fix: add missing server env vars to DockerTenantProvisioner

Adds CAMELEER_AUTH_TOKEN, CAMELEER_JWT_SECRET, CAMELEER_OIDC_AUDIENCE,
CLICKHOUSE_URL to provisioned server containers. Also passes PUBLIC_HOST
and PUBLIC_PROTOCOL to SaaS container in dev overlay so provisioner
resolves the correct hostname instead of defaulting to localhost.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

src/main/java/net/siegeln/cameleer/saas/provisioning/DockerTenantProvisioner.java

@@ -127,9 +127,13 @@ public class DockerTenantProvisioner implements TenantProvisioner {
             "SPRING_DATASOURCE_URL=" + props.datasourceUrl(),
             "SPRING_DATASOURCE_USERNAME=cameleer",
             "SPRING_DATASOURCE_PASSWORD=cameleer_dev",
+            "CLICKHOUSE_URL=jdbc:clickhouse://clickhouse:8123/cameleer",
             "CAMELEER_TENANT_ID=" + slug,
+            "CAMELEER_AUTH_TOKEN=" + req.licenseToken(),
+            "CAMELEER_JWT_SECRET=cameleer-dev-jwt-secret-change-in-production",
             "CAMELEER_OIDC_ISSUER_URI=" + props.oidcIssuerUri(),
             "CAMELEER_OIDC_JWK_SET_URI=" + props.oidcJwkSetUri(),
+            "CAMELEER_OIDC_AUDIENCE=https://api.cameleer.local",
             "CAMELEER_OIDC_TLS_SKIP_VERIFY=true",
             "CAMELEER_CORS_ALLOWED_ORIGINS=" + props.corsOrigins(),
             "CAMELEER_LICENSE_TOKEN=" + req.licenseToken(),