It’s a good idea, and it could be done. You could have Arweave as the front-end, but a backend on a regular VPS (to avoid people having to pay with arweave wallets)

However, there is another alternative that is already made, that doesn’t require any custom work,

Using encryption as identity forums, it stops the CDN from seeing passwords using DegenRocket’s code. Right now it’s on RebelNet.me using Nostr/Ethereum keys. So maybe switch off Cloudflare to a better CDN (perhaps bunny), and then people can sign with Nostr keys. And then the CDN can’t access accounts…

Best part: RebelNet.me has native Monero tipping already on it.