Is epicweb-dev/totp the right choice for implementing passwordless login?

[MoSattler]

Hello everyone!

I’m looking to remove passwords entirely from my Epic Stack app and instead use “magic links” or codes sent to users’ emails for login. I believe that epicweb-dev/totp is well-suited for this task, but I wanted to check with the community to see if there are any security considerations I might be overlooking that could make epicweb-dev/totp a less ideal choice.

[kentcdodds]

The totp solution works great for that use case 👍