add permissions

app.py

@@ -9,7 +9,7 @@ app = Flask(__name__, static_folder='static')
 app.secret_key = os.environ.get('SECRET_KEY', os.urandom(32))
 
 # Setup RP and user (for demo purposes, a fixed user)
-RP = RelyingParty(id="localhost", name="Demo RP", icon=None)
+RP = RelyingParty(id="https://paulmartrenchar-fidotest.hf.space", name="Demo RP", icon=None)
 USER = User(id=b"demo-user", name="demo@example.com", display_name="Demo User", icon=None)
 
 # Initialize and cache metadata (MDS blob)
@@ -56,5 +56,10 @@ def serve(path):
     print(f"requested path {path}")
     return send_from_directory('static', path or 'index.html')
 
+@app.after_request
+def add_permissions_policy_header(response):
+    response.headers['Permissions-Policy'] = 'publickey-credentials-create=(self)'
+    return response
+
 if __name__ == '__main__':
     app.run(host='0.0.0.0', port=7860, ssl_context=None)

static/index.html

@@ -11,6 +11,7 @@
     }
     document.getElementById('btn').onclick = async () => {
       const opts = await fetch('/register/options').then(r=>r.json());
+      console.log("opts", opts);
       opts.challenge = b64toArr(opts.challenge);
       opts.user.id = b64toArr(opts.user.id);
       opts.excludeCredentials?.forEach(c => c.id = b64toArr(c.id));