Provide an extra layer of security for your access tokens by expiring and regenerating them frequently, programmatically.
Slack signs its requests using a secret that's unique to your app. With the help of signing secrets, your app can more confidently verify whether requests from us are authentic.
How to care for your tokens, secrets, webhook URLs, and data.
Our OAuth-based sign-in flow uses the OpenID Connect protocol to let users sign into your service using Slack.
A list of differences between classic Slack apps and new ones with more precise permissions.
Everything you need to know to migrate your classic Slack app to use a new fine-grained permission model.