Your JSON header is wrong
Should be
curl_setopt($CCR, CURLOPT_HTTPHEADER, array(
'Content-type: application/json',
'Authorization: Bearer '.$_SESSION['user_token'],
'Client-ID: '.$_SESSION['client_id'],
));
Thats the only problem I can see
Tehnically this is wrong as true is not a valid bitmask for json_encode but doesn’t stop encoding working