Understanding the OAuth process

In order to implement a bot user in a team that is not our own, we require a bot token similar to the ones we created earlier for our own team. We can request this token, but first we must prove that we are who we say we are using the OAuth process. OAuth (Open Authentication) is an open standard for authentication used by many companies, large and small.

The authentication process works through the following steps:

The user clicks the Add to Slack button.
Slack sends a request to the redirect URI provided in our app's settings page.
Once the request is received on our server, we redirect it to the authorization API endpoint (https://slack.com/oauth/authorize) and include the following parameters in the query string: ...

Get Building Slack Bots now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building Slack Bots by Paul Asjes

Understanding the OAuth process

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly