From 59ff6172826deb6acc6a21df752be47c3b1a84aa Mon Sep 17 00:00:00 2001
From: Krzysztof Wolski <krzysztof.k.wolski@gmail.com>
Date: Tue, 20 Jun 2023 17:21:31 +0200
Subject: [PATCH] Fix missing MANAGE APPS permission when using client provided
 in context (#663)

* Fix using wrong token for creating gql client

* Update gorgeous-hats-learn.md
---
 .changeset/gorgeous-hats-learn.md                         | 8 ++++++++
 apps/crm/src/modules/trpc/protected-client-procedure.ts   | 2 +-
 .../src/modules/trpc/protected-client-procedure.ts        | 2 +-
 .../src/modules/trpc/protected-client-procedure.ts        | 2 +-
 4 files changed, 11 insertions(+), 3 deletions(-)
 create mode 100644 .changeset/gorgeous-hats-learn.md

diff --git a/.changeset/gorgeous-hats-learn.md b/.changeset/gorgeous-hats-learn.md
new file mode 100644
index 0000000..90606df
--- /dev/null
+++ b/.changeset/gorgeous-hats-learn.md
@@ -0,0 +1,8 @@
+---
+"saleor-app-emails-and-messages": patch
+"saleor-app-invoices": patch
+"saleor-app-crm": patch
+---
+
+Fixed "Not enough permissions" error during configuration management.
+
diff --git a/apps/crm/src/modules/trpc/protected-client-procedure.ts b/apps/crm/src/modules/trpc/protected-client-procedure.ts
index c6e2881..3501892 100644
--- a/apps/crm/src/modules/trpc/protected-client-procedure.ts
+++ b/apps/crm/src/modules/trpc/protected-client-procedure.ts
@@ -109,7 +109,7 @@ export const protectedClientProcedure = procedure
   .use(async ({ ctx, next }) => {
     const client = createGraphQLClient({
       saleorApiUrl: ctx.saleorApiUrl,
-      token: ctx.token,
+      token: ctx.appToken,
     });
 
     return next({
diff --git a/apps/emails-and-messages/src/modules/trpc/protected-client-procedure.ts b/apps/emails-and-messages/src/modules/trpc/protected-client-procedure.ts
index 8048c86..8601b38 100644
--- a/apps/emails-and-messages/src/modules/trpc/protected-client-procedure.ts
+++ b/apps/emails-and-messages/src/modules/trpc/protected-client-procedure.ts
@@ -104,7 +104,7 @@ export const protectedClientProcedure = procedure
   .use(attachAppToken)
   .use(validateClientToken)
   .use(async ({ ctx, next }) => {
-    const client = createGraphQLClient({ saleorApiUrl: ctx.saleorApiUrl, token: ctx.token });
+    const client = createGraphQLClient({ saleorApiUrl: ctx.saleorApiUrl, token: ctx.appToken });
 
     return next({
       ctx: {
diff --git a/apps/invoices/src/modules/trpc/protected-client-procedure.ts b/apps/invoices/src/modules/trpc/protected-client-procedure.ts
index bb9d161..e6d02fd 100644
--- a/apps/invoices/src/modules/trpc/protected-client-procedure.ts
+++ b/apps/invoices/src/modules/trpc/protected-client-procedure.ts
@@ -104,7 +104,7 @@ export const protectedClientProcedure = procedure
   .use(async ({ ctx, next }) => {
     const client = createGraphQLClient({
       saleorApiUrl: ctx.saleorApiUrl,
-      token: ctx.token,
+      token: ctx.appToken,
     });
 
     return next({