Accept
You can set header "Accept" to: /
Content-Type
Header Content-Type requires: application/json
X-Auth-Token
Any call after authentication will need the token, received from the authentication call, as the value for X-Auth-Token in the request header.
Example:
Accept: /
Content-Type: application/json
X-Auth-Token: abcdefg123456WXYZ