Welcome to the community @minukobba!
Even if you use an n8n instance for each user I would still at least activate basic auth with a custom user & password for each of them as described here:
JWT should already be fully implemented. There was also a discussion about it here:
Hope that helps!