We’re using a keycloak extension to implement two-factor authentication through duo. This means, we’re not using keycloak’s built-in two-factor authentication stuff.
This all works great, except, we also are giving users access to manage their accounts on the keycloak account page. These pages have a now-misleading section where they can manage settings for a keycloak-driven two-factor auth workflow that will never trigger.
I had assumed that if I had removed the “OTP Form” from the browser authentication flow, that this account page would be smart enough to realize that keycloak’s two-factor auth isn’t configured on the server, so its pointless to present options related to it to the users, but this doens’t seem to be the case.
Is there a way to hide this section? Would I have to create a custom account page theme just to get rid of it?