Authorization header.
Get a token
Submit yourclientId and clientSecret to Keycloak with the client_credentials grant.
expires_in: 300). There is no refresh token (refresh_expires_in: 0); when the token expires, request a new one with the same call.

