Fedora KDE.

[sidt4]

It appears offline upgrade does need admin authentication. Refer https://github.com/PackageKit/PackageKit/blob/main/policy/org.freedesktop.packagekit.policy.in#L270-L284

I use Debian Unstable, so never encountered distro upgrades.

[rasa]

Or at the very least, a popup message that says "Please wait..." between the time you click "Update All", and the password prompt appears, so the user knows not to toggle away.