Authentication

Learn how to authenticate requests to the Firefly Creative Production Workflow API.

Overview

Every request made to the Firefly Creative Production Workflow API must include an encrypted access token.

Your secure, server-side application retrieves an access token by making a request to the Adobe Identity Management System (IMS) with your Client ID and Client Secret.

Prerequisites

This tutorial assumes you have worked with your Adobe representative and have the following:

Retrieve an access token

A temporary access token validates calls to the API. You can generate an access token directly in the Developer Console, or programmatically by following the steps below.

  1. Open a secure terminal and export your Client ID and Client Secret as environment variables so that later commands can access them:
export WFB_CLIENT_ID=<Your_Client_ID>
export WFB_CLIENT_SECRET=<Your_Client_Secret>
  1. Run the following command to generate an access token:
curl --location 'https://ims-na1.adobelogin.com/ims/token/v3' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode "client_id=WFB_CLIENT_ID" \
--data-urlencode "client_secret=WFB_CLIENT_SECRET" \
--data-urlencode 'scope=openid,AdobeID,session,additional_info,read_organizations,firefly_api,ff_apis'

The response will look like this:

{
    "access_token": "exampleAccessTokenAsdf123",
    "token_type": "bearer",
    "expires_in": 86399
}

The response includes an expires_in field that specifies the length of time, in seconds, that the access token is valid. After the access token expires, your application must request a new token.

  1. Export your access token as an environment variable:
export WFB_ACCESS_TOKEN=<Your_Access_Token>