setting rate limiting higher

app-code/api/account/update_2fa.php

@@ -47,7 +47,7 @@ if($data->enable_2fa==true){
 		exit();
 	}
 
-	check_rate_limit($conn, 'setup_2fa', 5, 10 * 60, (string)$id);
+	check_rate_limit($conn, 'setup_2fa', 5, 60, (string)$id);
 	$twofa_secret = $_SESSION["pending_2fa_secret"] ?? "";
 	if ($twofa_secret === "" || !hash_equals(generateTOTP($twofa_secret), $twofa_pin)) {
 		echo json_encode(['success' => false, 'message' => 'Invalid 2FA code.']);

app-code/api/login/check_mfa.php

@@ -14,7 +14,7 @@ include "../utils/generate_pin.php";
 $conn = new mysqli($DB_SERVERNAME, $DB_USERNAME, $DB_PASSWORD, $DB_DATABASE);
 
 $username=$_SESSION["username"];
-check_rate_limit($conn, 'login_mfa', 5, 10 * 60, $username);
+check_rate_limit($conn, 'login_mfa', 5, 60, $username);
 $sql="SELECT 2fa FROM users WHERE username = ?";
 $stmt = mysqli_prepare($conn, $sql);
 mysqli_stmt_bind_param($stmt, 's', $username);