Authentication

Munza’s authentication system was designed with user privacy, security, and flexibility in mind. We chose Privy.io as our authentication provider because it allows us to offer multiple login methods — including email, OAuth (e.g., Google, GitHub), and wallet-based authentication — while ensuring sensitive user data is never stored or mishandled. When a user logs in, Privy issues a secure session token, which is stored in the browser and used to authenticate subsequent API requests.

The authentication flow is seamless from the user’s perspective. On their first visit, users can choose their preferred login method from a clean, intuitive login modal. Once authenticated, the user’s identity is securely linked to their activity within the platform, including their generated videos, gallery preferences, and subscription status. The authentication module also integrates with our access control logic, ensuring that administrative features (such as managing the gallery or editing site content) are only available to authorized personnel. We’ve also implemented mechanisms for users to log out, refresh sessions, and manage their account details securely.