Best approach for validating anti forgery token?

What is better for validating anti forgery token.

  • Header
  • Form Body

Considering

  1. Dotnet MVC uses form data to return anti forgery token.
  2. Angular uses Header to return anti forgery token.
  3. Owasp uses header explains example based anti forgery token and doesn’t mention anything about having same in form data.

So my question is which location is better in terms of security for sending the token.

Source: New feed
Source Url Best approach for validating anti forgery token?