To authenticate your request you have to specify your Authorization token inside header of every request.
To get your Authorization token, please look at "Sessions" requests.

Authorization token give the session relative to the user you are using, for example Administrator or user without administrator permissions.
If no Authorization token is passed, "channel" header need to be passed.

curl '' \
  -H 'channel: {channelToken}'
  -H 'Authorization: {authorizationToken}'