`ekm_access_denied` message type

Message content redacted due to Enterprise Key Management (EKM)

Facts

Required Scopes

channels:history

groups:history

im:history

mpim:history

Compatible APIs

Events

RTM

Usage info

This example includes both the event wrapper and the event structure for the ekm_access_denied message subtype event.

{
    "token": "XXYYZZ",
    "team_id": "T123ABC456",
    "api_app_id": "A123ABC456",
    "event": {
        "type": "message",
        "subtype": "ekm_access_denied",
        "ts": "1358877455.000010",
        "text": "Your admins have suspended everyone's access to this content.",
        "user": "UREVOKEDU"
    },
    "type": "event_callback",
    "authed_users": [
        "U123ABC456",
        "U222222222"
    ],
    "event_id": "Ev123ABC456",
    "event_time": 123456789
}

This message subtype appears when an original piece of content is redacted by a workspace's administrators. The actual message content is unavailable.

The author of so-called "tombstoned" content will be indicated with the user ID UREVOKEDU. This virtual user ID cannot be looked up with users.info or users.list.

Facts

Usage info​

Usage info