adobe-security-basics

Featured

Apply Adobe security best practices for OAuth credentials, secret rotation, I/O Events webhook signature verification, and least-privilege scoping. Use when securing API credentials, implementing webhook validation, or auditing Adobe security configuration. Trigger with phrases like "adobe security", "adobe secrets", "secure adobe", "adobe credential rotation", "adobe webhook signature".

AI & Automation 2,266 stars 315 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Adobe Security Basics ## Overview Security best practices for Adobe OAuth Server-to-Server credentials, I/O Events webhook signature verification, and least-privilege access control across Adobe APIs. ## Prerequisites - Adobe Developer Console access - Understanding of OAuth 2.0 client_credentials flow - Access to secret management solution (Vault, AWS Secrets Manager, GCP Secret Manager) ## Instructions ### Step 1: Secure Credential Storage ```bash # .env (NEVER commit to git) ADOBE_CLIENT_ID=abc123def456 ADOBE_CLIENT_SECRET=p8_XYZ_your_secret_here ADOBE_SCOPES=openid,AdobeID,firefly_api # .gitignore — MUST include these .env .env.local .env.*.local *.pem *.key ``` ```bash # Production: use your cloud provider's secret manager # AWS Secrets Manager aws secretsmanager create-secret \ --name adobe/production/credentials \ --secret-string '{"client_id":"...","client_secret":"..."}' # GCP Secret Manager echo -n "your-client-secret" | gcloud secrets create adobe-client-secret --data-file=- # HashiCorp Vault vault kv put secret/adobe/prod client_id="..." client_secret="..." ``` ### Step 2: Credential Rotation Adobe OAuth Server-to-Server credentials support multiple client secrets simultaneously, enabling zero-downtime rotation: ```bash # 1. In Adobe Developer Console, generate a NEW client_secret # (old secret remains valid) # 2. Update your secret manager with the new secret aws secretsmanager update-secret \ --secret-id adobe/production/credentials \ ...

Details

Author
jeremylongshore
Repository
jeremylongshore/claude-code-plugins-plus-skills
Created
7 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Anthropic · AI Google Cloud · Cloud OAuth · Auth

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

documenso-security-basics

Implement security best practices for Documenso document signing integrations. Use when securing API keys, configuring webhooks securely, or implementing document security measures. Trigger with phrases like "documenso security", "secure documenso", "documenso API key security", "documenso webhook security".

2,266 Updated today
jeremylongshore
AI & Automation Solid

hootsuite-security-basics

Apply Hootsuite security best practices for secrets and access control. Use when securing API keys, implementing least privilege access, or auditing Hootsuite security configuration. Trigger with phrases like "hootsuite security", "hootsuite secrets", "secure hootsuite", "hootsuite API key security".

2,266 Updated today
jeremylongshore
AI & Automation Featured

adobe-prod-checklist

Execute Adobe production deployment checklist covering credential management, API health checks, rate limit configuration, and rollback procedures for Firefly Services, PDF Services, and I/O Events integrations. Trigger with phrases like "adobe production", "deploy adobe", "adobe go-live", "adobe launch checklist".

2,266 Updated today
jeremylongshore
AI & Automation Solid

webflow-security-basics

Apply Webflow API security best practices — token management, scope least privilege, OAuth 2.0 secret rotation, webhook signature verification, and audit logging. Use when securing API tokens, implementing least privilege access, or auditing Webflow security configuration. Trigger with phrases like "webflow security", "webflow secrets", "secure webflow", "webflow API key security", "webflow token rotation".

2,266 Updated today
jeremylongshore
AI & Automation Featured

adobe-install-auth

Install and configure Adobe Developer Console OAuth Server-to-Server credentials. Use when setting up a new Adobe integration, configuring API credentials, or initializing Adobe SDKs (Firefly Services, PDF Services, I/O Runtime). Trigger with phrases like "install adobe", "setup adobe", "adobe auth", "configure adobe credentials", "adobe developer console".

2,266 Updated today
jeremylongshore