feat: initial schemas-app implementation

- Add Nuxt 4 application with Vuetify UI framework
- Implement GraphQL schema registry management interface
- Add Apollo Client integration with Auth0 authentication
- Create organization and API key management
- Add schema and ref browsing capabilities
- Implement organization switcher for multi-org users
- Add delete functionality for organizations and API keys
- Create Kubernetes deployment descriptors
- Add Docker configuration with nginx

Features:
- Dashboard with organization overview
- Schema browsing by ref with supergraph viewing
- Ref management with schema details
- Settings page for organizations and API keys
- User list per organization with provider icons
- Admin-only organization creation
- Delete confirmations with warnings

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

nginx/nginx.conf

@@ -0,0 +1,65 @@
+user  nginx;
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log notice;
+pid        /var/run/nginx.pid;
+
+events {
+  worker_connections  1024;
+}
+
+http {
+  include       /etc/nginx/mime.types;
+  default_type  application/octet-stream;
+  types {
+    application/manifest+json  webmanifest;
+  }
+  log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                    '$status $body_bytes_sent "$http_referer" '
+                    '"$http_user_agent" "$http_x_forwarded_for"';
+
+  sendfile        on;
+  keepalive_timeout  65;
+
+  server {
+    listen       80;
+    server_name  localhost;
+    root         /usr/share/nginx/html;
+    index        index.html index.htm;
+    access_log   off;
+
+    # Security headers
+    include /etc/nginx/security_headers.conf;
+
+    # Health check endpoint for Kubernetes
+    location = /health {
+      return 200 '{"status":"UP"}';
+    }
+
+    # all assets contain hash in filename, cache forever
+    location ^~ /assets/ {
+      include /etc/nginx/security_headers.conf;
+      add_header Cache-Control "public, max-age=31536000, s-maxage=31536000, immutable";
+      try_files $uri =404;
+    }
+
+    # Nuxt generated files
+    location /_nuxt/ {
+      access_log  /var/log/nginx/access.log  main;
+      include /etc/nginx/security_headers.conf;
+      autoindex off;
+      expires off;
+      add_header Cache-Control "public, max-age=31536000, s-maxage=31536000, immutable";
+    }
+
+    # Main application - SPA mode
+    location / {
+      access_log  /var/log/nginx/access.log  main;
+      include /etc/nginx/security_headers.conf;
+      autoindex off;
+      expires off;
+      add_header Cache-Control "public, max-age=0, s-maxage=0, must-revalidate" always;
+      try_files $uri $uri/ /index.html =404;
+    }
+  }
+}

nginx/security_headers.conf

@@ -0,0 +1,10 @@
+add_header Strict-Transport-Security 'max-age=63072000; includeSubDomains; preload';
+add_header Content-Security-Policy "frame-ancestors 'none'";
+add_header X-XSS-Protection "0";
+add_header X-Frame-Options "SAMEORIGIN";
+add_header Referrer-Policy strict-origin-when-cross-origin;
+add_header X-Content-Type-Options nosniff;
+add_header X-Permitted-Cross-Domain-Policies master-only;
+add_header Feature-Policy '*=*';
+add_header Permissions-Policy '*=*';
+add_header Document-Policy 'unsized-media=?0, document-write=?0, max-image-bpp=2.0, frame-loading=lazy';