Authenticate Chrome extension user w/ Wave/Voyager setup

Please pardon any ignorance, I am not a developer, but I am learning to build this as I go, and I am struggling with the best way to do this.

I have a Chrome extension that will require a paid membership, and the user will create an account on my website ( there is a role for unpaid users also, so there will be some users with a "free" account"). So I will need to do 2 things when the user authenticates with the Chrome extension:

#1 Verify that they are able to log into their account #2 Check their role to determine if I give access or not.

RE: #1 -- Wave provides what seems to be a very handy API/auth token thing that I have not figured out how to use yet. One of the devs on their paid github suggested that I have the user generate an API key in their account area and paste it into the chrome extension. This is an option, but if I can avoid giving extra steps for this, that would be ideal. Is there a way to authenticate their site login without asking the user to do this?

RE: #2 -- There does not seem to be an endpoint an endpoint for roles specifically, but there is this section of their API doc called 'Request Data with an Access Token' which, on the surface (and to my untrained eye) looks to be something I can use, because it looks like it can request permissions, and since I don't actually need those for anything, presumably I can assign different permissions to different roles and this can be used to identify which role a user has. Hopefully I'm not assuming incorrectly, but someone please correct me if I am.

If problem number #2 is relatively simple (I hope), then if anyone has any suggestions or ideas on how to solve problem #1, I would appreciate your input.

Thanks in advance.

docs: https://wave.devdojo.com/docs

If anyone needs to see the user's API area for whatever reason, you can do that here. https://wave.devdojo.com/login

email: 123@wave.com

password:123123

API section is in the user account portal.