Obtain tokens: The token endpoint allows you to obtain id and refresh tokens. You will need to pass the authorization code from the end-user's authentication flow. See: Get authorization code
id_token (JWT) is a short-lived token. To retrieve a new
id_token, use the refresh token request. Read more about tokens.
For basic auth, use your client_id and client_secret for username & password.