Nsec bunker is the fix. However, I think nsecbunker w/ nip 05 + password login authorized via OAuth is where we should be aimed