Getting Started With Token Authentication

Looking for some documentation on how to enable token authentication in our Piwik backend. Currently, we are not passing tokens when our clients use the API, which is fine for prototyping but before we get near product I would like to secure this through token auth so all clients are passing a specific token(s) for all requests. Any ideas what needs to be configured on the backend to enforce this? Can’t find any doc other than the tokens themselves in the user section of the admin portal.