Closed iandunn closed 2 weeks ago
Alternatively, given you can enable multiple keys, perhaps simply a notice at the bottom of the keys screen suggesting "All done? Set some Backup codes".
This is IMHO one of the reasons why it's common to be presented with the backup codes prior to setting up any 2FA methods.
For consistency, I think we should add something like this to WebAuthn https://github.com/WordPress/wporg-two-factor/blob/fa4c81b35d0c6b8fe75723ee2529299a0b2e767e/settings/src/components/totp.js#L25-L28