SendSafely

Articles in this section

Installing the SendSafely Slack App

SendSafely for Slack is currently in Beta and is not yet available in the Slack App Directory. SendSafely Administrators can install the app directly from the SendSafely Apps and Integrations page as shown below. (A link to the Apps and Integrations page can be found in the top right corner of the SendSafely screen under the badge containing your initials).

The SendSafely for Slack App lets users safely share secrets over Slack using a simple slash command. You must be an Administrator in your Slack Workspace and in SendSafely to complete the installation.

slack-app-3 Apps and Integrations.png

Admin Permissions

After clicking the Get it Now button, Slack will request the following permissions be granted to SendSafely for Slack.

Admin Permissions.png

User Permissions

Once installed by an Admin, Slack users can launch the SendSafely app using the /SendSafely command in any Slack message or channel. The first time a user launches the SendSafely for Slack app, they will be asked to grant limited Slack permissions to SendSafely.

User Permissions.png

SendSafely uses these additional user level permissions to obtain the email address of members in the message or channel. The email address is only used to authenticate recipients via a one time pin code sent via email.

This multi-level approval (admin + individual approval) is required by Slack for apps that request access to sensitive information, such as channel member’s email addresses. While an admin initially approves the app for Workspace installation, that approval does not grant access to the email addresses in an individual's direct message or group conversation. If a user wishes to use SendSafely’s Authenticate Recipient feature (which requires access to conversation member’s email address), they must individually grant our app permission to do so. Note: those permissions only provide SendSafely with meta-data on the conversation (such as the members of the conversation). It does not allow the app (or SendSafely) access to the actual messages. Once a user grants this permission they will not be prompted again.

If users deny this request, they can still use SendSafely, but the recipient authentication option will be unavailable.

Authenticate Recipients.png

Using SendSafely with Slack Connect

Slack Connect is used to communicate with users in external Slack Workspaces (i.e. Workspaces owned by other organizations). The SendSafely Slack app can be used to post secure messages to these External Connections.

Please note that the SendSafely Authenticate Recipients feature requires those external Slack Workspaces allow outside organizations to view member email addresses. If your External Connection does not allow email address to be shared, the SendSafely Recipient Authentication feature will be disabled. Senders can still secure their message with access limits.

For reference, email sharing with external organizations is controlled in the Slack Admin Settings as shown below. 

Workspaces Settings - Slack Connect.png

Related articles