Ory Kratos supports various methods for user authentication, including passwordless authentication and multi-factor authentication (MFA). However, based on the provided knowledge sources, there is no direct mention of QR code scanning as a method of authentication. That said, Ory Kratos does support Time-based One-Time Passwords (TOTP) as a second-factor authentication method. TOTP is often used with QR codes, where a user scans a QR code to add the account to their authenticator app. The app then generates time-based one-time passwords for the user to input during authentication. For more details on how TOTP works in Ory Kratos, you can refer to the [Time-based one-time passwords (TOTP)](https://www.ory.sh/docs/kratos/mfa/totp) documentation. Please note that the actual implementation of QR code scanning would depend on the authenticator app used by the user and is not directly handled by Ory Kratos.