Update documentation to centralize Vaultwarden integration details and enhance backup scripts

Refactor README, architecture, and backup documentation to emphasize the use of Vaultwarden for credential management across various services. Update scripts for Nextcloud, Gitea, Paperless, and others to reference Vaultwarden for sensitive information. Remove outdated references to previous backup strategies and ensure clarity on credential retrieval processes. This improves security practices and streamlines backup operations.

docs/network/ssl-letsencrypt-dns01.md

@@ -41,6 +41,12 @@
    chmod 600 /root/.secrets/certbot/beget.ini
    ```
 
+   **Homelab (Vaultwarden):** креды хранятся в Vaultwarden (объект **beget**). Деплой с хоста Proxmox:
+   ```bash
+   /root/scripts/deploy-beget-credentials.sh
+   ```
+   Скрипт генерирует `beget.ini` из Vaultwarden, атомарно пушит в CT 100, ставит права 600 и pre-hook проверки. **Ротация:** сменил пароль в Vaultwarden → запустил `deploy-beget-credentials.sh` → готово.
+
 3. **Запрос сертификата:**
    ```bash
    certbot certonly \