Thanks to visit codestin.com
Credit goes to github.com

Skip to content

feat(slack): add HTTP webhook mode #1143

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jdrhyne wants to merge 13 commits into from
Closed

feat(slack): add HTTP webhook mode #1143

jdrhyne wants to merge 13 commits into from

Conversation

@jdrhyne
Copy link
Contributor

@jdrhyne jdrhyne commented Jan 18, 2026

Summary

Adds HTTP webhook mode for Slack integration, enabling serverless deployments without Socket Mode.

Changes

  • Signature verification (src/slack/http/signature.ts) — HMAC-SHA256 with replay protection
  • URL challenge handler (src/slack/http/challenge.ts) — Slack URL verification
  • HTTP events handler (src/slack/http/events.ts) — Request processing with immediate 200 ACK
  • Event dispatcher (src/slack/http/dispatch.ts) — Routes HTTP events to handlers
  • Config schema — Added mode, signingSecret, webhookPath fields
  • Gateway integration — Registers webhook route at configurable path
  • Provider mode switch — HTTP mode skips Socket Mode, uses WebClient only

Tests

  • signature.test.ts — 117 lines, covers valid/invalid signatures, replay, edge cases
  • challenge.test.ts — 36 lines, covers type guard and challenge echo
  • events.test.ts — 155 lines, integration tests with mocked req/res

Usage

channels:
  slack:
    accounts:
      default:
        mode: http
        signingSecret: ${SLACK_SIGNING_SECRET}
        webhookPath: /slack/events

Checklist

  • Implementation complete
  • Unit tests added
  • Integration tests added
  • Manual testing pending
  • Documentation update pending

jdrhyne added 13 commits January 17, 2026 20:17
@jdrhyne
feat(slack): add URL verification challenge handler
9e1c4c4 
Implements Slack URL verification for webhook setup:
- isUrlVerification type guard
- handleUrlVerification returns challenge string
- SlackChallengeEvent interface

Part of: slack-http-webhook-mode feature
@jdrhyne
feat(slack): add HTTP signature verification module
3bd0420 
Implements HMAC-SHA256 signature verification per Slack spec:
- Replay protection (5-minute timestamp window)
- Constant-time comparison via timingSafeEqual
- JSDoc documentation

Part of: slack-http-webhook-mode feature
@jdrhyne
Merge t2: challenge handler
08cb47a
@jdrhyne
feat(slack): add HTTP webhook mode config schema
d3e40a5 
Adds new config fields to SlackConfigSchema:
- mode: 'socket' | 'http' (default: socket)
- signingSecret: string for HTTP webhook verification
- webhookPath: string for webhook endpoint (default: /slack/events)

Includes validation: mode='http' requires signingSecret.

Part of: slack-http-webhook-mode feature
@jdrhyne
feat(slack): add HTTP webhook events handler
0626a50 
Implements main HTTP request handler for Slack webhooks:
- createSlackHttpHandler factory function
- Raw body reading for signature verification
- Header extraction for x-slack-signature/x-slack-request-timestamp
- URL verification challenge handling
- Immediate 200 acknowledgment (Slack <3s requirement)
- Async event dispatch via queueMicrotask
- Barrel export in index.ts

Part of: slack-http-webhook-mode feature
@jdrhyne
Merge t4: config schema
25c0c34
@jdrhyne
feat(slack): add gateway HTTP route registration and dispatch
ea6c8b4
@jdrhyne
feat(slack): add HTTP webhook mode to provider
081580c
@jdrhyne
Merge t6: provider mode switch
47a4981
@jdrhyne
test(slack): add URL challenge handler tests
0b2b87b
@jdrhyne
test(slack): add signature verification unit tests
157db15
@jdrhyne
Merge t8: challenge handler tests
8c5e3dc
@jdrhyne
test(slack): add HTTP handler integration tests
872f637
@steipete
Copy link
Contributor

steipete commented Jan 18, 2026

Hey J! Did you test this, does this work well?

@steipete steipete self-assigned this Jan 18, 2026
steipete added a commit that referenced this pull request Jan 18, 2026
@steipete @jdrhyne
feat(slack): add HTTP receiver webhook mode (#1143) - thanks @jdrhyne
4726580 
Co-authored-by: Jonathan Rhyne <[email protected]>
@steipete
Copy link
Contributor

steipete commented Jan 18, 2026
edited
Loading

Landed via Bolt HTTPReceiver + Slack HTTP route registry, with config validation/tests and docs/changelog updates.

Tests:

  • pnpm lint OK
  • pnpm build OK
  • pnpm test timed out; failure in src/cli/gateway.sigterm.test.ts (exits 0 on SIGTERM)

SHA: 4726580

Thanks @jdrhyne!

@steipete steipete closed this Jan 18, 2026
steipete added a commit that referenced this pull request Jan 18, 2026
@steipete @jdrhyne
feat(slack): add HTTP receiver webhook mode (#1143) - thanks @jdrhyne
220b5cc 
Co-authored-by: Jonathan Rhyne <[email protected]>
@jdrhyne jdrhyne deleted the feature/slack-http-webhook-mode branch January 19, 2026 03:23
@henrino3 henrino3 mentioned this pull request Jan 20, 2026
Closed
rsneh pushed a commit to rsneh/clawdbot that referenced this pull request Jan 21, 2026
@steipete @jdrhyne @rsneh
feat(slack): add HTTP receiver webhook mode (openclaw#1143) - thanks @…
7aeb32e 
…jdrhyne

Co-authored-by: Jonathan Rhyne <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@steipete steipete

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jdrhyne @steipete