Authentication setup

Learn how to authenticate requests to the Adobe Cloud Storage and Collaboration API.

Overview

Every request made to Adobe Cloud Storage and Collaboration APIs must include an encrypted access token. Your secure, server-side application retrieves an access token by making a request to the Adobe Identity Management System (IMS), using your Client ID and Client Secret.

Prerequisites

Before proceeding, work with your Adobe Representative and ensure you have the following:

Retrieve a server-to-server access token

Perform the following steps:

  1. Open a secure terminal and export your Client ID and Client Secret as environment variables:

    export CLOUD_STORAGE_CLIENT_ID=yourClientIdAsdf123
export CLOUD_STORAGE_CLIENT_SECRET=yourClientSecretAsdf123

  2. Run the following command to generate an access token:

    curl --location 'https://ims-na1.adobelogin.com/ims/token/v3' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode "client_id=$CLOUD_STORAGE_CLIENT_ID" \
--data-urlencode "client_secret=$CLOUD_STORAGE_CLIENT_SECRET" \
--data-urlencode 'scope=openid, AdobeID, offline_access, creative_sdk'

    A sample response is as follows:

    {
  "access_token": "yourAccessTokenAsdf123",
  "token_type": "bearer",
  "expires_in": 86399
}

    The expires_in field indicates the token’s validity in seconds, typically, 24 hours. Your application should securely store the token and refresh it before expiration.

  3. Export your access token as an environment variable:

    export FIREFLY_SERVICES_ACCESS_TOKEN=yourAccessTokenAsdf123

Technical account privileges

===TODO: add section about making the TA a storage admin===

Retrieve a user access token

===TODO: add section about configuring for a User access token=== ===TODO: redirect to This link===

Choose user authentication