Replace uuid4 and uuid1_macless with UUIDT #1726
Conversation
There was a problem hiding this comment.
For user-facing cases (i.e. the ID used to interact with the API; e.g. /events/{id}/, I would very strongly advocate to use Stripe's approach of generating context-aware IDs (e.g. evt_OM46NaUQoOhMEF is a lot more informative than aaa7a0d8-f464-4c59-ae12-e00c6aff2aad). These IDs can be very helpful as they very clearly indicate the type of object they identify, whereas a UUID (or any variation) can belong to any object, and can be painful to utilize. The part after the prefix can be a completely random string or something along the lines of what you're building. As a side note, this ID need not be the primary key of the database.
As for the indexing performance, I believe we should not be sorting by primary keys (I think that for the most part we already don't do this in production code), but rather by creation date, which means that having sequential or pseudo-sequential PKs is not necessary. [Discussion with @fuziontech]
|
This might definitely be nice for existing IDs. @paolodamico UUIDs are quite well optimized (exactly 128 bits), so that's good about them, I do agree however that going forward we may consider something a bit verbose for user-facing application. |
Changes
This replaces
uuid4anduuid1_maclesswithUUIDT, which consists of:UUIDTdoesn't adhere to any particular UUID version spec, but it is superior as a primary key:to incremented integers (as they can reveal sensitive business information about usage volumes and patterns),
to UUID v4 (as the complete randomness of v4 can make its indexing performance suboptimal),
and to UUID v1 (as despite being time-based it can't be used practically for sorting by generation time).
Order can be messed up if system clock is changed or if more than 65 536 IDs are generated per millisecond (that's over 5 trillion events per day), but it should be largely safe to assume that these are sorted.
Loosely based on Segment's KSUID and on Twitter's snowflake ID.