@dpastorini said in Join rooms sharing auth:
don't want to run all the validation process through the DB again.
Well, I use a traditional way for that. I produce a token for each client when they first login to the server. Then, they use the token and their ID whenever they join to a new room. Following that, the server checks if ID&token pair exists in the DB.
I think the method above is quite cheap. Another easy thing would be to have a global object in the server that is independent of any room, which keeps the credentials of the users. You can use such global objects to check if a user is already authenticated.