We have a similar use case but would like to have a way to figure out if our own app is installed in a Jira instance via the Jira REST API and OAuth2 (3LO). Like others, we are currently using a hack to get that information. Unfortunately, it seems to fall apart now too: How to interpret 400, 403 and 404 errors returned by POST /rest/api/2/search?