const/readonly vs. programs like Cheat Engine-Collection of common programming errors

If the software and user credentials are running on the user’s machine, it is impossible to stop the user from changing values.

If credentials and access are stored on a remote server, you can use that server and have the user only store a hashed token that expires after an arbitrary period of time. Use that token as a lookup to retrieve the user’s profile information from the server.

You’ll still run into issues because anything that is done client-side can be manipulated/hacked. If you keep all of your logic on a central server, you can be more confident that things won’t be cracked, however your system’s performance will suffer.

You need to weigh the pros and cons of a central server for security and performance and choose a balance that fits best for you.