@crowdin/app-project-module 1.5.5 → 1.6.1

package/out/middlewares/crowdin-client.d.ts

@@ -15,10 +15,11 @@ export declare function prepareCrowdinRequest({ jwtToken, config, optional, chec
     client?: Crowdin;
     subscriptionInfo?: SubscriptionInfo;
 }>;
-export default function handle({ config, optional, checkSubscriptionExpiration, moduleKey, }: {
+export default function handle({ config, optional, checkSubscriptionExpiration, moduleKey, isIntegration, }: {
     config: Config;
     optional: boolean;
     checkSubscriptionExpiration: boolean;
     moduleKey?: string[] | string | undefined;
+    isIntegration?: boolean;
 }): (req: import("express").Request | CrowdinClientRequest, res: Response, next: Function) => void;
 export declare function getToken(req: CrowdinClientRequest): string | undefined;

package/out/middlewares/crowdin-client.js

@@ -17,6 +17,7 @@ const storage_1 = require("../storage");
 const util_1 = require("../util");
 const api_1 = require("../modules/api/api");
 const connection_1 = require("../util/connection");
+const integration_access_denied_1 = require("./integration-access-denied");
 const logger_1 = require("../util/logger");
 const subscription_1 = require("../util/subscription");
 function prepareCrowdinRequest(_a) {
@@ -64,7 +65,7 @@ function prepareCrowdinRequest(_a) {
         return { context, client, subscriptionInfo, logInfo, logError };
     });
 }
-function handle({ config, optional = false, checkSubscriptionExpiration = true, moduleKey, }) {
+function handle({ config, optional = false, checkSubscriptionExpiration = true, moduleKey, isIntegration = false, }) {
     return (0, util_1.runAsyncWrapper)((req, res, next) => __awaiter(this, void 0, void 0, function* () {
         var _a, _b;
         const jwtToken = getToken(req);
@@ -90,6 +91,29 @@ function handle({ config, optional = false, checkSubscriptionExpiration = true,
                 }
                 data.context = (0, api_1.updateCrowdinContext)(req, data.context);
             }
+            if (isIntegration && data.client) {
+                const result = yield (0, connection_1.resolveIntegrationAccess)(data.context.clientId);
+                if (!result.integrationCredentials) {
+                    const owners = yield (0, integration_access_denied_1.getIntegrationManagedBy)({
+                        ownerIds: result.ownerIds,
+                        crowdinApiClient: data.client,
+                        clientId: data.context.clientId,
+                    });
+                    if (owners.length) {
+                        data.logInfo('Access denied: no integration access for this project');
+                        return (0, integration_access_denied_1.renderIntegrationAccessDenied)({
+                            req,
+                            res,
+                            isApiCall: req.isApiCall,
+                            owners,
+                            debugLabel: 'crowdin-client',
+                        });
+                    }
+                }
+                else {
+                    data.context.clientId = result.clientId;
+                }
+            }
             req.crowdinContext = data.context;
             if (data.client) {
                 req.crowdinApiClient = data.client;

package/out/middlewares/integration-access-denied.d.ts

@@ -0,0 +1,22 @@
+import Crowdin from '@crowdin/crowdin-api-client';
+import { Response } from 'express';
+import { CrowdinClientRequest } from '../types';
+import { IntegrationRequest } from '../modules/integration/types';
+interface OwnerInfo {
+    name: string;
+    id: number;
+}
+export declare function getIntegrationManagedBy({ ownerIds, crowdinApiClient, clientId, }: {
+    ownerIds: number[];
+    crowdinApiClient: Crowdin;
+    clientId: string;
+}): Promise<OwnerInfo[]>;
+export declare function renderIntegrationAccessDenied({ req, res, isApiCall, owners, debugLabel, allowLogout, }: {
+    req: IntegrationRequest | CrowdinClientRequest;
+    res: Response;
+    isApiCall?: boolean;
+    owners: OwnerInfo[];
+    debugLabel: string;
+    allowLogout?: boolean;
+}): Response<any, Record<string, any>>;
+export {};

