Authentication

Overview

The partner managed company API provides a way to create a company that Gusto Embedded Payroll Partners can manage. This endpoint does the following:

  • Creates a new company in Gusto.
  • Creates a new user in Gusto.
  • Makes the new user the primary payroll administrator of the new company.
  • Creates a link between the Partner and the company.
  • Creates access tokens and refresh tokens that can be used immediately.

In the response, you will receive an access_token, a refresh_token, and the uuid of the created company to make subsequent API calls on behalf of the company.

Authentication

Due to the nature of this endpoint, Gusto will provide partners with an API token and will permit partners to use API Token Authentication instead of OAuth to provision Gusto accounts. The API token is included in the authorization HTTP header with the Token scheme, e.g.:

Content-Type: application/json
Authorization: Token bbb286ff1a4fe6b84742b0d49b8d0d65bd0208d27d3d50333591df71

To obtain your API Token for development, please sign up for a Gusto Developer Account. Once you’ve created an account and completed your Organization setup, you will have access to your unique API token from the Organizations tab.

When developing an integration, all API calls should be made to api.gusto-demo.com.

🚧

Production Access

Due to the sensitive nature of payroll, all Embedded Payroll products must be reviewed and approved by Gusto before issuing a Token for production.

Once the integration is reviewed by Gusto, we’ll request a callback URI for your production system. After you receive production API keys, all calls should be made to api.gusto.com.


Did this page help you?