Provide @ApplicationPasswordsClientId binding and guard SiteStore

jkmassel · jkmassel · commit 5d3d994f8f74 · 2026-05-21T15:16:51.000-06:00
The WordPress/Jetpack app had never bound a `@ApplicationPasswordsClientId`
in its Dagger graph, so any call into `ApplicationPasswordsStore` would
throw NoSuchElementException. This was latent — no production caller
hit the path on this app — until the new
`SiteStore.createApplicationPassword` started routing My Site through it
and crashed the app on launch.

- Provide `@ApplicationPasswordsClientId` from a new
  `ApplicationPasswordsClientIdModule`, using the same device-interpolated
  app name the Custom Tab flow already passes through `app_name`
  ("Jetpack Android App on &lt;device&gt;" / "WordPress Android App on …").
- Short-circuit `SiteStore.createApplicationPassword` to NotSupported
  when the configuration is disabled, so we degrade gracefully rather
  than crash if the binding is ever absent again.
diff --git a/WordPress/src/main/java/org/wordpress/android/modules/ApplicationPasswordsClientIdModule.kt b/WordPress/src/main/java/org/wordpress/android/modules/ApplicationPasswordsClientIdModule.kt
@@ -0,0 +1,33 @@
+package org.wordpress.android.modules
+
+import android.content.Context
+import dagger.Module
+import dagger.Provides
+import dagger.hilt.InstallIn
+import dagger.hilt.android.qualifiers.ApplicationContext
+import dagger.hilt.components.SingletonComponent
+import org.wordpress.android.R
+import org.wordpress.android.fluxc.module.ApplicationPasswordsClientId
+import org.wordpress.android.util.BuildConfigWrapper
+import org.wordpress.android.util.DeviceUtils
+import javax.inject.Singleton
+
+@InstallIn(SingletonComponent::class)
+@Module
+object ApplicationPasswordsClientIdModule {
+    @Provides
+    @Singleton
+    @ApplicationPasswordsClientId
+    fun provideApplicationPasswordsClientId(
+        @ApplicationContext context: Context,
+        buildConfigWrapper: BuildConfigWrapper,
+    ): String {
+        val deviceName = DeviceUtils.getInstance().getDeviceName(context)
+        val resId = if (buildConfigWrapper.isJetpackApp) {
+            R.string.application_password_app_name_jetpack
+        } else {
+            R.string.application_password_app_name_wordpress
+        }
+        return context.getString(resId, deviceName)
+    }
+}
diff --git a/libs/fluxc/src/main/java/org/wordpress/android/fluxc/store/SiteStore.kt b/libs/fluxc/src/main/java/org/wordpress/android/fluxc/store/SiteStore.kt
@@ -83,11 +83,13 @@ import org.wordpress.android.fluxc.model.asDomainModel
 import org.wordpress.android.fluxc.model.jetpacksocial.JetpackSocial
 import org.wordpress.android.fluxc.model.jetpacksocial.JetpackSocialMapper
 import org.wordpress.android.fluxc.network.BaseRequest.BaseNetworkError
+import org.wordpress.android.fluxc.network.BaseRequest.GenericErrorType
 import org.wordpress.android.fluxc.network.rest.wpapi.WPAPINetworkError
 import org.wordpress.android.fluxc.network.rest.wpapi.WPAPIResponse
 import org.wordpress.android.fluxc.network.rest.wpapi.applicationpasswords.ApplicationPasswordCreationResult
 import org.wordpress.android.fluxc.network.rest.wpapi.applicationpasswords.ApplicationPasswordCredentials
 import org.wordpress.android.fluxc.network.rest.wpapi.applicationpasswords.ApplicationPasswordDeletionResult
+import org.wordpress.android.fluxc.network.rest.wpapi.applicationpasswords.ApplicationPasswordsConfiguration
 import org.wordpress.android.fluxc.network.rest.wpapi.applicationpasswords.ApplicationPasswordsManager
 import org.wordpress.android.fluxc.network.rest.wpapi.site.SiteWPAPIRestClient
 import org.wordpress.android.fluxc.network.rest.wpcom.WPComGsonRequest.WPComGsonNetworkError
@@ -163,6 +165,7 @@ open class SiteStore @Inject constructor(
     private val coroutineEngine: CoroutineEngine
 ) : Store(dispatcher) {
     @Inject internal lateinit var applicationPasswordsManagerProvider: Provider<ApplicationPasswordsManager>
+    @Inject internal lateinit var applicationPasswordsConfigurationProvider: Provider<ApplicationPasswordsConfiguration>
 
     // Payloads
     data class CompleteQuickStartPayload(
@@ -2402,6 +2405,16 @@ open class SiteStore @Inject constructor(
 
     suspend fun createApplicationPassword(site: SiteModel): OnApplicationPasswordCreated =
         coroutineEngine.withDefaultContext(T.API, this, "Create Application Password") {
+            if (!applicationPasswordsConfigurationProvider.get().isEnabled) {
+                return@withDefaultContext OnApplicationPasswordCreated(
+                    site,
+                    BaseNetworkError(
+                        GenericErrorType.UNKNOWN,
+                        "Application Passwords feature is not configured for this app"
+                    ),
+                    notSupported = true,
+                )
+            }
             when (val result = applicationPasswordsManagerProvider.get().getApplicationCredentials(site)) {
                 is ApplicationPasswordCreationResult.Created -> {
                     persistApplicationPasswordCredentials(site, result.credentials)
