Is 256 a safe max length for a user_id?

jsauve · November 20, 2019, 3:55pm

I’m creating an index in my DB for the Auth0 user_id:
{identityProviderId}|{UserIdFromIdentityProvider}

I’m using Facebook, Instagram, and Google as providers. 256 should be long enough, right?

konrad.sopala · November 20, 2019, 3:59pm

I guess so but let me check with the team whether we have any official guidance on that front!

jsauve · November 20, 2019, 4:00pm

Thanks! It’s an index field, so I’m trying to get it as short as possible, but without potential truncations.

jsauve · November 20, 2019, 4:02pm

I’m guessing a length as low as 64 might even be acceptable, but I suppose it all depends on the values coming back from the identity providers. I’m trying to strike a balance between efficiency and future-proofing. I don’t want to shoot myself in the foot by having an index field length that is too short to hold a potentially long value.

konrad.sopala · November 20, 2019, 4:05pm

Sure! Let me confirm that with the team!

konrad.sopala · November 21, 2019, 10:50am

I managed to get some info back. So basically we don’t have any public guidance on that front however on the not official side of things we suggest 32 characters random uuid.

jsauve · November 21, 2019, 3:07pm

I think you may misunderstand me. I’m not asking for what I should use for an ID. Let me re-frame the question.

For social connections, Auth0 provides a user_id in the form of {identity provider identifier}|{user identifier from identity provider}. For example, a user_id returned for an Instagram account looks like instagram|554106952, and a user_id returned for a facebook account looks like facebook|10157866690664421. As I understand it, these are the unique IDs of users in the Auth0 system.

What I’m asking is: what is a safe database field length for storing these values? Assume that I may add new identity providers in the future. Right now, I’m only using Google, Facebook, and Instagram. But I may add more in the future. So, how long should that field be to accommodate future values. 2 character uuid doesn’t make sense, because the values I’m being passed from Auth0 ae not uuid’s.

jsauve · November 21, 2019, 3:18pm

If a facebook user_id is 26 characters long, I can’t imagine that any other provider will be much longer than that. So I’m guessing 64 or 128 will probably always be enough. I’ll assume that for now.

konrad.sopala · November 21, 2019, 3:23pm

gotchya now… yep I think you can move with that!

Topic		Replies	Views
Storing the user_id in a local database Help custom-database , user_id	3	9589	March 2, 2018
Auth0\|{user_id } length JWT.io id_token , user_id	2	4551	December 27, 2020
Best practice for migrating user ids Help auth0	4	4575	February 19, 2021
Maximum character count for user_id from external identity providers Knowledge Articles	1	1149	September 18, 2023
Storing ID Best Practices -> Relationships in Database Help auth0 , api	3	5641	December 30, 2019

Is 256 a safe max length for a user_id?

Related Topics