Skip to content
This repository has been archived by the owner on Aug 12, 2021. It is now read-only.

Latest commit

 

History

History
26 lines (15 loc) · 1.99 KB

AuthenticationGuide.md

File metadata and controls

26 lines (15 loc) · 1.99 KB

Adobe I/O Authentication Overview

Adobe is committed to privacy and security. Nearly all Adobe services require your application to authenticate through the Adobe Identity Management System (IMS) to receive client credentials. The client credentials determine the access and permissions granted to your application.

Any API that accesses a service, data or content on behalf of an end user authenticates using the OAuth or JSON Web Token standards.

Use the Adobe I/O Console to obtain client credentials by creating a new Integration. When you create an Integration, you are assigned an API Key (client ID) and other access credentials. You can then obtain a secure access token from Adobe for each API session.

An integration can be subscribed to one or more services. In many cases, you will use the same client credentials to access multiple Adobe services. In addition to APIs, you may also subscribe your integration to I/O Events so that your applications can access content and services in real-time.

Types of Authentication

An API Key is the only client credential required for these services. These integrations do not need to pass an access token with each request. e.g. Adobe Stock etc.

If your integration needs to access content or a service on behalf of an end user, that user must be authenticated as well. Your integration will need to pass the OAuth token granted by the Adobe IMS. e.g. Creative SDK, Photoshop, Adobe Analytics, etc.

For service-to-service integrations, you will also need a JSON Web Token (JWT) that encapsulates your client credentials and authenticates the identity of your integration. You exchange the JWT for the access token that authorizes access. e.g. Adobe Campaign, Adobe Launch, Adobe Target, etc.