Skip to main content

Authorization

Follow this guide to create a new Procurify credential that will allow Nexla to authenticate to and exchange data with your Procurify account.
procurify_api_auth.png

Procurify

Prerequisites

Nexla connects to Procurify using the OAuth 2.0 Client Credentials (two-legged) flow. In this flow, Nexla authenticates directly as a server-side application using a Client ID and Client Secret—no user login or browser redirect is required. Before creating a Procurify credential in Nexla, you must generate these credentials in your Procurify account.

Required Role

Your Procurify user account must have permission to manage Integrations settings. Contact your Procurify administrator if this permission needs to be granted to your account.

Create API Credentials in Procurify

Follow these steps to generate the Client ID and Client Secret that Nexla will use to authenticate with your Procurify account:

  1. Sign in to your Procurify account and navigate to Settings in the left navigation bar.

  2. In the Tools section of Settings, select Integrations.

  3. Locate the API item in the integrations list and click View.

  4. Click Create Application to begin generating a new set of API credentials.

  5. In the Description field, enter a meaningful label that identifies the integration (e.g., Nexla Integration). Then click Create Application to confirm.

  6. Procurify will display your new Client ID and Client Secret. Copy and securely store both values immediately.

    Important

    The Client Secret is displayed only once and cannot be retrieved again after you close this screen. If the Client Secret is lost, you must delete the application and create a new one.

  7. Note your Procurify Base URL—this is the full domain URL of your Procurify instance (e.g., https://mycompany.procurify.com). You will need this value when configuring the credential in Nexla.

For complete information about generating Procurify API credentials, refer to the How to Create API Credentials article in the Procurify Knowledge Base, and the Authenticate with OAuth section of the Procurify developer documentation.

Create a Procurify Credential

  • To create a new Procurify credential, after selecting the data source/destination type, click the Add Credential tile to open the Add New Credential overlay.

Credential Name & Description

  1. Enter a name for the credential in the Credential Name field and a short, meaningful description in the Credential Description field.

    Resource descriptions are recommended but are not required. They should be used to provide information about the resource purpose, data freshness, etc. that can help the owner and other users efficiently understand and utilize the resource.

Procurify OAuth2 (2-Legged) Settings

Nexla authenticates with Procurify using the OAuth 2.0 Client Credentials grant (two-legged OAuth flow). Nexla will automatically exchange your Client ID and Client Secret for a short-lived Bearer access token, which is then used to authorize all API requests. The token is valid for 24 hours and is refreshed automatically by Nexla as needed—no manual token management is required.

  1. Enter your Procurify Client ID in the Client ID field. This is the unique public identifier assigned to the application you created in your Procurify Integrations settings. The Client ID identifies your application to the Procurify API and is not sensitive.

  2. Enter your Procurify Client Secret in the Client Secret field. This is the confidential password paired with the Client ID. Treat the Client Secret as you would a password—do not share it in plaintext or store it in unsecured locations.

    The Client Secret field is masked for security. Ensure you have the correct value available before entering it, as the Client Secret cannot be retrieved from Procurify after the initial creation screen is closed.

  3. Enter your Procurify Base URL in the Base URL field. This is the full domain URL of your Procurify instance, including the https:// protocol prefix (e.g., https://mycompany.procurify.com). Nexla uses this value to construct all API endpoint URLs and to request the OAuth access token from your organization's token endpoint at https://[your-domain].procurify.com/api/v3/oauth/token.

    The Base URL is unique to your Procurify organization. It typically follows the pattern https://[company-subdomain].procurify.com. Do not include a trailing slash at the end of the URL.

Save the Credential

  1. Once all of the relevant steps in the above sections have been completed, click the Save button at the bottom of the overlay to save the configured credential.

  2. The newly added credential will now appear in a tile on the Authenticate screen during data source/destination creation and can be selected for use with a new data source or destination.