MFA is essential to us because we want to give our readers access to our documentation based on their company accounts and when they are no longer with the company, we want to ensure that they can no longer access the documentation either. MFA would enable us to send them a verification code via their work email that they could then use to authenticate to our documentation portal. When they can no longer access their work email, they won't be able to access the documentation portal either.

requesting this on behalf of the client r3-it solutions

Due to a lack of 2FA our security policy no longer allows us to work with Document360. Surely, we're not the only organization that require this TOTP as a vital security measure.

Will TOTP 2FA be supported some time this year or should we look else where?

I'd say it's always best to support more than one authenticator app so you're not forcing your customers to use something different than what they may already be using for other services. Also, controls to apply/require MFA for admin/owner accounts would be nice.

I agree here. Right now, it is a must to have MFA in any application that contain knowledge.

I believe there's a "Login with Google" in the works (which would assumedly include 2FA if set up on that account) but I haven't heard back about it in a while. Very much a needed security feature, though. +1