Ticket #53658: 53658.diff

src/wp-admin/user-edit.php

@@ -733 +733 @@
 
         </table>
 
-
-                <?php if ( wp_is_application_passwords_available_for_user( $user_id ) ) : ?>
         <div class="application-passwords hide-if-no-js" id="application-passwords-section">
                 <h2><?php _e( 'Application Passwords' ); ?></h2>
                 <p><?php _e( 'Application passwords allow authentication via non-interactive systems, such as XML-RPC or the REST API, without providing your actual password. Application passwords can be easily revoked. They cannot be used for traditional logins to your website.' ); ?></p>
+                <?php if ( false && wp_is_application_passwords_available_for_user( $user_id ) ) : ?>
                         <?php
                         if ( is_multisite() ) {
                                 $blogs       = get_blogs_of_user( $user_id, true );
@@ -797 +796 @@
                         $application_passwords_list_table->display();
                         ?>
                 </div>
+                <?php else: ?>
+                        <p><?php esc_html_e( 'The application password feature requires HTTPS, which is not enabled on this site.' ); ?></p>
+                        <p><?php
+                        printf(
+                                __( 'If this is a development website you can <a href="%s" target="_blank">set the environment type accordingly</a> to enable application passwords.' ),
+                                'https://wordpress.org/support/article/editing-wp-config-php/#wp_environment_type'
+                        );
+                        ?></p>
+                <?php endif; ?>
         </div>
-<?php endif; ?>
 
                 <?php
                 if ( IS_PROFILE_PAGE ) {