33.12.1 The Token Endpoint Returns an Invalid Code Error Message

When the LDAP administrator does not have write access to the Authorization Grant LDAP Attribute, the token endpoint returns the invalid_code: code invalid or already used error message.

Ensure that the LDAP administrator has the rights of a supervisor or a super admin to write on the Authorization Grant LDAP Attribute. For information about how to assign the rights, refer to the documentation of the specific LDAP directory.