I was wondering what is the best method to login into a game given the following scenario:
The platform is built using react.js and it is hosting a game application that interacts via API with a database
The game player will need a NFT to play on it. The metadata associated with it will be stored on the database and will be query via one game API
The players will be able to sell/buy game NFTs
There are a couple of login options I were thinking about login access: A). Create a user account in the game server (user/pass) and link it t with the user metamask wallet. B). Avoid the need to create users. The web3.js will recognize the wallet address and query the NFTs in his account.
Thank you!! I was thinking the same, but a little concern about security.
If a user logins using his wallet address, when he has to do some iterations with the game using API, he should send this wallet into the request.
Then, how can we avoid a user just fecth this query and impact directly with his username (withouth the need of the game server) or worst case use this API to send a wallet address from another user into the request?