If by 'login', you mean get access to the REST data on the server, then yes. If you can generate a token for a service then you can use it in the URL to access the data. For services that aren't protected, you don't need to pass the Token. Most servers are configured to not allow you to browse the REST services, so you pretty much need to know what you are looking for, but if you know the URL, and if it's protected and you have the credentials to generate a token, then you can just add the token to the URL request to the REST endpoint. For most Javascript applications that need to access protected data, setting up a proxy class to handle the token (if needed) helps.