Add Nuxt 4 app with OAuth/OIDC authentication and PWA support

- Integrated Authentik OAuth/OIDC authentication
- Added PWA functionality with offline support
- Created protected and public API endpoints
- Configured Docker deployment with Traefik
- Added Gitea Actions CI/CD workflow
- Included comprehensive setup documentation

docker-compose.yml

@@ -0,0 +1,42 @@
+version: '3.8'
+
+services:
+  seguidor-lotes:
+    image: gitea.nucleoriofrio.com/nucleo000/seguidor-lotes:latest
+    container_name: seguidor-lotes
+    restart: unless-stopped
+    environment:
+      # OAuth Authentik
+      - NUXT_OAUTH_AUTHENTIK_CLIENT_ID=${NUXT_OAUTH_AUTHENTIK_CLIENT_ID}
+      - NUXT_OAUTH_AUTHENTIK_CLIENT_SECRET=${NUXT_OAUTH_AUTHENTIK_CLIENT_SECRET}
+      - NUXT_OAUTH_AUTHENTIK_SERVER_URL=${NUXT_OAUTH_AUTHENTIK_SERVER_URL}
+      - NUXT_OAUTH_AUTHENTIK_REDIRECT_URL=${NUXT_OAUTH_AUTHENTIK_REDIRECT_URL}
+      # Public URL
+      - NUXT_PUBLIC_APP_URL=${NUXT_PUBLIC_APP_URL}
+      # Session Secret
+      - NUXT_SESSION_PASSWORD=${NUXT_SESSION_PASSWORD}
+      # Node Environment
+      - NODE_ENV=production
+    networks:
+      - principal
+    labels:
+      # Traefik labels
+      - "traefik.enable=true"
+      - "traefik.docker.network=principal"
+
+      # HTTP Router
+      - "traefik.http.routers.seguidor-lotes.rule=Host(`${APP_DOMAIN}`)"
+      - "traefik.http.routers.seguidor-lotes.entrypoints=websecure"
+      - "traefik.http.routers.seguidor-lotes.tls.certresolver=letsencrypt"
+
+      # Service
+      - "traefik.http.services.seguidor-lotes.loadbalancer.server.port=3000"
+
+      # Middleware (opcional: puedes añadir rate limiting, compression, etc.)
+      - "traefik.http.routers.seguidor-lotes.middlewares=seguidor-lotes-headers"
+      - "traefik.http.middlewares.seguidor-lotes-headers.headers.customrequestheaders.X-Forwarded-Proto=https"
+      - "traefik.http.middlewares.seguidor-lotes-headers.headers.customrequestheaders.X-Forwarded-For=$${REMOTE_ADDR}"
+
+networks:
+  principal:
+    external: true