Skip to main content

Documentation Index

Fetch the complete documentation index at: https://www.truefoundry.com/llms.txt

Use this file to discover all available pages before exploring further.

Slack provides an official remote MCP server at https://mcp.slack.com/mcp. You can connect it to the TrueFoundry MCP Gateway so users can search Slack, read channels and threads, send messages, and work with canvases through approved AI clients.

Prerequisites

  • A TrueFoundry account with permission to add MCP servers.
  • A Slack workspace where you can create and install apps.
  • Your TrueFoundry control plane base URL.
The examples below use Slack OAuth scopes that expose every currently supported Slack MCP capability. Remove scopes your workspace does not need before creating the app.

Create a Slack App

1

Open the Slack app dashboard

Go to api.slack.com/apps. Select an existing app if you want to reuse one, or choose Create New App.
2

Create the app from a manifest

Select From an app manifest, choose the target workspace, switch the manifest editor to JSON, and paste the following manifest.Replace <tfy-control-plane-base-url> with your TrueFoundry control plane URL.
{
  "display_information": {
    "name": "TrueFoundry Slack MCP"
  },
  "features": {
    "bot_user": {
      "display_name": "TrueFoundry Slack MCP",
      "always_online": false
    }
  },
  "oauth_config": {
    "redirect_urls": [
      "https://<tfy-control-plane-base-url>/api/svc/v1/llm-gateway/mcp-servers/oauth2/callback"
    ],
    "scopes": {
      "user": [
        "search:read.public",
        "search:read.private",
        "search:read.mpim",
        "search:read.im",
        "search:read.files",
        "search:read.users",
        "chat:write",
        "channels:history",
        "groups:history",
        "mpim:history",
        "im:history",
        "canvases:read",
        "canvases:write",
        "users:read",
        "users:read.email"
      ],
      "bot": [
        "channels:read"
      ]
    }
  },
  "settings": {
    "org_deploy_enabled": false,
    "socket_mode_enabled": false,
    "token_rotation_enabled": false
  }
}
3

Review and create the app

Click Next, review the Slack summary, and create the app.
4

Enable Slack MCP

In the Slack app sidebar, open Features > Agents & AI Apps, then enable Model Context Protocol.

Slack Scope Reference

Use the table below to trim the manifest before you create the app.
CapabilitySlack scopes
Search public and private messagessearch:read.public, search:read.private, search:read.mpim, search:read.im
Search filessearch:read.files
Search userssearch:read.users
Send messageschat:write
Read channels, groups, DMs, and threadschannels:history, groups:history, mpim:history, im:history
Read and write canvasescanvases:read, canvases:write
Read user profilesusers:read, users:read.email
Let the bot list channelschannels:read
Grant only the scopes your agents need. For example, remove chat:write if agents should not post messages to Slack.

Copy Slack OAuth Credentials

Open Settings > Basic Information in your Slack app and copy the Client ID and Client Secret. Store the secret securely; you will paste it into the TrueFoundry MCP server OAuth configuration. If you reused an existing Slack app, also verify the following:
  • The redirect URL is https://<tfy-control-plane-base-url>/api/svc/v1/llm-gateway/mcp-servers/oauth2/callback.
  • The user and bot scopes match the access you want to grant.
  • Model Context Protocol is enabled under Agents & AI Apps.

Register Slack in TrueFoundry

1

Add a remote MCP server

In TrueFoundry, open MCP Gateway, click Add MCP Server, and select Connect any Remote MCP Server.
2

Configure the server

Use the following values:
FieldValue
Nameslack
URLhttps://mcp.slack.com/mcp
DescriptionSlack MCP server for searching messages, reading channels, and using Slack tools from agents.
AuthenticationOAuth2
Grant TypeAuthorization Code
Authorization URLhttps://slack.com/oauth/v2/authorize
Token URLhttps://slack.com/api/oauth.v2.access
Client IDClient ID from the Slack app
Client SecretClient Secret from the Slack app
JWT SourceAccess Token
3

Add collaborators

Add the users or teams that should use Slack tools. Assign MCP Server Manager to administrators and MCP Server User to consumers.
4

Save and authorize

Create the MCP server. Users should open the server’s Tools section and click Connect Now to complete Slack OAuth with their own Slack account.
If your TrueFoundry version discovers OAuth metadata from the remote MCP server, use the discovered values and only provide the Slack client credentials when prompted.

Verify the Connection

For OAuth-based MCP servers, users must first open the server’s Tools section and click Connect Now. After OAuth succeeds, the Slack tools appear in the tools list. Users can then try those tools from the Agent Playground. Test write-capable tools only if you intentionally kept chat:write in the Slack app scopes.

Use Slack Safely with Agents

  • Use per-user OAuth authorization so Slack permissions follow each user’s workspace access.
  • Keep the Slack client secret in TrueFoundry and rotate it if it is exposed.
  • Start with read-only scopes for broad rollouts, then add write scopes for trusted teams or virtual MCP servers.
  • Use Virtual MCP Server to publish only the Slack tools each agent should call.
  • Review Slack’s MCP security guidance before enabling Slack alongside other sensitive MCP servers.