diff --git a/src/js/client.js b/src/js/client.js
index c30381fcf..8e356a7d0 100644
--- a/src/js/client.js
+++ b/src/js/client.js
@@ -1139,6 +1139,7 @@ angular.module('Application').service('Client', ['$http', '$interval', 'md5', 'N
         window.location.href = this.apiOrigin + '/api/v1/session/logout?redirect=' + origin;
     };
 
+    // this is ununsed because webadmin uses implicit grant flow
     Client.prototype.exchangeCodeForToken = function (code, callback) {
         var data = {
             grant_type: 'authorization_code',