Saving sub / user_id in another database

romanreypedrero · October 31, 2020, 8:53am

Hi here,

Is it a good practice to store the user_id / sub in a external databse?

I want to provide a controlled resouce access to my application. That means a user can only modify the resources that he created.
I thought of saving the sub field of an accesstoken in the stored document that the user created. So, I can check whether the incoming access_token sub field matches with the one stored in the document.

Thank you in advance

dan.woda · November 3, 2020, 7:18pm

Hi @romanreypedrero,

Welcome to the Community!

Yes, you can use the sub claim (the user’s Auth0 user_id), as the unique identifier for the user.

Hope this helps!

system · November 30, 2020, 9:09pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Using 'sub' as user id Help access_token , custom-claims	2	10254	February 22, 2021
Is it possible to override the 'sub' claim in an id_token? Help	3	7594	August 8, 2019
How to link JWT to my users info database Help	14	7711	November 30, 2020
Is it safe to directly send user ID to a backend DB? Help security-question-concern , security-compliance	2	288	June 6, 2024
Auth0 User ID vs. Sub Claim Help auth0 , google , oauth2	2	7224	December 21, 2022

Saving sub / user_id in another database

Related Topics