@christopher.eugene.r you do not have to do a client_credential call for each request you make. You can retrieve a token, cache that token for the application, and then use that token as an authorizaiton header each time you call the API:
Authorization: Bearer xxx.yyy.zzz
If you wanted to fetch a token you could everytime, but this is really unnecessary and it can be cached since those tokens are good for some time (also configurable). Since this is a client_credential call that token is good for the application and not a specific user.