Skip to main content
Toku connects to Papaya Global’s Workforce OS platform using API credentials that Papaya’s integration support team provisions specifically for the Toku connection. Credentials are issued per environment — no shared or personal logins are used.

Credentials

Papaya issues three values for each environment:

Token Flow

1

Provision

Papaya integration support issues the API key, Client ID, and client secret for the Toku connection — one set per environment (sandbox and production).
2

Exchange

Toku’s backend exchanges the client credentials at Papaya’s token endpoint for a JWT access token.
3

Refresh

Access tokens are valid for 24 hours. Toku requests a fresh token automatically before expiry — the connection stays live without manual intervention.
Authenticated requests carry the JWT as a bearer header over HTTPS:

Environments

Each environment has its own credential set, so sandbox testing can never touch production payroll data. Credentials can be revoked by Papaya at any time, which immediately invalidates all tokens.
Papaya’s public developer documentation at docs.papayaglobal.com covers its Workforce Payments APIs. Worker and payroll data exchange for the Toku connection is arranged through Papaya’s Integration Center and provisioned with Papaya’s integration support during implementation.

Next

Worker Sync

How Toku reads your worker roster

Payroll Sync

How Toku tracks payroll cycles and G2N data