Hi,
The current implementation of OTP works fine however it would be nice to have option “don’t ask code next X days”. Does keycloak have a plan to add such option in the future?
I don’t think KC will implement such a feature since it is bit conceptually different from SSO. Authentication is not required until the auth session expired and first and second factors are required after that. The second factor always comes after credential login. This is my personal openion.