OKTA-719439 Support HTTPS loopback server call

[yannongli-okta]

Description:

• In supported platform (currently MacOS only), server will send an additional field httpsDomain in the authenticatorChalelnge object for Loopback server binding
• When this field is present, it will be storing the http loopback domain while the existing domain field will store the local host domain
• On SIW, if such httpsDomain exists, we will do https loopback server first and fall back to http server. This is to make sure we always start from the more secure one
• In the future, when OV client roll out reaches 95% rate that supports HTTPS loopback, we will make the change to only probe on httpsDomain
• Server side implementation is https://github.com/atko-eng/okta-core/pull/93940

PR Checklist

• Have you verified the basic functionality for this change?
• Did you add tests, as appropriate, following our Automated Test guidelines?
• Did you follow our Security Best Practices?
• Did you verify the change by running downstream monolith artifact? (Provide link to build below)
• Does this PR include noticeable changes to the UI? (If yes, attach screenshots/video below)

Issue:

• OKTA-719439

Reviewers:

@vakaevich-okta @SohamKolhatkar-okta @shuowu @lesterchoi-okta

Screenshot/Video:

Downstream Monolith Build:

[SohamKolhatkar-okta]

Can you explain the purpose of windowAuthnHttpsLoopback variable? I don't see it used in any test file.

[SohamKolhatkar-okta]

What does failureCount refer to? 500 error while probing?

[SohamKolhatkar-okta]

NIT: I think L425-436 can be simplified to use:
/randomorgid.authenticatorlocaldev.com:(2000|6512|6513)\/probe/

[lesterchoi-okta]

NOTE: PR pending for SIW G3 parity

[yannongli-okta]

already merged in another PR #3650