Hello,
I was wondering if there was a way or if this is on the roadmap for future work. I have a
use case where I'd like to create a user account, but add a rule where OTP must be
assigned to the account within a certain time period (e.g. 24 hours). If not, the account
is disabled. This leaves the end user with the ability to create their OTP and not have
to distribute any secret keys/screenshots of the QR code, while removing administrative
burden of manually checking accounts if they have OTP enabled.