To successfully connect to the platform the user needs an authentication token and a session token. The authentication token is used to acquire a new session token (initially and when the current one expires) and the session token is used for all operations.
Basic authorization header is used for acquiring a session token, where credentials is the base64 encoding of the authentication token.
Authorization: Basic <credentials>
All subsequent requests to the API require the Authorization Bearer header including the session token: