Server-side summary for the Kota Embed integration
This page is a concise checklist of what your backend must do to support the Embed SDK. For step-by-step guidance, jump into the linked deep-dives below.
Check out our API reference.
Authenticate with API keys and include idempotency keys on POST requests.
employer_id and employee_id received from Kota.Create employers first, then employees referencing the employer_id. Send these records as soon as they’re available to avoid delays while Kota completes regulatory checks.
If the employer and their employees are sent to Kota immediately before the employer accesses the Embedded UI, it’s likely that some employees will not have been processed yet, delaying the employer’s ability to proceed until all employees are processed.
Employer offboarding removes Embedded UI access but does not cancel employees’ policies automatically. Employee offboarding will cancel policies and must be handled with care.
Embed sessions provide secure, time-limited access to Kota’s UI components:
Each session token:
Use the Embed Session API to create tokens. Once generated, pass the token to your frontend to initialize the SDK.
Learn more about frontend implementation
Generate an employer token:
employer_id and employee_idAn example employee token request:
Configure a webhook receiver to process asynchronous events.
action_required events, the reason and reason_description (example) properties can be sent directly as customer communications as the title and body of a message while the due_at property should be used to convey the deadline to the customer. Retrieve employer/period reports for accurate payroll, including employer vs employee portions, adjustments, and pro‑rations.