CMM-942 auto generate application password with cookies nonce authentication (#22352)

* Updating RS library

* Providing the client with the new authentication method

* Handling password creation

* Handling authentication

* Minor fix

* Error handling

* Refactor to get site info

* updating rs version

* Calling createForCurrentUser

* Fixing AIBot api changes

* Making a real call

* Using null appId

* Minor apiRootUrl fix

* Using WPuuid

* Minor refactor

* Using custom okhttp client with cookie jat

* Extracting into SiteFragment

* Using a dialog for AP creation

* String change

* detekt and style

* Claude PR suggestions

* Adding and fixing tests

* Update libs/fluxc/src/main/java/org/wordpress/android/fluxc/network/rest/wpapi/rs/WpApiClientProvider.kt

Co-authored-by: David Calhoun <[email protected]>

---------

Co-authored-by: David Calhoun <[email protected]>

Author: adalpari

WordPress/src/main/AndroidManifest.xml

@@ -151,6 +151,10 @@
             android:name=".ui.accounts.login.applicationpassword.ApplicationPasswordRequiredDialogActivity"
             android:theme="@style/WordPress.TransparentDialog"
             android:exported="false" />
+        <activity
+            android:name=".ui.accounts.login.applicationpassword.ApplicationPasswordAutoAuthDialogActivity"
+            android:theme="@style/WordPress.TransparentDialog"
+            android:exported="false" />
 
         <activity
             android:name=".ui.accounts.LoginMagicLinkInterceptActivity"

WordPress/src/main/java/org/wordpress/android/support/aibot/repository/AIBotSupportRepository.kt

@@ -15,6 +15,8 @@ import uniffi.wp_api.AddMessageToBotConversationParams
 import uniffi.wp_api.BotConversationSummary
 import uniffi.wp_api.CreateBotConversationParams
 import uniffi.wp_api.GetBotConversationParams
+import uniffi.wp_api.ListBotConversationsParams
+import uniffi.wp_api.ListBotConversationsSummaryMethod
 import java.util.Date
 import javax.inject.Inject
 import javax.inject.Named
@@ -54,7 +56,12 @@ class AIBotSupportRepository @Inject constructor(
 
     suspend fun loadConversations(): List<BotConversation> = withContext(ioDispatcher) {
         val response = wpComApiClient.request { requestBuilder ->
-            requestBuilder.supportBots().getBotConverationList(BOT_ID)
+            requestBuilder.supportBots().getBotConversationList(
+                botId = BOT_ID,
+                params = ListBotConversationsParams(
+                    summaryMethod = ListBotConversationsSummaryMethod.LAST_MESSAGE
+                )
+            )
         }
         when (response) {
             is WpRequestResult.Success -> {
@@ -154,8 +161,8 @@ class AIBotSupportRepository @Inject constructor(
         BotConversation (
             id = chatId.toLong(),
             createdAt = createdAt,
-            mostRecentMessageDate = lastMessage.createdAt,
-            lastMessage = lastMessage.content,
+            mostRecentMessageDate = summaryMessage.createdAt,
+            lastMessage = summaryMessage.content,
             messages = listOf()
         )
 

WordPress/src/main/java/org/wordpress/android/ui/accounts/login/ApplicationPasswordLoginHelper.kt

@@ -204,8 +204,8 @@ class ApplicationPasswordLoginHelper @Inject constructor(
     }
 
     companion object {
-        private const val ANDROID_JETPACK_CLIENT = "android-jetpack-client"
-        private const val ANDROID_WORDPRESS_CLIENT = "android-wordpress-client"
+        const val ANDROID_JETPACK_CLIENT = "android-jetpack-client"
+        const val ANDROID_WORDPRESS_CLIENT = "android-wordpress-client"
         private const val JETPACK_SUCCESS_URL = "jetpack://app-pass-authorize"
         private const val WORDPRESS_SUCCESS_URL = "wordpress://app-pass-authorize"
     }

