We use the following API to create meetings for fitness classes:

I am looking for more information on how we can make the meeting more secure as today many students will share the links with their friends.

Description
We have created a Zoom solution that allows our customers (fitness businesses) to create virtual classes. These fitness businesses will have their students register and then we give join meeting links. However, we have a few customers who have expressed concerns with students sharing links. They have asked us to help make the meetings more secure so that students can’t share links to their friends who have not paid for the class.

I have looked at two options, but wanted to get more insight on how to best use these and if there might be another option that can solve the customer pain point.

Enable require authorization (Requiring authentication to join a meeting or webinar - Zoom Support) for Zoom Meeting API there is meeting_authentication. For our customers that want this, we could create each meeting with this set to true and then for each registered student we would pass their email so that the email can be used as authentication when they sign in to their Zoom account? Is this how the flow would work with this option? The drawback I find with this is that they need to sign in before each meeting and the other issue is that if the email they use to book a class with the fitness business is different from their Zoom account email we would not be able to authenticate.

Waiting Room - Using the Zoom Meeting API, we could enable the waiting room on a specific meeting that we create through the API right? We would not want to enable this across all our customers as some have not expressed concerns with securing their meeting links. With this option, it would require more work for the class instructor to check the registration list to the names of those sitting in the waiting room.