Finally got Jira Server for Slack application to work! ...but

Jira Server for Slack application

Previously, I was encountering errors whenever I attempted to connect our Jira instance to my Slack account via the "confirm access to your Slack account" link. Please see my attached screenshot of the aftermath:

...well, the problems persisted. Even whitelisting "<baseUrl>/slack*" did not help.

Eventually, I figured out how to get around the issue:

Because we're running Shibboleth, all I had to do was un-protect everything under <baseUrl>/slack* within Apache. (I did not have to whitelist anything within the Jira Server application itself.)

Although the integration now works, we don't want do blindly implement this in production without getting a sense of the risks we'd be taking by opening up everything under <baseUrl>/slack*. I thought Atlassian Support would help shed some light on this, but they recommended that I ask the experts in this Community Forum, instead.

Appreciate any and all feedback.