WordPress/src/main/java/org/wordpress/android/ui/accounts/login/applicationpassword/ApplicationPasswordAutoAuthDialogActivity.kt

@@ -0,0 +1,180 @@
+package org.wordpress.android.ui.accounts.login.applicationpassword
+
+import android.content.Context
+import android.content.Intent
+import android.os.Bundle
+import androidx.activity.ComponentActivity
+import androidx.activity.compose.setContent
+import androidx.activity.viewModels
+import androidx.compose.foundation.clickable
+import androidx.compose.foundation.layout.Column
+import androidx.compose.foundation.layout.Spacer
+import androidx.compose.foundation.layout.height
+import androidx.compose.foundation.layout.padding
+import androidx.compose.foundation.layout.size
+import androidx.compose.foundation.rememberScrollState
+import androidx.compose.foundation.verticalScroll
+import androidx.compose.material.icons.Icons
+import androidx.compose.material.icons.outlined.Info
+import androidx.compose.material3.AlertDialog
+import androidx.compose.material3.Button
+import androidx.compose.material3.CircularProgressIndicator
+import androidx.compose.material3.Icon
+import androidx.compose.material3.MaterialTheme
+import androidx.compose.material3.Text
+import androidx.compose.material3.TextButton
+import androidx.compose.runtime.Composable
+import androidx.compose.runtime.collectAsState
+import androidx.compose.runtime.getValue
+import androidx.compose.runtime.mutableStateOf
+import androidx.compose.runtime.saveable.rememberSaveable
+import androidx.compose.runtime.setValue
+import androidx.compose.ui.Modifier
+import androidx.compose.ui.res.stringResource
+import androidx.compose.ui.text.style.TextDecoration
+import androidx.compose.ui.unit.dp
+import androidx.lifecycle.lifecycleScope
+import dagger.hilt.android.AndroidEntryPoint
+import kotlinx.coroutines.launch
+import org.wordpress.android.R
+import org.wordpress.android.fluxc.model.SiteModel
+import org.wordpress.android.ui.compose.theme.AppThemeM3
+import org.wordpress.android.ui.compose.unit.Margin
+
+@AndroidEntryPoint
+class ApplicationPasswordAutoAuthDialogActivity : ComponentActivity() {
+    private val viewModel: ApplicationPasswordAutoAuthDialogViewModel by viewModels()
+
+    override fun onCreate(savedInstanceState: Bundle?) {
+        super.onCreate(savedInstanceState)
+
+        // Get the site from intent extras
+        val site: SiteModel? = if (android.os.Build.VERSION.SDK_INT >= android.os.Build.VERSION_CODES.TIRAMISU) {
+            intent.getParcelableExtra(EXTRA_SITE, SiteModel::class.java)
+        } else {
+            @Suppress("DEPRECATION")
+            intent.getParcelableExtra(EXTRA_SITE)
+        }
+
+        if (site == null) {
+            finish()
+            return
+        }
+
+        // Observe navigation events
+        lifecycleScope.launch {
+            viewModel.navigationEvent.collect { event ->
+                when (event) {
+                    is ApplicationPasswordAutoAuthDialogViewModel.NavigationEvent.Success -> {
+                        setResult(RESULT_SUCCESS)
+                        finish()
+                    }
+                    is ApplicationPasswordAutoAuthDialogViewModel.NavigationEvent.Error -> {
+                        setResult(RESULT_ERROR)
+                        finish()
+                    }
+                }
+            }
+        }
+
+        setContent {
+            AppThemeM3 {
+                val isLoading = viewModel.isLoading.collectAsState()
+                ApplicationPasswordAutoAuthDialog(
+                    isLoading = isLoading.value,
