The authorization codes are currently infinitly valid in time
They should be able to be used only once to create the first token for the user by the application
Needs
As an authenticating user
I want to be able to not have the access code I give to apps be able to be used several times
So that I can secure my accesses as much as possible
Context
Needs
As an authenticating user
I want to be able to not have the access code I give to apps be able to be used several times
So that I can secure my accesses as much as possible