BUG#AC-9337:Revoking or invalidating previous access tokens upon generating new access token

Author: Rachana

app/code/Magento/Integration/Model/CustomerTokenService.php

@@ -58,7 +58,6 @@ public function createCustomerAccessToken($username, $password)
         $this->getRequestThrottler()->throttle($username, RequestThrottler::USER_TYPE_CUSTOMER);
         try {
             $customerDataObject = $this->accountManagement->authenticate($username, $password);
-            $this->revokeCustomerAccessToken($customerDataObject->getId());
         } catch (EmailNotConfirmedException $exception) {
             $this->getRequestThrottler()->logAuthenticationFailure($username, RequestThrottler::USER_TYPE_CUSTOMER);
             throw $exception;
@@ -78,7 +77,7 @@ public function createCustomerAccessToken($username, $password)
             CustomUserContext::USER_TYPE_CUSTOMER
         );
         $params = $this->tokenManager->createUserTokenParameters();
-
+        $this->revokeCustomerAccessToken($customerDataObject->getId());
         return $this->tokenManager->create($context, $params);
     }