What is the best approach to associate user information in my backend API?

ahmedsadman.211 · August 8, 2021, 7:18pm

Hi Auth0 Team,

I am very new to Auth0 and I’m having trouble when and how to store information in my own db for the sake of data association.

One approach I thought of is, whenever User sends a request in my backend using a access token, I would use a middleware to check if the user exists in the db. If it does not, I will create a new one. There are several disadvantage with this approach:

I do not get know the user email or name, because Access tokens doesn’t provide me that
I have to query database to check for the user each time the user requests something

Is there any better approach? What if I want to store user name and email in my DB?

dan.woda · August 9, 2021, 9:22pm

Hi @ahmedsadman.211,

Welcome to the Auth0 Community!

Creating the user if they don’t exist works fine if you applications allows for it.

You can use the user ID to associate data to the user in your backend DB. This ID is provided in the access token as the sub claim.

You can add custom claims to the tokens, including name and email. You could do this conditionally if it is a first login, or add it to every token. Up to you.

system · October 13, 2021, 6:34pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
User info from a Acess Token Help	4	2673	February 14, 2020
How to implement Auth0 Authentication with custom backend Help	1	3334	July 15, 2020
Is this a good way of identifying users in the backend? Help jwt , auth0 , api	2	2242	September 30, 2022
Is it safe to directly send user ID to a backend DB? Help security-question-concern , security-compliance	2	295	June 6, 2024
Best practice to find a user in my API database from a verified JWT access token Help jwt , auth0 , api	3	3571	July 8, 2021

What is the best approach to associate user information in my backend API?

Related Topics