In your application settings, you can adjust the application to be of the “read, write, & direct messages” permission variety. After enabling that option, you’ll then need to renegotiate any existing access tokens so that they’re also capable of this additional permission.
