TOTP deeplink codes aren't one-use

[grctest]

Describe the bug

Timed one-time-passcode is what TOTP stands for, and whilst the passcode is timed, it isn't one-use, you can reuse it until the timer expires.

To Reproduce

Use TOTP, use the code twice in a row to launch a prompt.

Expected behavior

A one time passcode can be used once.

Additional context

Once per prompt window, or once per approved prompt?