[keycloak-dev] Use UUID for IDs
Stian Thorgersen
stian at redhat.com
Fri Feb 7 10:17:18 EST 2014
----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: "Stian Thorgersen" <stian at redhat.com>
> Cc: keycloak-dev at lists.jboss.org
> Sent: Friday, 7 February, 2014 2:53:43 PM
> Subject: Re: [keycloak-dev] Use UUID for IDs
>
>
>
> On 2/7/2014 9:33 AM, Stian Thorgersen wrote:
> >
> >
> > ----- Original Message -----
> >> From: "Bill Burke" <bburke at redhat.com>
> >> To: keycloak-dev at lists.jboss.org
> >> Sent: Friday, 7 February, 2014 2:04:24 PM
> >> Subject: Re: [keycloak-dev] Use UUID for IDs
> >>
> >> Not sure why I didn't use UUID in the first place. I've used it in
> >> other code bases. I guess maybe I wasn't sure if UUID.randomUUID()
> >> guaranteed that the UUID was always unique. Wasn't clear if a time
> >> component is added to the UUID.
> >
> > AFAIK there's no time component, but the risk of collision is extremely
> > small
> >
>
> Hopefully no security weeny identifies that as a security risk.
We can wrap it in our own UUID class, that way we'll be able to quickly change the underlying algorithm if some weenies complain
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
>
More information about the keycloak-dev
mailing list