You can install Crowdin Apps either from the Crowdin Store or manually, depending on whether the app is already published or not.
Configure preferred permissions for each app during the installation process. This step allows you to define who can access and use the app across its various modules and specifying in which projects of your Crowdin account (for Crowdin) or Crowdin organization (for Crowdin Enterprise) it can be used.
If you restrict access to certain projects by using the Selected projects option, the app will not be able to communicate via the API with projects that are not included in the selected list. Also, the app will only be displayed in the UI of the selected projects. This ensures that the app’s functionality and access are precisely tailored to the specific needs and security requirements of your organization.
You can configure these access permissions at the time of installation or adjust them at any time for already installed apps. This flexibility allows you to respond to changes in your project requirements or security policies by updating the access settings to either expand or restrict the app’s functionality and visibility within your Crowdin projects.
You can define which user categories are allowed to use the app. This setting is applied to each app module independently.
Available options for Crowdin:
Available options for Crowdin Enterprise:
In addition to user access, you can also specify the projects in which the app can be used (these settings apply across all app modules).
Project access options:
This targeted approach allows for enhanced security and customization, ensuring that the app is only used where it’s really needed.
authorization.type: "crowdin_app"
. When a Crowdin App is installed in the Account Settings the authorization flow takes place during which Crowdin and Crowdin App exchange the authorization data (the authorization code is being exchanged for an access token). In the following illustration, you can see the events that take place during this process.
Let’s examine in detail each step that happens in the illustration:
Token request - Crowdin App sends the request for API token acquiring:
Parameters
grant_type: crowdin_app | Type: Required: yes Description: The parameter is used for the flow specification of an OAuth app. |
client_id | Type: Required: yes Description: Client ID for the app is received when the app is registered. |
client_secret | Type: Required: yes Description: Client Secret for the app is received when the app is registered. |
app_id | Type: Required: yes Description: Crowdin app identifier from the app descriptor. |
app_secret | Type: Required: yes Description: The unique secret used for authorization of your Crowdin app. This value is retrieved from the installed event. |
domain | Type: Required: yes Description: The name of the organization from which the app is accessed. This value is retrieved from the installed event. |
user_id | Type: Required: yes Description: The identifier of the user who installed the app. This value is retrieved from the installed event. |