I'm happy you brought it up. I read about this a while back (haven't yet prioritized doing it though). More I was commenting on the principle of using a closed-source TOTP product. Reading the reverse engineer blog gave me anxiety. The project had issues in the past when they blocked spoofing a certain Apple device and it's disgusting that this is even a 'thing'.
I just did this to success. My biggest suggesting in this copy-paste is changing "Google Auth" to "TOTP authenticator". Do not endorse Google products when the open source alternatives like andOTP and pass-otp are great. It's bad enough Schwab is supporting the closed-source Symantec authenticator whose application is not available on GNU/Linux or BSD.
