mod_http_oauth2: Make note about handling repeated RFC 6749 states > If an authorization code is used more than once, the authorization > server MUST deny the request and SHOULD revoke (when possible) all > tokens previously issued based on that authorization code. We should follow the SHOULD. The MUST is already covered by removing the code state from the cache.

<!DOCTYPE html>
<html>
  <head>
  	<link rel="stylesheet" type="text/css" href="style.css" />
    <meta charset="utf-8">
    <title>Clave reseteada!</title>
  </head>
  <body>
  <div id="estilo" class="formulario">
    <h1>Tu clave ha sido cambiada correctamente. Ya puedes iniciar sesi&oacute;n con ella.</h1>
  </div>
  </body>
</html>