package/out/middlewares/integration-access-denied.js

@@ -0,0 +1,107 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getIntegrationManagedBy = getIntegrationManagedBy;
+exports.renderIntegrationAccessDenied = renderIntegrationAccessDenied;
+const crowdinAppFunctions = __importStar(require("@crowdin/crowdin-apps-functions"));
+const jsx_renderer_1 = require("../util/jsx-renderer");
+const logger_1 = require("../util/logger");
+function getIntegrationManagedBy(_a) {
+    return __awaiter(this, arguments, void 0, function* ({ ownerIds, crowdinApiClient, clientId, }) {
+        if (!ownerIds.length) {
+            return [];
+        }
+        const projectId = crowdinAppFunctions.getProjectId(clientId);
+        let owners = [];
+        try {
+            owners =
+                ownerIds.length > 1
+                    ? (yield crowdinApiClient.usersApi.listProjectMembers(projectId)).data.filter((member) => ownerIds.includes(member.data.id))
+                    : [yield crowdinApiClient.usersApi.getProjectMemberPermissions(projectId, ownerIds[0])];
+        }
+        catch (e) {
+            console.warn('Failed to get project members', e);
+            return [];
+        }
+        return owners.map((owner) => {
+            const ownerFullName = 'fullName' in owner.data
+                ? owner.data.fullName
+                : `${owner.data.firstName || ''} ${owner.data.lastName || ''}`.trim();
+            return {
+                id: owner.data.id,
+                name: !!ownerFullName && owner.data.username !== ownerFullName
+                    ? `${ownerFullName} (${owner.data.username})`
+                    : owner.data.username,
+            };
+        });
+    });
+}
+function renderIntegrationAccessDenied({ req, res, isApiCall, owners, debugLabel, allowLogout = false, }) {
+    const errorOptions = {
+        code: 403,
+        message: 'Access denied',
+        owners: null,
+        hideActions: false,
+        allowLogout: false,
+    };
+    if (isApiCall) {
+        return res.status(errorOptions.code).json({
+            error: {
+                message: errorOptions.message,
+            },
+        });
+    }
+    if (owners.length) {
+        errorOptions.message = 'Looks like you don’t have access';
+        errorOptions.hideActions = true;
+        errorOptions.owners = owners;
+        errorOptions.allowLogout = allowLogout;
+    }
+    else {
+        (0, logger_1.temporaryErrorDebug)(`Access denied: ${debugLabel}`, req);
+    }
+    const html = (0, jsx_renderer_1.renderJSXOnClient)({ name: 'error', props: errorOptions });
+    res.setHeader('Content-Type', 'text/html; charset=utf-8');
+    return res.send(html);
+}

