As for the token, please take a look at this article in our API:
Also, generic information about JSON Web Token you can find here:
In general, as an independent integrator, the way you implement JWT in your application depends on you. If you struggle with it, you can use our test examples to check out how it works there: