Skip to main content

Manage permissions and security

This page consolidates the permissions and security considerations for Glean in Slack. Each section links to the relevant configuration page for details.

Content permissions

Glean's responses in Slack respect individual content permissions. Like Glean Search and Chat, the final response includes only data the user is authorized to access. This means two users who view the same Glean answer in a channel may see different results based on their individual permissions.

For more details on how permissions are enforced during response generation, see Configure bot responses.

Channel-level permissions

Admins control which Slack channels Glean responds in. You can configure Glean to respond in all public channels, only channels where the Glean app is added, or a specific set of channels.

To configure channel-level settings, see Enable Gleanbot to respond in channels.

External channel restrictions

Glean will not respond in channels that include external parties. This safeguard prevents inadvertent information leaks to people outside your organization. This behavior is not configurable.

User access requirements

Glean only responds in Slack to users who meet both of the following criteria:

  • The user has logged into Glean at least once.
  • The user has access to Glean Assistant.

If a user does not meet these requirements, Glean will not generate a response for their questions.

Slack app permissions and scopes

The Glean Slack app requires specific OAuth scopes to function. The required scopes are listed in Admin Console > Platform > Data sources > Slack > Setup. Common scopes include:

  • assistant:write -- required for the Glean sidebar integration.
  • reactions:write -- required for emoji reactions on messages.
  • canvases:read and canvases:write -- required only if you enable Slack Canvas for daily digest delivery.

When you add or change scopes, you must reinstall the Slack app to your workspace. For Slack Enterprise Grid connectors, you must revoke existing tokens and reinstall. For detailed steps, see Set up Slack sidebar.

Public Mode permissions

When Public Mode is enabled, Glean posts responses that are visible to all members of a channel thread. To protect sensitive information, Public Mode uses only broadly shared content -- content that anyone in the organization can search for via Glean, or content that is publicly accessible.

Public Mode does not use link-only, restricted, or private content. Users can select Find more information to generate a private response that includes restricted sources visible only to them.

For the full list of datasources and content types that qualify for public replies, see Enable Public Mode.

Data source permissions

Ensure that permissions configured in your connected data sources align with your Glean permissions. Glean respects the access controls defined in each data source. If a user lacks access to a document in the source system, Glean will not include that document in their response.

Rate limits

Glean may not respond if calls have exceeded a rate limit. If Glean has received a high rate of questions, it may temporarily stop responding. This is a safeguard to ensure system stability. Users can try asking the question again later.

Was this page helpful?
Last updated on
© 2026, Glean Technologies, Inc.