You must request a token for your API.
edit: this may also be helpful
https://auth0.com/docs/tokens/guides/get-access-tokens