I have a scenario where service-to-service calls has to be protected without access tokens. Been researching a lot about that and seems that hmac authentication would do the
