Hello,
I’m late to the party but I just saw this was added when looking at release notes. It’s nice that passbolt implemented a feature that looked like it was asked by many people.
I have a question which might be stupid though, but isn’t storing your 2FA details in the same place as the password completely defeating the purpose of 2FA ?
Given the entropy of the password is good enough, what is the point of the TOTP if it’s stored with it ?