Throw 400's on incorrect 2FA data

app/Http/Controllers/TwoFactorController.php

@@ -62,11 +62,11 @@ class TwoFactorController extends BaseController
 
         } elseif (! $secret || ! $google2fa->verifyKey($secret, $oneTimePassword)) {
 
-            return response()->json(['message' => ctrans('texts.invalid_one_time_password')]);
+            return response()->json(['message' => ctrans('texts.invalid_one_time_password')], 400);
 
         } 
             
-        return response()->json(['message' => 'No phone record or user is not confirmed']);
+        return response()->json(['message' => 'No phone record or user is not confirmed'], 400);
         
     }
     

app/Models/Gateway.php

@@ -74,7 +74,7 @@ class Gateway extends StaticModel
      * Returns an array of methods and the gatewaytypes possible
      *
      * @return array
-     *///todo remove methods replace with gatewaytype:: and then nest refund / token billing
+     */
     public function getMethods()
     {
         switch ($this->id) {