REST API endpoint

So is I setup a fixed endpoint to be able to handle device send states and reqest new tokerns, I still need to setup a user that should authenticate against this endpoint. Getting ready to start setting this up so any further info would be very much appriciated.