Add Slack and Microsoft Teams Bot Extensions #1656
Closed
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This commit adds comprehensive Slack and Microsoft Teams bot integrations following the existing Discord extension patterns: New files: - agixt/extensions/slack.py: Slack OAuth extension with: - SlackSSO class for OAuth token management - sso() function for authorization code exchange - get_slack_user_ids() for user mapping - slack Extension class with 14 bot commands - agixt/SlackBotManager.py: Multi-company Slack bot manager with: - CompanySlackBot class for handling Slack events via Socket Mode - SlackBotManager class for managing multiple bot instances - User impersonation via OAuth-linked accounts - Message handling for @mentions and DMs - agixt/extensions/teams.py: Microsoft Teams OAuth extension with: - TeamsSSO class for Microsoft identity platform - sso() function for authorization code exchange - get_teams_user_ids() for user mapping - teams Extension class with 14 bot commands - agixt/TeamsBotManager.py: Multi-company Teams bot manager with: - CompanyTeamsBot class using Bot Framework - TeamsBotManager class for managing multiple bot instances - User impersonation via OAuth-linked accounts - HTTP endpoint for Bot Framework messages Modified files: - agixt/endpoints/Auth.py: Added bot invite endpoints: - GET /v1/slack/bot-invite for Slack workspace installation - GET /v1/teams/bot-invite for Teams app installation Environment variables required: - Slack: SLACK_CLIENT_ID, SLACK_CLIENT_SECRET, SLACK_BOT_TOKEN, SLACK_APP_TOKEN - Teams: TEAMS_CLIENT_ID, TEAMS_CLIENT_SECRET, TEAMS_APP_ID, TEAMS_APP_PASSWORD Reference: Based on existing Discord extension patterns (DiscordBotManager.py, extensions/discord.py)
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| return web.Response(status=201) | ||
| except Exception as e: | ||
| logger.error(f"Error processing Teams activity: {e}") | ||
| return web.Response(status=500, text=str(e)) |
Check warning
Code scanning / CodeQL
Information exposure through an exception Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 3 days ago
In general, to fix this kind of problem you keep detailed error information (including exception messages and stack traces) in server-side logs and return only a generic, non-sensitive error message to the client. This prevents potential attackers from learning about internal structure, file paths, or other sensitive details, while still preserving enough information for operators through logging.
For this specific case in agixt/TeamsBotManager.py, we should change the except block in _process_request so that:
- The error is still logged using
logger.error(...)as it already is. - The HTTP response body does not include
str(e)but instead returns a generic message like"Internal server error"or similar. - We keep the HTTP status code as 500 to indicate failure without revealing details.
No new imports or helper methods are needed. The precise edit is around lines 372–374: replace web.Response(status=500, text=str(e)) with a web.Response that uses a constant, generic error string.
Suggested changeset
1
agixt/TeamsBotManager.py
| @@ -371,7 +371,7 @@ | ||
| return web.Response(status=201) | ||
| except Exception as e: | ||
| logger.error(f"Error processing Teams activity: {e}") | ||
| return web.Response(status=500, text=str(e)) | ||
| return web.Response(status=500, text="Internal server error") | ||
|
|
||
| async def start(self, port: int = None): | ||
| """Start the Teams bot HTTP endpoint.""" |
Copilot is powered by AI and may make mistakes. Always verify output.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This PR adds comprehensive Slack and Microsoft Teams bot integrations following the existing Discord extension patterns.
Changes Made
New Files
Slack Integration
agixt/extensions/slack.py: Slack OAuth extensionSlackSSOclass for OAuth 2.0 token managementsso()function for authorization code exchangeget_slack_user_ids()for user ID to email mappingslackExtension class with 14 bot commands (send messages, list channels, etc.)agixt/SlackBotManager.py: Multi-company Slack bot managerCompanySlackBotclass for handling Slack events via Socket ModeSlackBotManagerclass for managing multiple bot instances per companyMicrosoft Teams Integration
agixt/extensions/teams.py: Microsoft Teams OAuth extensionTeamsSSOclass for Microsoft Identity Platform OAuthsso()function for authorization code exchangeget_teams_user_ids()for user ID to email mappingteamsExtension class with 14 bot commands (list teams, send messages, etc.)agixt/TeamsBotManager.py: Multi-company Teams bot managerCompanyTeamsBotclass using Microsoft Bot FrameworkTeamsBotManagerclass for managing multiple bot instancesModified Files
agixt/endpoints/Auth.py: Added bot invite endpointsGET /v1/slack/bot-invite- Returns Slack workspace installation URLGET /v1/teams/bot-invite- Returns Teams app installation informationDesign Patterns
This implementation follows the exact patterns established in the Discord extension:
extensions/discord.pyextensions/slack.pyextensions/teams.pyDiscordBotManager.pySlackBotManager.pyTeamsBotManager.pyDiscordSSOSlackSSOTeamsSSOget_discord_user_ids()get_slack_user_ids()get_teams_user_ids()/v1/discord/bot-invite/v1/slack/bot-invite/v1/teams/bot-inviteEnvironment Variables Required
Slack
SLACK_CLIENT_ID- Slack OAuth client IDSLACK_CLIENT_SECRET- Slack OAuth client secretSLACK_BOT_TOKEN- Bot User OAuth TokenSLACK_APP_TOKEN- App-level token for Socket ModeSLACK_SIGNING_SECRET- App signing secret (optional)Microsoft Teams
TEAMS_CLIENT_ID- Azure AD application client IDTEAMS_CLIENT_SECRET- Azure AD application client secretTEAMS_APP_ID- Bot Framework App IDTEAMS_APP_PASSWORD- Bot Framework App PasswordTEAMS_BOT_PORT- HTTP port for Bot Framework endpoint (default: 3978)How to Test
Slack
Microsoft Teams
Breaking Changes
None - this is a new feature addition.
Related
DiscordBotManager.py,extensions/discord.py