Controls whether the page can use the WebOTP API.
Usage
Source
PermissionsPolicy.otp_credentials(*allowlist)