Airtable personal access tokens are Bearer tokens, and so should be passed in the "Authorization" header of any API request. The token will need the prefix "Bearer ". So if your token is abc123, the Authorization request header will be "Bearer abc123".
If you would like to learn more about Request headers and bearer tokens, here is a walkthrough.
