Native applications authenticate to REST APIs by presenting a tokenThe precursor act of the native application obtaining a token is often called ‘authorization’ (particularly in those cases when the API fronts user info, eg profile, tweets, etc)User authorizes (or consents) to the native application having access to the API (and their data) – the authorization is manifested as the issuance of a token to the API clientOAuth 2.0 is default protocol by which a Client obtains the desired authorizations and the corresponding token