New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Slack needs 2 providers #3788
Comments
I am wondering if the 2nd flow ("install this app into your slack workspace") makes sense in an allauth context, e.g.:
All in all, the above is a sign on the wall that things are being used for a purpose for which it was not intended. How do you deal with these issues? |
I don't think allauth should handle the 2nd flow. The first flow is intended to allow users to login to a service using Slack credentials, for which allauth kicks in. On the other hand, the second one allows the service to act within a Slack workspace, and the user who initiates the flow (typically the admin of the workspace) is simply a delegate. It is technically possible for allauth to handle the flow so that the entire workspace is registered as a Django user, but it is not a typical OAuth authentication and will overcomplicate stuffs to implement something that allauth is not indended to handle. I would suggest using the official Slack SDK for your use case. |
Closing for above mentioned reasons. |
This change 9c692c2 moved slack from OAuth to OpenID, breaking existing integrations. While it is true that Slack now supports OpenID for authentication, it also still uses OAuth for authorization.
I think there needs to be 2 django-allauth slack integrations: one for Sign into this website with your slack account (OpenID), and another for install this application into your slack workspace (OAuth 2.0).
We're going to have to revert our version of django-allauth to the version prior to this change until we can rework things. But the move of the existing provider is likely going to break almost all existing django-allauth integrations using slack if they're doing anything other than simple login.
The text was updated successfully, but these errors were encountered: