Another idea in addition to my last response above:
I have three apps created in https://keys.developer.infusionsoft.com/apps/myapps.
- (two years old) is heavily used (accessed via Infusion-PHP-SDK).
- (two years old) is occasionally used (accessed via Infusion-PHP-SDK).
- (new one, which I plan to use to replace the two above ones; use NodeJS) is in “waiting” state for two weeks now (see here).
Long story short, I couldn’t afford to delay development of my newest api wrapper until the third app is approved by Infusion, so I decided to access, for the time being, the second app.
Question: May this be the reason of my troubles? Is it ok to request an access_token with “Infusion-External-App-B” if there is already an access_token for “Infusion-External-App-A” for one “Infusion-Internal-App-Registration”?
I hope I could express myself 
Best,
Martin