Please review the Community Note before submitting
Description
Adobe IMS (Identity Management System) issues JWT-based OAuth2 tokens for user authentication across Adobe services (Creative Cloud, Experience Cloud, etc.). Leaked access or refresh tokens can grant unauthorized access to a user's Adobe account.
Preferred Solution
Add a new detector that identifies Adobe IMS tokens by decoding the JWT payload and checking for the "as" field prefixed with "ims-". Verification via POST /ims/validate_token/v1.
Additional Context
References
Please review the Community Note before submitting
Description
Adobe IMS (Identity Management System) issues JWT-based OAuth2 tokens for user authentication across Adobe services (Creative Cloud, Experience Cloud, etc.). Leaked access or refresh tokens can grant unauthorized access to a user's Adobe account.
Preferred Solution
Add a new detector that identifies Adobe IMS tokens by decoding the JWT payload and checking for the "as" field prefixed with "ims-". Verification via POST /ims/validate_token/v1.
Additional Context
References