Avoid generation of client_id with ":" colon char when using HTTP Basic Auth

[synasius]

This is related to HTTP Basic Auth: the spec forbids the use of colon char in the userid but not in the password. See RFC2617 for more details