Delay fetching OAuth app secret until login
Currently getAppSecret is run in src/boot/after_store.js on every page load which adds an unnecessary database query to execute for every page view by a logged-out user. Additionally it causes an insert into the database until !1930 (merged) is merged.
This should be delayed until a user attempts to actually login.