[Carsten Bækmand]

We would like to ask if it is possible to download the latest version of osTicketAwesome using an API or HTTP authentication method.

Our goal is to automate our update process so that our servers can securely download the newest version when it becomes available.

We have attempted to automate the process by performing a login through a script and then downloading the file, but the download page does not accept the session afterwards.

Is there a supported way to download the latest version programmatically while still authenticating with our username and password? For example:

API access
HTTP Basic Authentication
Token-based authentication
A direct authenticated download URL

We are not trying to bypass authentication; we simply want a secure and supported method to automate updates while still validating our account credentials.

Any guidance on how this could be implemented would be greatly appreciated.

[stevland]

Hi Carsten,

Thanks for the detailed writeup. You’ve clearly put some thought into this, and the use case is completely legitimate.

To answer directly: there’s no supported programmatic download mechanism at the moment. The download page is session-gated in a way that won’t survive scripting, which is exactly what you ran into. HTTP Basic Auth and token-based download endpoints aren’t something the current stack provides.

I’ve logged this as a feature request. An authenticated download API (where you provide a license key and get a verified download URL back) is a great idea and a reasonable ask.

In the meantime, the most practical workaround is to watch the version endpoint we publish (the same one osTicket Awesome uses internally to display the update notification) and trigger a manual download from there when a new release appears. It’s not fully automated, but it gets you the detection half of the problem without wrestling with session auth.

Appreciate you raising this.