aaronpkplease do fix surfacing those errors, but how do you feel about ripping out the remote token stuff and replacing it with local lookup right now? now that web sign-in is isolated I don't think there's a use case that requires using a remote indieauth server now
