App Installation
You can install Crowdin Apps either from the Crowdin Store or manually, depending on whether the app is already published or not.
Installation in Crowdin
To install the app that is already published on the Crowdin Store, follow these steps:
- Open your profile home page and select Store on the left sidebar.
- Click Install on the needed app.
- In the appeared dialog, configure preferred permissions and click Install.
To install a private app, follow these steps:
- Go to Account Settings > Apps and click Install Private App.
- In the appeared dialog, paste in the Crowdin app Manifest URL and click Install.
- In the Install Application dialog, configure preferred permissions and click Install.
Installation in Crowdin Enterprise
To install the app that is already published on the Crowdin Store, follow these steps:
- Open your organization’s Workspace and select Store on the left sidebar.
- Click Install on the needed app.
- In the appeared dialog, configure preferred permissions and click Install.
To install a private app, follow these steps:
- Go to Organization Settings > Apps and click Install Private App.
- In the appeared dialog, paste in the Crowdin app Manifest URL and click Install.
- In the Install Application dialog, configure preferred permissions and click Install.
Crowdin Apps Permission Configuration
Configure preferred permissions for each app during the installation process. This step allows you to define who can access and use the app across its various modules and specifying in which projects of your Crowdin account (for Crowdin) or Crowdin organization (for Crowdin Enterprise) it can be used.
If you restrict access to certain projects by using the Selected projects option, the app will not be able to communicate via the API with projects that are not included in the selected list. Also, the app will only be displayed in the UI of the selected projects. This ensures that the app’s functionality and access are precisely tailored to the specific needs and security requirements of your organization.
You can configure these access permissions at the time of installation or adjust them at any time for already installed apps. This flexibility allows you to respond to changes in your project requirements or security policies by updating the access settings to either expand or restrict the app’s functionality and visibility within your Crowdin projects.
User Access Categories
You can define which user categories are allowed to use the app. This setting is applied to each app module independently.
Available options for Crowdin:
- Only me (i.e., project owner)
- Me, project managers and developers
- All project members
- Custom Access (selected users)
- Guests (unauthenticated users)
Available options for Crowdin Enterprise:
- Only organization admins
- Organization admins, project managers and developers
- All project members
- Custom Access (selected users)
- Guests (unauthenticated users)
Project Access Configuration
In addition to user access, you can also specify the projects in which the app can be used (these settings apply across all app modules).
Project access options:
- Projects you own (for Crowdin) or All projects (for Crowdin Enterprise)
- Selected projects
This targeted approach allows for enhanced security and customization, ensuring that the app is only used where it’s really needed.
Installed Event Communication Flow
When a Crowdin App is installed in the Account Settings the authorization flow takes place during which Crowdin and Crowdin App exchange the authorization data (the authorization code is being exchanged for an access token). In the following illustration, you can see the events that take place during this process.
Let’s examine in detail each step that happens in the illustration:
- Installation of the Manifest URL - the user pastes in the Manifest URL in the Account Settings > Crowdin Applications and clicks Install.
- Fetching content from the Manifest URL - the request is sent to Crowdin App.
- Response: manifest JSON - Crowdin App returns the Manifest JSON that contains the data about the app.
- Manifest Data Validation - the received content is validated according to the structure and data of the Manifest JSON.
- Prompt to install - the information about the Crowdin App, as well as the list of permissions and the Install button is displayed to the user.
- Confirmation of the installation - the user confirms the installation of the Crowdin App.
- The Installed event - Crowdin sends the Installed event with the authorization code to the Crowdin App for API token generation.
- Token request - Crowdin App sends the request for API token acquiring:
- Access Token - authorization service returns the API access token and the refresh token.
- Success Code Response - Crowdin App returns the success status code (2xx) which confirms that the application installation was successfully finished. In case the status code is different, the application will be removed from the Crowdin account.
Token request parameters (step 8):
grant_type: crowdin_app | Type: Required: yes Description: The parameter is used for the flow specification of an OAuth app. |
client_id | Type: Required: yes Description: Client ID for the app is received when the app is registered. |
client_secret | Type: Required: yes Description: Client Secret for the app is received when the app is registered. |
app_id | Type: Required: yes Description: Crowdin app identifier from the app descriptor. |
app_secret | Type: Required: yes Description: The unique secret used for authorization of your Crowdin app. This value is retrieved from the installed event. |
domain | Type: Required: yes Description: The name of the organization from which the app is accessed. This value is retrieved from the installed event. |
user_id | Type: Required: yes Description: The identifier of the user who installed the app. This value is retrieved from the installed event. |