REST API Token authentication - How to set this up?

One slight confusion here… The difference between ssl encryption and token authentication. I feel an old incomplete whitepaper is laying around to help. Let me dust it off and update it…