package/out/middlewares/integration-credentials.js

@@ -1,37 +1,4 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -43,88 +10,57 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = handle;
-const crowdinAppFunctions = __importStar(require("@crowdin/crowdin-apps-functions"));
 const users_1 = require("../modules/integration/handlers/users");
 const storage_1 = require("../storage");
 const util_1 = require("../util");
 const connection_1 = require("../util/connection");
-const jsx_renderer_1 = require("../util/jsx-renderer");
-const logger_1 = require("../util/logger");
+const integration_access_denied_1 = require("./integration-access-denied");
 function handle({ config, integration, optional = false, isLogout = false, }) {
     return (0, util_1.runAsyncWrapper)((req, res, next) => __awaiter(this, void 0, void 0, function* () {
-        let clientId = req.crowdinContext.clientId;
         const isApiCall = req === null || req === void 0 ? void 0 : req.isApiCall;
-        const { organization, projectId, userId } = crowdinAppFunctions.parseCrowdinId(clientId);
-        req.logInfo(`Loading integration credentials for client ${clientId}`);
-        let integrationCredentials = yield (0, storage_1.getStorage)().getIntegrationCredentials(clientId);
-        let projectIntegrationCredentials = [];
-        const ownerIds = [];
-        // check if user has access to integration in settings(managers)
-        if (!integrationCredentials) {
-            projectIntegrationCredentials = (yield (0, storage_1.getStorage)().getAllIntegrationCredentials(organization)).filter((item) => {
-                const { organization: itemOrganization, projectId: itemProjectId } = crowdinAppFunctions.parseCrowdinId(item.id);
-                return itemOrganization === organization && itemProjectId === projectId;
-            });
-            if (projectIntegrationCredentials.length) {
-                for (const credentials of projectIntegrationCredentials) {
-                    ownerIds.push(crowdinAppFunctions.parseCrowdinId(credentials.id).userId);
-                    if (checkUserAccessToIntegration(credentials, `${userId}`)) {
-                        integrationCredentials = credentials;
-                        clientId = credentials.id;
-                        req.crowdinContext.clientId = clientId;
-                        break;
-                    }
-                }
-            }
-            if (!integrationCredentials && isLogout && projectIntegrationCredentials.length) {
-                const canForceLogout = yield isCrowdinProjectManager({
+        req.logInfo(`Loading integration credentials for client ${req.crowdinContext.clientId}`);
+        const { integrationCredentials: resolvedIntegrationCredentials, projectIntegrationCredentials, projectId, clientId: resolvedClientId, ownerIds, } = yield (0, connection_1.resolveIntegrationAccess)(req.crowdinContext.clientId);
+        let integrationCredentials = resolvedIntegrationCredentials;
+        let clientId = resolvedClientId;
+        if (integrationCredentials) {
+            req.crowdinContext.clientId = clientId;
+        }
+        let canForceLogout = null;
+        const getCanForceLogout = () => __awaiter(this, void 0, void 0, function* () {
+            if (canForceLogout === null) {
+                canForceLogout = yield isCrowdinProjectManager({
                     req,
                     projectId,
                     memberId: req.crowdinContext.jwtPayload.context.user_id,
                 });
-                if (canForceLogout) {
-                    integrationCredentials = projectIntegrationCredentials[0];
-                    clientId = integrationCredentials.id;
-                    req.crowdinContext.clientId = clientId;
-                    req.canForceIntegrationLogout = true;
-                }
+            }
+            return canForceLogout;
+        });
+        if (!integrationCredentials && isLogout && projectIntegrationCredentials.length) {
+            if (yield getCanForceLogout()) {
+                integrationCredentials = projectIntegrationCredentials[0];
+                clientId = integrationCredentials.id;
+                req.crowdinContext.clientId = clientId;
+                req.canForceIntegrationLogout = true;
             }
         }
         if (!integrationCredentials) {
-            const owners = yield getIntegrationManagedBy(ownerIds, req);
+            const owners = yield (0, integration_access_denied_1.getIntegrationManagedBy)({
+                ownerIds,
+                crowdinApiClient: req.crowdinApiClient,
+                clientId: req.crowdinContext.clientId,
+            });
             if (optional && !owners.length) {
                 return next();
             }
-            const errorOptions = {
-                code: 403,
-                message: 'Access denied',
-                owners: null,
-                hideActions: false,
-                allowLogout: false,
-            };
-            if (isApiCall) {
-                return res.status(errorOptions.code).json({
-                    error: {
-                        message: errorOptions.message,
-                    },
-                });
-            }
-            if (owners) {
-                errorOptions.message = 'Looks like you don’t have access';
-                errorOptions.hideActions = true;
-                errorOptions.owners = owners;
-                errorOptions.allowLogout = yield isCrowdinProjectManager({
-                    req,
-                    projectId,
-                    memberId: req.crowdinContext.jwtPayload.context.user_id,
-                });
-            }
-            else {
-                (0, logger_1.temporaryErrorDebug)('Access denied: integration-credentials', req);
-            }
-            const html = (0, jsx_renderer_1.renderJSXOnClient)({ name: 'error', props: errorOptions });
-            res.setHeader('Content-Type', 'text/html; charset=utf-8');
-            return res.send(html);
+            return (0, integration_access_denied_1.renderIntegrationAccessDenied)({
+                req,
+                res,
+                isApiCall,
+                owners,
+                debugLabel: 'integration-credentials',
+                allowLogout: yield getCanForceLogout(),
+            });
         }
         try {
             req.integrationCredentials = yield (0, connection_1.prepareIntegrationCredentials)(config, integration, integrationCredentials);
@@ -158,43 +94,6 @@ function handle({ config, integration, optional = false, isLogout = false, }) {
         next();
     }));
 }
-function checkUserAccessToIntegration(integrationCredentials, userId) {
-    if (integrationCredentials === null || integrationCredentials === void 0 ? void 0 : integrationCredentials.managers) {
-        const managers = JSON.parse(integrationCredentials.managers);
-        return (managers || []).includes(userId);
-    }
-    return false;
-}
-function getIntegrationManagedBy(ownerIds, req) {
-    return __awaiter(this, void 0, void 0, function* () {
-        if (!ownerIds.length) {
-            return [];
-        }
-        const projectId = crowdinAppFunctions.getProjectId(req.crowdinContext.clientId);
-        let owners = [];
-        try {
-            owners =
-                ownerIds.length > 1
-                    ? (yield req.crowdinApiClient.usersApi.listProjectMembers(projectId)).data.filter((member) => ownerIds.includes(member.data.id))
-                    : [yield req.crowdinApiClient.usersApi.getProjectMemberPermissions(projectId, ownerIds[0])];
-        }
-        catch (e) {
-            console.warn('Failed to get project members', e);
-            return [];
-        }
-        return owners.map((owner) => {
-            const ownerFullName = 'fullName' in owner.data
-                ? owner.data.fullName
-                : `${owner.data.firstName || ''} ${owner.data.lastName || ''}`.trim();
-            return {
-                id: owner.data.id,
-                name: !!ownerFullName && owner.data.username !== ownerFullName
-                    ? `${ownerFullName} (${owner.data.username})`
-                    : owner.data.username,
-            };
-        });
-    });
-}
 function isCrowdinProjectManager(_a) {
     return __awaiter(this, arguments, void 0, function* ({ req, projectId, memberId, }) {
         try {

