HTTP is a data transfer protocol. API, Stateless, etc - this is not his level.
You probably mean REST.
Wikipedia has a description exactly on your question: https://ru.wikipedia.org/wiki/REST#2._%D0%9E%D1%82...

How to check this token? Store somewhere in the cache token = user_id?

The token can be made self-sufficient. For example, a JWT contains a header (type of token, signature algorithm), payload (user id, rights, service information) and a signature.
When issuing a token, the server calculates the signature for the first two parts, encrypts it with its own key, and attaches it to the token.
Upon receiving the token, the server again calculates the signature for the first two parts and checks it against the decrypted signature from the token. If the signatures match, then the data from the payload can be trusted.
When using asymmetric encryption, the token can be issued on one server encrypted with a private key, and verified on another server using a paired public key.

Stateless should be understood exactly as it sounds - stateless.
Those. the server does not remember you, with each new request you must tell it who is requesting the data. In the usual case, this is a JWT token. It contains information about the current user. As Rsa97 already said , the token is self-sufficient. At least on Wikipedia, as a maximum, in a bunch of articles on the Internet there is information on how this token is created and how this token is validated. If you are using any framework, then you already have abstractions ready for handling tokens or completely for token-based authentication.