Learn how to create a new Slack app that uses the latest and greatest installation and permissions model.
Use OAuth 2.0 to provide an installation flow that allows your apps to be added to any workspace, and distributed in the App Directory.
Tokens are the keys to the Slack platform. Read about the different token types, and what each is best for.
Use scopes to request permission from installers and users for access to data and functionality in apps.
Provide an extra layer of security for your access tokens by expiring and regenerating them frequently, programmatically.
Slack signs its requests using a secret that's unique to your app. With the help of signing secrets, your app can more confidently verify whether requests from us are authentic.
How to care for your tokens, secrets, webhook URLs, and data.
Our OAuth-based sign-in flow uses the OpenID Connect protocol to let users sign into your service using Slack.
A list of differences between classic Slack apps and new ones with more precise permissions.
Everything you need to know to migrate your classic Slack app to use a new fine-grained permission model.