package/out/modules/integration/index.js

@@ -68,102 +68,119 @@ function register({ config, app }) {
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, subscription_info_1.default)(config));
     app.get('/api/all-jobs', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, job_list_1.default)());
     app.get('/api/job-info', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, job_info_1.default)());
     app.get('/api/jobs', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, job_info_deprecated_1.default)(config));
     app.delete('/api/jobs', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, job_cancel_1.default)());
     app.post('/api/settings', (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, settings_save_1.default)(config, integrationLogic));
     app.post('/api/login', (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: false,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_login_1.default)(config, integrationLogic));
     app.post('/api/logout', (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: false,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic, isLogout: true }), (0, integration_logout_1.default)(config, integrationLogic));
     app.get('/api/crowdin/files', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, crowdin_files_1.default)(config, integrationLogic));
     app.get('/api/crowdin/project', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, crowdin_project_1.default)());
     app.get('/api/crowdin/file-progress/:fileId', (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, crowdin_file_progress_1.default)(integrationLogic));
     app.get('/api/integration/data', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, integration_data_1.default)(integrationLogic));
     app.post('/api/crowdin/update', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, crowdin_update_1.default)(config, integrationLogic));
     app.post('/api/crowdin/files-target-languages', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, crowdin_files_target_languages_1.default)(config, integrationLogic));
     app.post('/api/integration/update', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, integration_update_1.default)(config, integrationLogic));
     app.get('/api/sync-settings/:provider', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, sync_settings_1.default)());
     app.post('/api/sync-settings', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, sync_settings_save_1.default)(config, integrationLogic));
     if (integrationLogic.oauthLogin) {
         app.get((0, defaults_1.getOauthRoute)(integrationLogic), (0, oauth_login_1.default)(config, integrationLogic));
@@ -172,6 +189,7 @@ function register({ config, app }) {
             optional: false,
             checkSubscriptionExpiration: false,
             moduleKey: integrationLogic.key,
+            isIntegration: true,
         }), (0, oauth_url_1.default)(config, integrationLogic));
         if (integrationLogic.oauthLogin.mode === 'polling') {
             app.post('/api/oauth-polling', json_response_1.default, (0, crowdin_client_1.default)({
@@ -179,6 +197,7 @@ function register({ config, app }) {
                 optional: false,
                 checkSubscriptionExpiration: false,
                 moduleKey: integrationLogic.key,
+                isIntegration: true,
             }), (0, oauth_polling_1.default)(config, integrationLogic));
         }
     }
@@ -226,17 +245,20 @@ function register({ config, app }) {
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, user_errors_1.default)());
     app.get('/api/users', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, users_1.default)());
     app.post('/api/invite-users', json_response_1.default, (0, crowdin_client_1.default)({
         config,
         optional: false,
         checkSubscriptionExpiration: true,
         moduleKey: integrationLogic.key,
+        isIntegration: true,
     }), (0, integration_credentials_1.default)({ config, integration: integrationLogic }), (0, invite_users_1.default)());
 }

