-
Notifications
You must be signed in to change notification settings - Fork 93
Adobe Stock OAuth
Christopher Smith edited this page Jul 23, 2019
·
1 revision
To enable Adobe Stock licensing functionality, the end user must sign into Adobe. The method of authentication used will be Adobe's implementation of OAuth 2.0.
The key features of the Adobe OAuth workflow are:
- End user is redirected to the Adobe website to sign in by the host application. All login functions at Adobe are managed by Adobe IMS (Identity Management Services).
- User either signs in with existing login, or creates a new Adobe ID (this is free).
- The first time signing in, the user grants permission to the host application to access the user's identity and profile.
- After a successful login, the user is redirected back to the host application along with a temporary authorization code.
- At this point, the host app will POST the authorization code to Adobe IMS, and receive back an access token and a refresh token.
- The host app will send the user's access token with any request to the Stock License API.
- When the access token expires after 24 hours, the host app can automatically request a new access token by sending the refresh token. The refresh token is by default valid for 14 days.
- The user should be able to sign out from the host app, in which case the app will logout the user. In addition, the user should be able to revoke permission from the app on the Adobe.com website by logging into their profile.
The Adobe OAuth workflow is essentially the same for all Adobe products and services, however Adobe Stock has created some additional materials and resources specific to Stock.
If you have follow-up questions, please post to the #adobe-stock public channel on Slack, and/or email stockapis@adobe.com.