that said: gleason has now implemented a feature in soapbox/rebased that allows evading of AUTHORIZED_FETCH by using a different domain to sign activitypub requests
https://gitlab.com/soapbox-pub/rebased/-/snippets/3634512
this is.. probably something that people should know about?