check2fa($VARS['code'])) { sendJsonResp(null, "OK", ["valid" => true]); } else { Log::insert(LogType::API_BAD_2FA, null, "Username: " . strtolower($VARS['username']) . ", Key: " . getCensoredKey()); sendJsonResp($Strings->get("2fa incorrect", false), "ERROR", ["valid" => false]); }