He must be talking about Casa enrollment API... definitely he could have done a better job describing the issue
Joe, if you can collect some sample parameters for both calls (qr-request and validate-code) that result in failure, we might study what's wrong.
So far, I can say that `"code: FAILURE"` may be caused by:
- `mode` param different than `hotp` or `totp`
- `key` param not being properly URL-encoded. This is important because the value is passed in the query string. This is a PHP [example](https://www.php.net/manual/en/function.urlencode.php)