Skip to main content
Select Actions to adjust the guide
Some actions may require additional configuration in the provider to be accessible. Choose the actions you need and the guide will be updated.
Action
Scope(s)
Loading actions…
Dynamic Guide URL
Scopes Selected
Separator
Bot tokens (xoxb-) perform actions as your app. User tokens (xoxp-) perform actions as you personally. Choose the appropriate token type for your use case. Ensure token rotation is disabled for static token usage.

Create a Slack app and get your token

Create a Slack app, configure permissions, and copy the generated access token.

1

Sign in to Slack API

Sign in to the Slack API Apps page.

  • Click Create New App, then in the Create an app dialog, select From scratch.
2

Create new app

Fill in the application details.

  • Enter an App Name (e.g., “StackOne Integration”)
  • Select your workspace from the dropdown.
  • Click Create App.
3

Add scopes

Enables actions: Complete File Upload, Create Conversation, Delete File, Delete Message, Delete Scheduled Message, Get Conversation, Get File, Get File Upload URL, Get Message Permalink, Get Unified Group, Get Unified Organization, Get Unified User, Get User, Get User By Email, Get User Presence, Get User Profile, Invite Shared Conversation, Invite Users To Conversation, Join Conversation, Leave Conversation, List Conversation Members, List Conversations, List Files, List Messages, List Scheduled Messages, List Slack Connect Invites, List Thread Replies, List Unified Groups, List Unified Organizations, List Unified Users, List User Conversations, List Users, Lookup Discoverable Contact, Open Conversation, Remove User From Conversation, Rename Conversation, Revoke File Public URL, Schedule Message, Send Ephemeral Message, Send Message, Set User Presence, Set User Profile, Share File Public URL, Update Message

In the left sidebar, click OAuth & Permissions under Features. The page opens at the Advanced token security via token rotation section — scroll down to the Scopes section. Add scopes under Bot token scopes (for xoxb-) or User token scopes (for xoxp-) depending on the token type you need. At minimum, add the users:read scope — it is required for StackOne to verify the connection (used by the list users check).

4

Confirm token rotation is OFF

On the OAuth & Permissions page, scroll to Advanced token security via token rotation and confirm it is NOT opted in.

  • Static token authentication requires rotation to remain disabled. If rotation is enabled, Slack issues a rotating token (xoxe.xoxb- or xoxe.xoxp-) that expires every 12 hours, and this auth type has no refresh mechanism — the connection will silently break.
  • If you need refresh-token support, use the OAuth 2.0 (Bot Token) or OAuth 2.0 (User Token) authentication option instead.
5

Install and copy token

On the OAuth & Permissions page, click Install to [Your Workspace] — the button shows your actual workspace name (e.g. Install to stackone sandbox). The button stays disabled until at least one scope has been added in the previous step. A permissions dialog then appears — click Allow to accept the requested permissions and return to the app.

  • Bot token — copy the Bot User OAuth Token (starts with xoxb-, NOT xoxe.xoxb-)
  • User token — copy the User OAuth Token (starts with xoxp-, NOT xoxe.xoxp-)
  • Note: A token starting with xoxe. indicates token rotation is enabled — go back and disable it, then reinstall the app. Also, if you add or change scopes after installing, you must reinstall the app for the changes to take effect — a yellow banner appears at the top of the page reading “You’ve changed the permission scopes your app uses. Please reinstall your app for these changes to take effect.” with a reinstall link.

Linking the Account from the Hub

1

Navigate to the Hub

Use one of the three Linking Account Methods to access the Hub.
2

Fill out the fields

Fill out the following fields using details from your provider:
  • Slack Access Token
3

Connect

  • Click Connect
  • If applicable, the provider will redirect you to a sign-in or authorization page. Complete the provider’s authorization flow.
  • Once authorization is successful, you will see a confirmation popup

If the account linking is successful, you will see the newly linked account in your Accounts page.