It's important to know that the Basic Authorization header in the OAuth2 request should be a base64 encoded string (in UTF-8 encoding) consisting of a concatenation of your client ID and Secret separated by a colon (client_id:client_secret) with the word "Basic" in front of it. The end result should look similar to this: Basic MzoxNGI1NmMyNs2Q3ZGFlYTA1NjJkMDcxMTUzMWRmY2ZlZQ==.