[Feature Request] API token generation for third-party service integrations

[gitturtle697]

Description:
Currently, wanderer has no way to generate API tokens from the user profile UI. This becomes a blocker when using third-party integrations (such as AdventureLog's wanderer integration) on instances where password authentication has been disabled in favor of OAuth-only login via an external provider like authentik.

Since these integrations authenticate using direct username/password credentials against the PocketBase API, OAuth-only users have no valid credentials to provide.

Proposed Solution:
Add API token generation to the wanderer user profile settings. This is a common pattern in self-hosted apps and would allow OAuth-only users to generate a static token for use with service integrations, without needing to maintain a parallel password credential or weaken their instance's auth configuration.

Use case:

• User configures wanderer with an external OAuth provider (e.g. authentik) and disables password auth
• User attempts to connect wanderer to a service like AdventureLog
• No valid credentials exist to provide and integration is blocked

[Flomp]

Fixed with #848