The SendSafely for Slack App lets users safely share secrets over Slack using a simple slash command. You must be an Administrator in your Slack Workspace and in SendSafely to complete the installation.
Admin Permissions
After clicking the Get it Now button, Slack will request the following permissions be granted to SendSafely for Slack.
User Permissions
Once installed by an Admin, Slack users can launch the SendSafely app using the /SendSafely command in any Slack message or channel. The first time a user launches the SendSafely for Slack app, they will be asked to grant limited Slack permissions to SendSafely.
SendSafely uses these additional user level permissions to obtain the email address of members in the message or channel. The email address is only used to authenticate recipients via a one time pin code sent via email.
This multi-level approval (admin + individual approval) is required by Slack for apps that request access to sensitive information, such as channel member’s email addresses. While an admin initially approves the app for Workspace installation, that approval does not grant access to the email addresses in an individual's direct message or group conversation. If a user wishes to use SendSafely’s Authenticate Recipient feature (which requires access to conversation member’s email address), they must individually grant our app permission to do so. Note: those permissions only provide SendSafely with meta-data on the conversation (such as the members of the conversation). It does not allow the app (or SendSafely) access to the actual messages. Once a user grants this permission they will not be prompted again.
If users deny this request, they can still use SendSafely, but the recipient authentication option will be unavailable.
Using SendSafely with Slack Connect
Slack Connect is used to communicate with users in external Slack Workspaces (i.e. Workspaces owned by other organizations). The SendSafely Slack app can be used to post secure messages to these External Connections.
Please note that the SendSafely Authenticate Recipients feature requires those external Slack Workspaces allow outside organizations to view member email addresses. If your External Connection does not allow email address to be shared, the SendSafely Recipient Authentication feature will be disabled. Senders can still secure their message with access limits.
For reference, email sharing with external organizations is controlled in the Slack Admin Settings as shown below.
Comments
0 comments
Please sign in to leave a comment.