Confluence should provide the same authentication options present in other tools for REST calls. FishEye and Crucible can be used as an example:
Provide the same options as in the document above for Confluence.
For some customers, basic authentication is not an option due to security concerns.
Use basic authentication.
If possible, add support for OAuth version 2 for authentication when implementing extra methods.