# Enumeration: TokenExchangeCredentialsLocation

Defined in: [types.ts:685](https://github.com/coda/packs-sdk/blob/b2b4c9dba5ca748bdbb94481cc13b5ca3c328ef6/types.ts#L685)

Where to pass the client credentials (client ID and client secret) when making the OAuth2 token exchange request. Used in [OAuth2StaticCodeAuthentication.credentialsLocation](../../interfaces/OAuth2StaticCodeAuthentication/#credentialslocation).

## Enumeration Members

### AuthorizationHeader

> **AuthorizationHeader**: `"AuthorizationHeader"`

Defined in: [types.ts:702](https://github.com/coda/packs-sdk/blob/b2b4c9dba5ca748bdbb94481cc13b5ca3c328ef6/types.ts#L702)

The credentials are passed in the Authorization header using the `Basic` scheme.

______________________________________________________________________

### Automatic

> **Automatic**: `"Automatic"`

Defined in: [types.ts:691](https://github.com/coda/packs-sdk/blob/b2b4c9dba5ca748bdbb94481cc13b5ca3c328ef6/types.ts#L691)

Allow the platform to determine this automatically. Currently that means the platform tries passing the credentials in the body first, and if that fails then tries passing them in the Authorization header.

______________________________________________________________________

### Body

> **Body**: `"Body"`

Defined in: [types.ts:697](https://github.com/coda/packs-sdk/blob/b2b4c9dba5ca748bdbb94481cc13b5ca3c328ef6/types.ts#L697)

The credentials are passed in the body of the request, encoded as `application/x-www-form-urlencoded` along with the other parameters.