So I have not used this plugin yet, nor obviously locked out my administrator account because of it.
I have two options for you to get back into your admin account.
Option 1 - Fast and Easy
You should be able to disable the plugin at the DB (SQL) level to be able to get back into your account though.
Take a look at the ost_plugin table and change the isactive for the plugin to 0.
Then try logging in again.
NOTE: this will disable 2FA for all your people, and as a result is less secure than option 2.
Option 2 - The Right way
It would be more secure to disable 2FA for just the account in question.
You can go to the ost_staff
table to get your account’s staff_id
then go to the ost_config
table and lookup where namespace = 'staff.staff_id'
(where staff_id
is the one you copied from the staff table). Once you do this you should see a record with key = 'default_2fa'
and you can clear this and make it blank. Once you do this you should be able to login without having to go through 2FA on that account.