diff --git a/internal/token.go b/internal/token.go
index 355c38696..1cbf45789 100644
--- a/internal/token.go
+++ b/internal/token.go
@@ -172,7 +172,7 @@ func newTokenRequest(tokenURL, clientID, clientSecret string, v url.Values, auth
 	}
 	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
 	if authStyle == AuthStyleInHeader {
-		req.SetBasicAuth(url.QueryEscape(clientID), url.QueryEscape(clientSecret))
+		req.SetBasicAuth(clientID, clientSecret)
 	}
 	return req, nil
 }