What does each connected app require to access the organization?

Each connected app requires an OAuth access token to access the organization. OAuth is an authentication protocol that allows secure token-based authorization. When a connected app is integrated with an organization, the app must obtain an OAuth access token, which is issued after a user authenticates and gives permission for the app to interact with resources in the organization.

The OAuth access token provides a way for the app to interact with other services securely without needing to manage user credentials directly. This method not only enhances security but also simplifies the process of granting and revoking access, allowing organizations to manage connected apps efficiently.

While JSON web tokens, API keys, and connection scripts serve various purposes in application integrations, they do not specifically align with the requirements for connected apps under the OAuth framework that governs secure access to resources. JSON web tokens may be used in different contexts for user session management or API authorization, but for the explicit requirement of accessing an organization through a connected app, the OAuth access token is essential.