+                    onDismiss = {
+                        setResult(RESULT_DISMISSED)
+                        finish()
+                                },
+                    onConfirm = { viewModel.createApplicationPassword(site) }
+                )
+            }
+        }
+    }
+
+    companion object {
+        private const val EXTRA_SITE = "extra_site"
+        const val RESULT_SUCCESS = -1
+        const val RESULT_ERROR = -0
+        const val RESULT_DISMISSED = 1
+
+        fun createIntent(context: Context, site: SiteModel): Intent {
+            return Intent(context, ApplicationPasswordAutoAuthDialogActivity::class.java).apply {
+                putExtra(EXTRA_SITE, site)
+            }
+        }
+    }
+}
+
+@Composable
+fun ApplicationPasswordAutoAuthDialog(
+    isLoading: Boolean,
+    onDismiss: () -> Unit,
+    onConfirm: () -> Unit,
+) {
+    var showMore by rememberSaveable { mutableStateOf(false) }
+
+    AlertDialog(
+        onDismissRequest = { if (!isLoading) onDismiss() },
+        icon = {
+            Icon(
+                imageVector = Icons.Outlined.Info,
+                contentDescription = null,
+                tint = MaterialTheme.colorScheme.primary,
+                modifier = Modifier.size(Margin.ExtraLarge.value)
+            )
+        },
+        title = { Text(text = stringResource(R.string.application_password_info_title)) },
+        text = {
+            Column(
+                modifier = Modifier
+                    .verticalScroll(rememberScrollState())
+                    .padding(vertical = Margin.Small.value)
+            ) {
+                Text(text = stringResource(R.string.application_password_info_description_1))
+
+                if (!showMore) {
+                    Spacer(modifier = Modifier.height(Margin.Medium.value))
+                    Text(
+                        text = stringResource(R.string.learn_more),
+                        style = MaterialTheme.typography.bodyMedium,
+                        color = MaterialTheme.colorScheme.primary,
+                        textDecoration = TextDecoration.Underline,
+                        modifier = Modifier
+                            .clickable { showMore = true }
+                            .padding(vertical = Margin.Small.value)
+                    )
+                } else {
+                    Spacer(modifier = Modifier.height(Margin.Medium.value))
+                    Text(text = stringResource(R.string.application_password_info_description_2))
+                    Spacer(modifier = Modifier.height(Margin.Medium.value))
+                    Text(text = stringResource(R.string.application_password_info_description_3))
+                    Spacer(modifier = Modifier.height(Margin.Medium.value))
+                    Text(text = stringResource(R.string.application_password_info_description_4))
+                }
+            }
+        },
+        confirmButton = {
+            Button(
+                onClick = onConfirm,
+                enabled = !isLoading
+            ) {
+                if (isLoading) {
+                    CircularProgressIndicator(
+                        modifier = Modifier.size(16.dp),
+                        strokeWidth = 2.dp
+                    )
+                } else {
+                    Text(text = stringResource(R.string.create))
+                }
+            }
+        },
+        dismissButton = {
+            TextButton(
+                onClick = onDismiss
+            ) {
+                Text(text = stringResource(R.string.cancel))
+            }
+        }
+    )
+}

