From 03e8eb6157ea5ef439f6b36b67f71ecb0632e6d8 Mon Sep 17 00:00:00 2001
From: Bobselp <BenjaminBohm@rhyta.com>
Date: Sun, 10 Apr 2016 18:05:16 +0200
Subject: [PATCH] revoke an used auth code

---
 src/Grant/AuthCodeGrant.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/Grant/AuthCodeGrant.php b/src/Grant/AuthCodeGrant.php
index 957171cb..01c59f80 100644
--- a/src/Grant/AuthCodeGrant.php
+++ b/src/Grant/AuthCodeGrant.php
@@ -109,6 +109,9 @@ class AuthCodeGrant extends AbstractAuthorizeGrant
         // Inject tokens into response type
         $responseType->setAccessToken($accessToken);
         $responseType->setRefreshToken($refreshToken);
+        
+        // Revoke used auth code
+        $this->authCodeRepository->revokeAuthCode($authCodePayload->auth_code_id);
 
         return $responseType;
     }