Hello Ira,
Since your question was handled in a support request, I’m going to mark this topic as Answered. The main problem was that you cannot use token-based authentication over non-secure connections, you need to use SSL instead. Additionally, you needed to remove the colon (:) after “bearer” in your Authentication header.
Have a nice day,
Julien