WordPress/src/main/java/org/wordpress/android/ui/accounts/login/applicationpassword/ApplicationPasswordAutoAuthDialogViewModel.kt

@@ -0,0 +1,103 @@
+package org.wordpress.android.ui.accounts.login.applicationpassword
+
+import androidx.lifecycle.ViewModel
+import androidx.lifecycle.viewModelScope
+import dagger.hilt.android.lifecycle.HiltViewModel
+import kotlinx.coroutines.flow.MutableSharedFlow
+import kotlinx.coroutines.flow.MutableStateFlow
+import kotlinx.coroutines.flow.SharedFlow
+import kotlinx.coroutines.flow.StateFlow
+import kotlinx.coroutines.flow.asSharedFlow
+import kotlinx.coroutines.flow.asStateFlow
+import kotlinx.coroutines.launch
+import org.wordpress.android.fluxc.model.SiteModel
+import org.wordpress.android.fluxc.network.rest.wpapi.rs.WpApiClientProvider
+import org.wordpress.android.fluxc.utils.AppLogWrapper
+import org.wordpress.android.ui.accounts.login.ApplicationPasswordLoginHelper
+import org.wordpress.android.ui.accounts.login.ApplicationPasswordLoginHelper.Companion.ANDROID_JETPACK_CLIENT
+import org.wordpress.android.ui.accounts.login.ApplicationPasswordLoginHelper.Companion.ANDROID_WORDPRESS_CLIENT
+import org.wordpress.android.ui.accounts.login.ApplicationPasswordLoginHelper.UriLogin
+import org.wordpress.android.util.AppLog
+import org.wordpress.android.util.BuildConfigWrapper
+import rs.wordpress.api.kotlin.WpRequestResult
+import uniffi.wp_api.ApplicationPasswordCreateParams
+import uniffi.wp_api.WpUuid
+import java.text.SimpleDateFormat
+import java.util.Date
+import java.util.Locale
+import javax.inject.Inject
+
+@HiltViewModel
+class ApplicationPasswordAutoAuthDialogViewModel @Inject constructor(
+    private val wpApiClientProvider: WpApiClientProvider,
+    private val applicationPasswordLoginHelper: ApplicationPasswordLoginHelper,
+    private val buildConfigWrapper: BuildConfigWrapper,
+    private val appLogWrapper: AppLogWrapper,
+) : ViewModel() {
+    private val _navigationEvent = MutableSharedFlow<NavigationEvent>()
+    val navigationEvent: SharedFlow<NavigationEvent> = _navigationEvent.asSharedFlow()
+
+    private val _isLoading = MutableStateFlow(false)
+    val isLoading: StateFlow<Boolean> = _isLoading.asStateFlow()
+
+    @Suppress("TooGenericExceptionCaught")
+    fun createApplicationPassword(site: SiteModel) {
+        viewModelScope.launch {
+            try {
+                require(site.username.isNotBlank()) { "Site username is required for cookie authentication" }
+                require(site.password.isNotBlank()) { "Site password is required for cookie authentication" }
+
+                _isLoading.value = true
+                val client = wpApiClientProvider.getWpApiClientCookiesNonceAuthentication(
+                    site = site,
+                )
+                val appName = if (buildConfigWrapper.isJetpackApp) {
+                    ANDROID_JETPACK_CLIENT
+                } else {
+                    ANDROID_WORDPRESS_CLIENT
+                }
+                val appId = WpUuid()
+                val response = client.request { requestBuilder ->
+                    requestBuilder.applicationPasswords().createForCurrentUser(
+                        params = ApplicationPasswordCreateParams(
+                            appId = appId.uuidString(),
+                            name =
+                                "$appName-${SimpleDateFormat("yyyy-MM-dd_HH:mm", Locale.getDefault()).format(Date())}"
+                        )
+                    )
+                }
+                when (response) {
+                    is WpRequestResult.Success -> {
+                        val name = site.username
+                        val password = response.response.data.password
+                        val apiRootUrl = wpApiClientProvider.getApiRootUrlFrom(site)
+                        applicationPasswordLoginHelper.storeApplicationPasswordCredentialsFrom(
+                            UriLogin(
+                                siteUrl = site.url,
+                                user = name,
+                                password = password,
+                                apiRootUrl = apiRootUrl
+                            )
+                        )
+                        _navigationEvent.emit(NavigationEvent.Success)
+                    }
+
+                    else -> {
+                        appLogWrapper.e(AppLog.T.API, "Error creating application password")
+                        _navigationEvent.emit(NavigationEvent.Error)
+                    }
+                }
+            } catch (e: Exception) {
+                appLogWrapper.e(AppLog.T.API, "Exception creating application password: ${e.message}")
+                _navigationEvent.emit(NavigationEvent.Error)
+            } finally {
+                _isLoading.value = false
+            }
+        }
+    }
+
+    sealed class NavigationEvent {
+        object Success : NavigationEvent()
+        object Error : NavigationEvent()
+    }
+}