To allow for earlier redemption of trust tokens, we could try connecting redemption to happen on certain HTTP headers (authentication headers could have a type that indicates a Trust Token is required and the browser automatically attempts a redemption and hits the endpoint again)