Fully agree, it's almost security theater.
They need to offer a way for use with a password manager, maybe a slightly hidden option or detecting a really long password to stop all the extra bits.
I forgot what the service was but it will have my user and pass, prompt the email verify, and then it will ask for the token generated in an Auth app.
At a certain point the proper user probably can't get in
Yes, for the last Auth they had me use TOTP.
Thanks, still having my morning drink and forgot the name, When I replied.