by Léo Joseph.
Go to Site administration > Users > Permissions > Define roles then select the role of your users which the token is connected to, edit it and go to the permission called "Use REST protocol" and check it.
Now it should be working if it's not, edit your external webservice and select "Use REST protocol" in "Required capability"