Pass your token in the header of all requests to endpoints that require authentication:
Authentication: Bearer $MT_TOKEN
For example, in order to request your Points, try:
$ http https://api.movintracks.io/v2.0/points "Authorization:Bearer $MT_TOKEN"
If you don't provide a valid token, the API returns 401 Unauthorized or 403 Forbidden.