This topic has 2 replies, 2 voices, and was last updated 3 weeks, 5 days ago by daniel.keijsers@extern.fiduciagad.de.

  • Author
    Posts
  • #27483

    Hi,

    does anyone know if the authorization code issued by AM is unique?

    cheers

    Daniel

    #27485
     Neil Madden
    Participant

    Yes, they are unique. In older versions they are random UUIDs with about 122 bits of entropy. In newer AM they are 160-bit random values. (In both cases this is cryptographically secure randomness from a SecureRandom).

    It’s extremely unlikely that you’d ever see a duplicate value from either of these. You can read a little more about it here: https://neilmadden.blog/2018/08/30/moving-away-from-uuids/ (Note that the calculations for UUIDs are extreme numbers)

    #27486

    Thanks for the precise answer!

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2020 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?