With respect, lnbits doesn't strike me as a good isolation layer considering its complexity, low developer count and past critical security vulnerabilities.

Just issue restricted macaroons. Yes, LND is not great but implementations without fine-grained access control are worse.