restricting access to slash commands

[mickymac19]

Hello guys, I've been tasked in my company to create a chatbot that executes a github actions thru slash command and the problem is that, not everyone should have an access. I've searched and searched and I couldn't find a way to do it. It seems like the slash command will always be available to everyone in that workspace.

I hope there's a way to easily restrict or give permission to users by adding their users id when we create the slash command

If there's a way to do it please kindly help me out 🙇🏻‍♂️

[Atharex]

I would also be very interested in this feature. We have multiple teams wanting to run slack bots in parallel and slash commands are clashing with each other.

Either using user IDs like OP mentioned, or having it restricted via AD groups would be nice

[marcossv9]

This thread might help you https://stackoverflow.com/questions/44200239/restrict-slack-slash-command-access#:~:text=In%20order%20to%20restrict%20access,reply%20with%20an%20appropriate%20message). AFAIK there is no way to restrict slash command execution from the Slack Management console, so I'm implementing that in the API that receives the requests.

[ntatschner]

If anyone else is interested, what i did to limit slash commands and functions with in my app is to build a python function to pull users from a ActiveDirectory group and test is the user was part of that group, there are a few ways to do it, but if you're interested i could share my code? I basically throw an "error" message to the user as an ephemeral message saying they don';t have permissions to perform that command etc.