Bug: fix DTO validation for discoverable logins

[shentschel]

Issue

If you try to do a login/initialize with for a passkey there is a bug in which you get a BAD REQUEST error when not sending an empty JSON body for a discoverable login due to checking the LoginDTO.

Expected Result

Discoverable Logins don't need a DTO check to work.

[shentschel]

The only way I can reproduce this behaviour is, when I send an empty json array as payload which is indeed a malformed request.