The communication used to communicate with the Identity provider is HTTP communication. It is important to distinguish Token and Authorize endpoints, because depending on the type of the client application it could be that you need to use only one of them.
The authorize endpoint can be used to request tokens or authorization codes via the browser. This process typically involves authentication of the end-user and optionally consent.
GET /connect/authorize?client_id={{client}}&scope={{space separated scopes}}&response_type=id_token token&redirect_uri={{redirect_uri}}&state={{state}}&nonce={{nonce}}
The token endpoint can be used to programmatically request tokens.
GET /connect/token?client_id={{client_id}}&client_secret={{secret}}&grant_type=authorization_code&redirect_uri={{redirect_uri}}&code={{code}}