Last year, Magento announced a final date for sunsetting Magento 1. Since that time, we have fielded a number of enquiries about this announcement and decided to put together this guide for Magento merchants.
Magento has 2 editions: Magento Commerce and Magento Open Source.
Magento stopped feature development and bug fixes on Community / Open Source in May 2015. However, Magento has continued to issue security updates and will continue to do so as new threats emerge until the end date for Magento versions 1.5 and above.
Magento has continued and will continue to provide both security patches and bug fixes to Enterprise customers through the end date. In fact, for large customers that have not completed their move to Magento 2, I would guess you can still get some support if your license is big enough.
That’s a great question! It depends on your version, but, all currently-released versions of Magento 2 Open Source (through 2.2) will lose security support by September 2019
That is correct. From a security update standpoint, you will be covered for longer if you are still on Magento 1 than Magento 2. With the introduction of Magento 2 the paradigm for keeping your site secure changed from one of issuing security patches to pushing merchants to keep their sites up to date.
While nobody knows exactly what will happen and when, we can extrapolate some of the big items:
YOUR MAGENTO 1 SITE WILL BE HACKED
I can’t tell you the time and date this will happen, but, eventually, hackers will get to it. If you are behind on security patches, your site may already be hacked and you just don’t know it. Hackers use crawlers to find Magento sites and test for vulnerabilities.
Eventually, a vulnerability will emerge, a crawler will find your site and a hacker will exploit it. That’s how the internet works. Hackers are like flies on a corpse – they will eventually fill it with maggots.
EXTENSIONS WILL STOP WORKING
The more extensions you use, the more vulnerable you are to being hacked. Additionally, ever since the announcement of Magento 2, extension developers have had a decreasing incentive to maintain their code. Updates for extensions will no longer be available and they will fall into disrepair.
YOUR CREDIT CARD PROCESSOR WILL DROP YOU
Because your Magento site will be full of security holes, your payment processor will insist you fix them or they will drop you for presenting too big of a risk.
You need to be off of Magento 1 before the end of support date. You have a lot of options.
Razoyo by no means assumes you will be moving to Magento 2. You’ll notice I didn’t say ‘upgrade’ to Magento 2. Moving to Magento 2 is replatforming. It will be no easier to migrate your site from Magento 1 than it will be to move to other platforms.
You would probably be remiss not to consider upgrading to Magento 2, but alternatives have changed since you built your Magento 1 site. Consider them.
Whatever you choose to do, you need to plan it out. As Bob Seger says you have to know “what to leave in, what to leave out.”
If you have lots of customers, orders or products you will probably need some help. Whichever platform you choose, find a competent partner that can help you make the move. It will save you money and headaches in the long run.
Replatforming will take time. How much really depends on how many customizations and how much data you have.
HOW MUCH IS A LOT?
WHAT DOES A TYPICAL TIMELINE LOOK LIKE?
We have migrated smaller merchants in as little as eight weeks while others took more than a full year to migrate. Your project plan should consider the following phases:
Magento 1 End of Support Links