enabling 2FA requires setting up TOTP

Enabling 2 factor authentication requires setting up TOTP:

The text above the TOTP QR code says "They can restore access if you lose your hardware device." implying that this is by design to prevent users from getting locked out of their accounts in case they lose their FIDO token. This is not necessary and weakens security compared to using FIDO exclusively. Instead, I propose that enabling 2FA would require setting up a minimum of two additional factors, which could be two FIDO keys, one FIDO key and TOTP, or two TOTP codes.