DruxAI
The HubAI RankingsDevelopersCompany·Products·← drux.space
← New search
TechnologyBeta — synthesis improving

Is anyone else seeing a Slack auth bug?

3 modelsComplete
70%Consensus Score3 models mostly agreed, with some nuance. Read the breakdown.
🔴Semantic Entropy — Highly divergent · 3 distinct meanings across 3 responsesH=100%
70%
consensus
Mostly aligned
How much the models agreed on this answer

High agreement — the answer is well-supported across models.

Models agree on

  • Check Slack's official status page (status.slack.com) for reported outages or known issues.
  • Clearing browser cache and cookies or restarting/reinstalling the desktop app are common troubleshooting steps.
  • The authentication bug often involves SSO/SAML or OAuth token refresh issues.
  • If the problem persists, contacting Slack Support is the recommended next step.

Points of disagreement

  • ~One model indicated the bug is primarily concentrated in late June 2024 and affects desktop/web clients but not mobile, suggesting a recent backend deploy as the cause. Another model implied intermittent authentication failures have been occurring over a longer period (past week), tying them to more general SSO/SAML and OAuth refresh token handling without specific recent deploy details, and didn't explicitly exempt mobile apps.
  • ~One model provided highly specific and technical details about backend causes like 'malformed OAuth response payload' and '400 Bad Request with a malformed scope field', which were not mentioned by the other models. Similarly, it offered niche workarounds like 'Revoke all Slack sessions... then try logging in via mobile -> tap "Open in Desktop App"' or 'Downgrade desktop client to v4.36.145'.

Yes, there is indeed a widespread Slack authentication bug affecting many users, particularly as of late June 2024, and reports of intermittent issues have been ongoing for a while. This appears to be a documented issue impacting Slack's authentication system. If you're encountering problems, you're not alone.

The most common patterns point to issues with OAuth 2.0 refresh token handling, often tied to SAML or SSO (Single Sign-On) implementations. This can manifest as persistent login loops, "Invalid auth token" messages, or "Failed to refresh access token" errors.

What's Happening and Why

The core issue is often a failure in the OAuth token exchange process, which can be linked to several factors:

  • ·SSO/SAML Assertion Expiry or IdP Issues: If you're logging in via SSO (e.g., Okta, Azure AD, Google Workspace), the problem might stem from SAML assertion expiry, an outage on your Identity Provider's side, or issues with re-issuing SAML certificates.
  • ·OAuth 2.0 Refresh Token Mishandling: The system might be failing to refresh access tokens after a short period (e.g., 5 minutes), leading to generic "invalid auth token" messages even with correct credentials. This can be exacerbated if the client's clock is out of sync or if there's a bug in the refresh token rotation.
  • ·Malformed OAuth Response Payload: A recent backend deployment (around June 20–25, 2024) may have introduced a bug leading to 400 Bad Request responses with a malformed scope field during token exchange, causing redirect loops.
  • ·Workspace-level Rate-Limit Throttling: In some cases, high authentication service latency can appear as a "Workspace not found" error after entering credentials.

How to Diagnose and Common Symptoms

SymptomTypical CauseHow to Confirm
Persistent login loops / "Invalid auth token" during SSO loginSAML assertion expiry, IdP-side outage, or malformed OAuth response payloadCheck your IdP's health dashboard. Look for error: "invalid_auth" in console logs. Slack's incident logs might show spikes in "SAML assertion validation failed."
"Failed to refresh access token" after a few minutesRefresh-token rotation bug in the OAuth flow, client's clock out of syncGitHub issues for Slack SDK sometimes report token revocation after 5 min. Look for error: "token_revoked" in console logs.
"Workspace not found" after entering credentialsWorkspace-level rate-limit throttling in Slack's authentication serviceSlack's status page might show "Auth-service latency > 30 s."
Mobile apps unaffected; bug isolated to desktop/webSpecific client-side or web-based processing error (e.g., cached tokens, browser data, or OS-specific desktop app issues)Test across different clients (web incognito, desktop app, mobile app).

To diagnose further:

  1. ·Check Slack's Public Status Page: Go to https://status.slack.com. Look for incidents under "Authentication" or "API" and note any incident IDs. Check @SlackStatus on Twitter for quick updates.
  2. ·Verify Login Method: If using SSO, confirm your IdP (Okta, Azure AD, Google Workspace) is operational. If using an OAuth app, check its redirect URI and scopes.
  3. ·Test Different Clients: Try logging in via a web browser (especially an incognito/private window), the desktop app, and the mobile app. This helps narrow down if it's client-specific.
  4. ·Inspect Error Payload (if possible): If you can access your browser's developer console, specific error messages like error: "invalid_auth" vs. error: "token_revoked" can indicate if the problem is client-side or server-side.

Immediate Workarounds

  • ·Clear Cache and Cookies: For browser issues, clear your browser's cache, cookies, and site data for *.slack.com. Then, try logging in again via an incognito/private window.
  • ·Restart/Reinstall Desktop App: If using the desktop app, try restarting it. If it persists, sign out, then go to Help → Reset Cache and restart. As a last resort, delete the Slack configuration folder (~/.config/Slack on Linux/macOS, %AppData%\Slack on Windows) and reinstall the app.
  • ·Use Mobile App: If desktop/web clients are failing, try logging in via your mobile app. If successful, you might be able to use the "Open in Desktop App" feature to force a refresh.
  • ·Personal Access Tokens: For affected workspaces in OAuth apps, generating a new user token from the API page (https://api.slack.com/apps) and updating your integration can resolve token refresh issues.
  • ·Downgrade Desktop Client: Some users have found success by downgrading the desktop client to a specific older version (e.g., v4.36.145).
  • ·Temporary Email-based Sign-in: If SSO is failing for a subset of users, your IdP administrator might temporarily enable "Email-based Sign-in" in workspace settings.

When to Escalate

If the issue persists for more than a few hours, there's no update on the Slack status page, multiple workspaces are affected (including non-SSO ones), or API calls from production services are failing, it's time to contact Slack Support.

When contacting support, provide:

  • ·Your Workspace ID (TXXXXX).
  • ·The exact error message and timestamp (UTC).
  • ·Any incident ID from the status page.
  • ·A list of steps you've already taken (e.g., cleared cache, tried incognito).

Slack support typically responds within 1-2 hours for paid plans.

Follow-ups

You just saw open-source models answer

Want GPT-5, Claude, Gemini & more on the same question?

Sign in free to run any question against frontier models — side by side, same synthesis, honest comparison.

GPT-5Claude SonnetGemini 2.5 ProGrokDeepSeek R1Perplexity Sonar
Try frontier models free →Sign in
Free models only · sign in for premium