OAuth2 Client Credential multiple Access Token

Hi, i noticed that when requesting access token using client credential grant type, the plugin always creates a new access token although one already exist and still valid (assuming valid client credential is given). This means that a consumer can generate unlimited access token, resulting in high database storage usage and possibly low performance in looking up the access token. Won’t this becomes a problem if there is a miss-configured or even malformed consumer with ill-intentions?