Specifies how the OAuth Client ID and Client Secret are sent to the authorization server.

Possible Values

Data Type

string

Default Value

"Post"

Remarks

The OAuth RFC provides two methods of passing the OAuthClientId and OAuthClientSecret:

• POST: Sends the OAuthClientId and OAuthClientSecret in the POST body of the token request. This is the most commonly supported method and works with most OAuth flows.
• BASIC: Sends the OAuthClientId and OAuthClientSecret in the HTTP Authorization header using Basic authentication. Some OAuth servers require this method for added compliance or security.