feat(auth): integrate TinyAuth SSO for NetBox authentication

Deploy TinyAuth v4 as CT 115 (192.168.2.10) to provide centralized
SSO authentication for NetBox via Nginx Proxy Manager.

**New Infrastructure:**
- CT 115: TinyAuth authentication layer
- Domain: tinyauth.apophisnetworking.net
- Integration: NPM auth_request → TinyAuth → NetBox

**Configuration:**
- Docker Compose with bcrypt-hashed credentials
- NPM advanced config for auth_request integration
- HTTPS enforcement via SSL termination

**Issues Resolved:**
- 500 Internal Server Error (Nginx config syntax)
- "IP addresses not allowed" (APP_URL domain requirement)
- Port mapping (8000:3000 for internal port 3000)
- Invalid password (bcrypt hash requirement for v4)

**Documentation:**
- Complete TinyAuth README at services/tinyauth/README.md
- Updated CLAUDE_STATUS.md with CT 115 infrastructure
- Added bug report for scribe agent tool permissions

**Note:** Container restart required on CT 115 to apply bcrypt hash

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

disaster-recovery/homelab-export-20251211-144345/configs/lxc/102-nginx.conf

@@ -0,0 +1,13 @@
+#.101
+arch: amd64
+cores: 1
+features: nesting=1
+hostname: nginx
+memory: 2048
+nameserver: 8.8.8.8
+net0: name=eth0,bridge=vmbr0,firewall=1,gw=192.168.2.1,hwaddr=BC:24:11:A6:98:63,ip=192.168.2.101/24,type=veth
+onboot: 1
+ostype: alpine
+rootfs: Vault:subvol-102-disk-0,size=2G
+swap: 512
+unprivileged: 1

disaster-recovery/homelab-export-20251211-144345/configs/lxc/103-netbox.conf

@@ -0,0 +1,39 @@
+#<div align='center'>
+#  <a href='https%3A//Helper-Scripts.com' target='_blank' rel='noopener noreferrer'>
+#    <img src='https%3A//raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/images/logo-81x112.png' alt='Logo' style='width%3A81px;height%3A112px;'/>
+#  </a>
+#
+#  <h2 style='font-size%3A 24px; margin%3A 20px 0;'>NetBox LXC</h2>
+#
+#  <p style='margin%3A 16px 0;'>
+#    <a href='https%3A//ko-fi.com/community_scripts' target='_blank' rel='noopener noreferrer'>
+#      <img src='https%3A//img.shields.io/badge/&#x2615;-Buy us a coffee-blue' alt='spend Coffee' />
+#    </a>
+#  </p>
+#
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-github fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>GitHub</a>
+#  </span>
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-comments fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE/discussions' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>Discussions</a>
+#  </span>
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-exclamation-circle fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE/issues' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>Issues</a>
+#  </span>
+#</div>
+#<b>.104</b>
+arch: amd64
+cores: 2
+features: keyctl=1,nesting=1
+hostname: netbox
+memory: 2048
+net0: name=eth0,bridge=vmbr0,gw=192.168.2.1,hwaddr=BC:24:11:61:7D:2B,ip=192.168.2.104/24,type=veth
+onboot: 1
+ostype: debian
+rootfs: Vault:subvol-103-disk-0,size=4G
+swap: 512
+tags: community-script;network
+unprivileged: 1

disaster-recovery/homelab-export-20251211-144345/configs/lxc/112-twingate-connector.conf

@@ -0,0 +1,38 @@
+#<div align='center'>
+#  <a href='https%3A//Helper-Scripts.com' target='_blank' rel='noopener noreferrer'>
+#    <img src='https%3A//raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/images/logo-81x112.png' alt='Logo' style='width%3A81px;height%3A112px;'/>
+#  </a>
+#
+#  <h2 style='font-size%3A 24px; margin%3A 20px 0;'>Twingate-Connector LXC</h2>
+#
+#  <p style='margin%3A 16px 0;'>
+#    <a href='https%3A//ko-fi.com/community_scripts' target='_blank' rel='noopener noreferrer'>
+#      <img src='https%3A//img.shields.io/badge/&#x2615;-Buy us a coffee-blue' alt='spend Coffee' />
+#    </a>
+#  </p>
+#
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-github fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>GitHub</a>
+#  </span>
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-comments fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE/discussions' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>Discussions</a>
+#  </span>
+#  <span style='margin%3A 0 10px;'>
+#    <i class="fa fa-exclamation-circle fa-fw" style="color%3A #f5f5f5;"></i>
+#    <a href='https%3A//github.com/community-scripts/ProxmoxVE/issues' target='_blank' rel='noopener noreferrer' style='text-decoration%3A none; color%3A #00617f;'>Issues</a>
+#  </span>
+#</div>
+arch: amd64
+cores: 1
+features: keyctl=1,nesting=1
+hostname: twingate-connector
+memory: 1024
+net0: name=eth0,bridge=vmbr0,hwaddr=BC:24:11:BD:7B:AB,ip=dhcp,type=veth
+onboot: 1
+ostype: ubuntu
+rootfs: Vault:subvol-112-disk-0,size=3G
+swap: 512
+tags: community-script;connector;network;twingate
+unprivileged: 1

disaster-recovery/homelab-export-20251211-144345/configs/lxc/113-n8n n8n n8n.conf

@@ -0,0 +1,46 @@
+arch: amd64
+cores: 2
+features: nesting=1
+hostname: n8n
+memory: 4096
+nameserver: 8.8.8.8 8.8.4.4 1.1.1.1
+net0: name=eth0,bridge=vmbr0,firewall=1,gw=192.168.2.1,hwaddr=BC:24:11:BD:35:B7,ip=192.168.2.113/24,type=veth
+ostype: debian
+parent: pre-db-permission-fix
+rootfs: Vault:subvol-113-disk-0,size=20G
+searchdomain: apophisnetworking.net
+swap: 2048
+unprivileged: 1
+
+[pre-db-permission-fix]
+#Before PostgreSQL schema permission fix
+arch: amd64
+cores: 2
+features: nesting=1
+hostname: n8n
+memory: 4096
+nameserver: 8.8.8.8 8.8.4.4 1.1.1.1
+net0: name=eth0,bridge=vmbr0,firewall=1,gw=192.168.2.1,hwaddr=BC:24:11:BD:35:B7,ip=192.168.2.113/24,type=veth
+ostype: debian
+parent: pre-n8n-fix
+rootfs: Vault:subvol-113-disk-0,size=20G
+searchdomain: apophisnetworking.net
+snaptime: 1764644598
+swap: 2048
+unprivileged: 1
+
+[pre-n8n-fix]
+#Before encryption key fix 2025-12-01_12%3A58
+arch: amd64
+cores: 2
+features: nesting=1
+hostname: n8n
+memory: 4096
+nameserver: 8.8.8.8 8.8.4.4 1.1.1.1
+net0: name=eth0,bridge=vmbr0,firewall=1,gw=192.168.2.1,hwaddr=BC:24:11:BD:35:B7,ip=192.168.2.113/24,type=veth
+ostype: debian
+rootfs: Vault:subvol-113-disk-0,size=20G
+searchdomain: apophisnetworking.net
+snaptime: 1764619109
+swap: 2048
+unprivileged: 1