@kehers/passport-slack
Advanced tools
Passport strategy for authenticating with the Slack OAuth v2 API. This lets you use the v2 OAuth endpoints, set granular scopes (both user_scope and scope) and get user profile.
$ npm install --save passport @kehers/passport-slack
Create a Slack App to get a Client ID and Client Secret. Ensure you selected the right bot and user scopes for your app’s needs. The Strategy uses https://slack.com/api/users.identity to retrieve user’s profile by default and this requires the identity:basic user scope.
Supply your Slack Client ID and Client Secret as options to the strategy. The strategy also requires a verify callback, which receives an access
token from the grant, data response from Slack and user profile. The verify callback must call done providing the value you
want to assign to req.user in authenticated requests.
passport.use(new SlackStrategy({
clientID: process.env.SLACK_CLIENT_ID,
clientSecret: process.env.SLACK_CLIENT_SECRET,
callbackURL: process.env.SLACK_CALLBACK
}, (accessToken, response, profile, done) => {
// Create your desired user model and then call `done()`
User.findOrCreate({ user_id: profile.user.id }, function (err, user) {
return done(err, user)
})
}))
Use passport.authenticate(), specifying the ‘slack’ strategy, to authenticate requests.
For example, as route middleware in an Express application:
// Visiting this route when not already authenticated with slack will redirect the user to slack.com
// and ask the user to authorize your application
app.get('/auth', passport.authenticate('slack'))
// The user returns to the your site after the authorization above, and if it was successful
// the next route handler runs, otherwise the user is redirected to chosen failureRedirect.
app.get('/auth/callback',
passport.authenticate('slack', { failureRedirect: '/login' }),
function(req, res) {
// Successful authentication, redirect home.
res.redirect('/')
});
You can pass in necessary scope and user_scopes depending on permissions required by your application.
app.get('/auth', passport.authenticate('slack', {
user_scope: ['users:read'],
scope: ['team:read', 'chat:write', 'chat:write.customize', 'chat:write.public', 'commands', 'channels:read', 'im:history']
}))
See the example directory for a simple implementation.
FAQs
Slack OAuth v2 authentication strategy for Passport
The npm package @kehers/passport-slack receives a total of 26 weekly downloads. As such, @kehers/passport-slack popularity was classified as not popular.
We found that @kehers/passport-slack demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Deno 2.2 enhances Node.js compatibility, improves dependency management, adds OpenTelemetry support, and expands linting and task automation for developers.
Security News
React's CRA deprecation announcement sparked community criticism over framework recommendations, leading to quick updates acknowledging build tools like Vite as valid alternatives.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.