Ctrl K

Obtain new client secret.

Published Oct 17, 2025

Obtain new client secret for Paylocity-issued client id. See Weblink Authentication section for details.

Script paylocity Verified

Use in Windmill

The script

Submitted by hugo697 Bun

Verified 235 days ago

All edits

Permalink

//native
type Paylocity = {
	clientId: string
	clientSecret: string
}
/**
 * Obtain new client secret.
 * Obtain new client secret for Paylocity-issued client id. See Weblink Authentication section for details.
 */
export async function main(auth: Paylocity, body: { code: string }) {
	const url = new URL(`https://dc1prodgwext.paylocity.com/api/v2/credentials/secrets`)

	const response = await fetch(url, {
		method: 'POST',
		headers: {
			'Content-Type': 'application/json',
			Authorization:
				'Bearer ' +
				(await getOAuthToken(auth, 'https://dc1prodgwext.paylocity.com/public/security/v1/token'))
		},
		body: JSON.stringify(body)
	})
	if (!response.ok) {
		const text = await response.text()
		throw new Error(`${response.status} ${text}`)
	}
	return await response.json()
}

async function getOAuthToken(auth: Paylocity, tokenUrl: string): Promise<string> {
	const params = new URLSearchParams({
		grant_type: 'client_credentials',
		client_id: auth.clientId,
		client_secret: auth.clientSecret
	})

	const response = await fetch(tokenUrl, {
		method: 'POST',
		headers: {
			Authorization: 'Basic ' + btoa(`${auth.clientId}:${auth.clientSecret}`),
			'Content-Type': 'application/x-www-form-urlencoded'
		},
		body: params.toString()
	})

	if (!response.ok) {
		const text = await response.text()
		throw new Error(`OAuth token request failed: ${response.status} ${text}`)
	}

	const data = await response.json()
	return data.access_token
}


`1`	`//native`
`2`	`type Paylocity = {`
`3`	`clientId: string`
`4`	`clientSecret: string`
`5`	`}`
`6`	`/**`
`7`	`* Obtain new client secret.`
`8`	`* Obtain new client secret for Paylocity-issued client id. See Weblink Authentication section for details.`
`9`	`*/`
`10`	`export async function main(auth: Paylocity, body: { code: string }) {`
`11`	const url = new URL(`https://dc1prodgwext.paylocity.com/api/v2/credentials/secrets`)
`12`
`13`	`const response = await fetch(url, {`
`14`	`method: 'POST',`
`15`	`headers: {`
`16`	`'Content-Type': 'application/json',`
`17`	`Authorization:`
`18`	`'Bearer ' +`
`19`	`(await getOAuthToken(auth, 'https://dc1prodgwext.paylocity.com/public/security/v1/token'))`
`20`	`},`
`21`	`body: JSON.stringify(body)`
`22`	`})`
`23`	`if (!response.ok) {`
`24`	`const text = await response.text()`
`25`	throw new Error(`${response.status} ${text}`)
`26`	`}`
`27`	`return await response.json()`
`28`	`}`
`29`
`30`	`async function getOAuthToken(auth: Paylocity, tokenUrl: string): Promise<string> {`
`31`	`const params = new URLSearchParams({`
`32`	`grant_type: 'client_credentials',`
`33`	`client_id: auth.clientId,`
`34`	`client_secret: auth.clientSecret`
`35`	`})`
`36`
`37`	`const response = await fetch(tokenUrl, {`
`38`	`method: 'POST',`
`39`	`headers: {`
`40`	Authorization: 'Basic ' + btoa(`${auth.clientId}:${auth.clientSecret}`),
`41`	`'Content-Type': 'application/x-www-form-urlencoded'`
`42`	`},`
`43`	`body: params.toString()`
`44`	`})`
`45`
`46`	`if (!response.ok) {`
`47`	`const text = await response.text()`
`48`	throw new Error(`OAuth token request failed: ${response.status} ${text}`)
`49`	`}`
`50`
`51`	`const data = await response.json()`
`52`	`return data.access_token`
`53`	`}`
`54`