...
Callers must provide a valid Bearer token in the Authorization HTTP header, which can be obtained from PKB by using the correct workflow for your deployment.
System Clients are also required to provide the X Org Public Id HTTP header.
Please see our OAuth 2.0 documentation for more information.
...