I have created a nodeJS rest api application. I want to secure my nodeJS API layer using keycloak. 

Please suggest me how I can achieve the same?

What configuration I need to do in the admin keycloak console? like under client->access type should be public or bearer only?

Thanks,

Deepak