Auth Header Question

Hello I am not sure if this is the appropriate place to post this but I will give it a shot. I have an issue where I am being asked to pass an “Auth Header” Prior to a JSON Rest API call. I understand what an Auth Header does, it is basically like a login Username and Password prior to sending the API call. Is the Auth Header part of the JSON Script or is it outside, as part of the API itself? New to this sorry…

I think stackoverflow.com would be better suited, this doesn’t sound like a question about the {json:api} format.