The API server always expects the following headers:
api-version: 1
accept: application/json
When requesting a token
authorization: Basic (for token request)
(you can use this site in order to create the authorization string)
When sending a request after the token was received
authorization: bearer DaRfdfaR...MzYjw (for post token request)