Setting up Workday
OAuth 2.0 with your tenant URL + a registered API client + a refresh token issued during onboarding.
Workday integration requires four environment variables:
WORKDAY_TENANT_URL — your Workday REST API base URL (e.g. https://wd5-impl-services1.workday.com/ccx/api/v1/<tenant>) WORKDAY_CLIENT_ID — registered API client ID from your Workday admin WORKDAY_CLIENT_SECRET — corresponding client secret WORKDAY_REFRESH_TOKEN — refresh token issued during initial onboarding
Once those are set, the connector mints a fresh access token on each sync via Workday's /auth/v1/token endpoint and pulls workers from /workers. Reconcile is via email as the natural key.
Production note: this connector is built for a single-tenant deployment (one customer's Workday). For a multi-customer SaaS, swap the env-var lookup for a per-workspace credentials table — the connector code expects ConnectionContext.config to carry the per-tenant overrides.