From d2897e5cf13316b04851f7cb9e31b2caf0d3765b Mon Sep 17 00:00:00 2001
From: Timshel <timshel@users.noreply.github.com>
Date: Wed, 12 Mar 2025 15:38:33 +0100
Subject: [PATCH] Add Slack configuration hints

---
 SSO.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/SSO.md b/SSO.md
index b113db61..5b3590a6 100644
--- a/SSO.md
+++ b/SSO.md
@@ -220,6 +220,19 @@ Your configuration should look like this:
 * `SSO_CLIENT_ID=${Application (client) ID}`
 * `SSO_CLIENT_SECRET=${Secret Value}`
 
+## Slack
+
+You will need to create an app in https://api.slack.com/apps/.
+
+It appears that the `access_token` returned is not in JWT format and an expiration date is not sent with it. As such you will need to use the default session lifecycle.
+
+Your configuration should look like this:
+
+* `SSO_AUTHORITY=https://slack.com`
+* `SSO_CLIENT_ID=${Application Client ID}`
+* `SSO_CLIENT_SECRET=${Application Client Secret}`
+* `SSO_AUTH_ONLY_NOT_SESSION=true`
+
 ## Zitadel
 
 To obtain a `refresh_token` to be able to extend session you'll need to add the `offline_access` scope.