Only to obtain the token, the actual connection itself uses HTTP authentication (Bearer scheme).