package/out/util/connection.d.ts

@@ -10,4 +10,12 @@ export declare function prepareCrowdinClient({ config, credentials, autoRenew, c
     client: Crowdin;
     token: string;
 }>;
+export interface IntegrationAccessResult {
+    integrationCredentials: IntegrationCredentials | null;
+    projectIntegrationCredentials: IntegrationCredentials[];
+    projectId: number;
+    clientId: string;
+    ownerIds: number[];
+}
+export declare function resolveIntegrationAccess(clientId: string): Promise<IntegrationAccessResult>;
 export declare function prepareIntegrationCredentials(config: Config, integration: IntegrationLogic, integrationCredentials: IntegrationCredentials): Promise<any>;

package/out/util/connection.js

@@ -46,6 +46,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.prepareCrowdinClient = prepareCrowdinClient;
+exports.resolveIntegrationAccess = resolveIntegrationAccess;
 exports.prepareIntegrationCredentials = prepareIntegrationCredentials;
 const crowdin_api_client_1 = __importDefault(require("@crowdin/crowdin-api-client"));
 const crowdin_apps_functions_1 = require("@crowdin/crowdin-apps-functions");
@@ -259,6 +260,38 @@ function prepareCrowdinClient(_a) {
         };
     });
 }
+function resolveIntegrationAccess(clientId) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const { organization, projectId, userId } = crowdinAppFunctions.parseCrowdinId(clientId);
+        let integrationCredentials = yield (0, storage_1.getStorage)().getIntegrationCredentials(clientId);
+        const ownerIds = [];
+        let projectIntegrationCredentials = [];
+        if (!integrationCredentials) {
+            projectIntegrationCredentials = (yield (0, storage_1.getStorage)().getAllIntegrationCredentials(organization)).filter((item) => {
+                const { organization: itemOrganization, projectId: itemProjectId } = crowdinAppFunctions.parseCrowdinId(item.id);
+                return itemOrganization === organization && itemProjectId === projectId;
+            });
+            for (const credentials of projectIntegrationCredentials) {
+                ownerIds.push(crowdinAppFunctions.parseCrowdinId(credentials.id).userId);
+                if (credentials.managers) {
+                    const managers = JSON.parse(credentials.managers) || [];
+                    if (managers.includes(`${userId}`)) {
+                        integrationCredentials = credentials;
+                        clientId = credentials.id;
+                        break;
+                    }
+                }
+            }
+        }
+        return {
+            integrationCredentials: integrationCredentials || null,
+            projectIntegrationCredentials,
+            projectId,
+            clientId,
+            ownerIds,
+        };
+    });
+}
 function prepareIntegrationCredentials(config, integration, integrationCredentials) {
     return __awaiter(this, void 0, void 0, function* () {
         const credentials = JSON.parse((0, _1.decryptData)(config, integrationCredentials.credentials));

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@crowdin/app-project-module",
-  "version": "1.5.5",
+  "version": "1.6.1",
   "description": "Module that generates for you all common endpoints for serving standalone Crowdin App",
   "main": "out/index.js",
   "types": "out/index.d.ts",