Help

Are RecordIDs safe to use as shareable unique identifiers?

Topic Labels: Base design
1039 1
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
4k1qa
4 - Data Explorer
4 - Data Explorer
See Solution in Thread

‎Jun 27, 2022 02:15 PM

I’m planning to use a combination of baseID + recordID combined into a single string as a unique identifier that I want to share w/ end users to represent “ownership” of a document. Meaning, if they have the link, they can access the document.

I want to ensure that these IDs are sufficiently random enough that this sharing model is sufficiently safe, and that attackers could not predict/guess future values by inspecting these values.

Thoughts? Alternatives? Not sure if I can generate UUIDs, that would be another possible avenue I would trust for this particular use case.

0 Kudos
Reply
1 Reply 1
kuovonne
18 - Pluto
18 - Pluto
See Solution in Thread

‎Jun 27, 2022 06:07 PM

Welcome to the Airtable community!

If the document is in the base, only collaborators of the base will be able to access it. But all collaborators can access everything in the base.

As for the record ID being unique, you are safe in knowing that they will unique within a table and probably unique within a base. However you might not want to use the record ID. If you ever need to revert to a snapshot base, all of the record IDs will change. And you cannot edit record Ids.

Reply
Copyright © 2024 Khoros, LLC