for example, after making content reply and comment,
A user commented on the article
, B user replied to A user"s comment, in the previous development (traditional web development), user A"s ID was submitted in the form form,
but in the case of complete separation of the front and rear ends, is it advisable to expose user ID in the interface? Or encrypt the user ID before displaying it?
is to generate a unique and irregular random string when the user registers, thus replacing the user"s ID, because the self-growing ID is likely to be guessed!
or is there any other good way
what I want to ask now is: is it advisable to expose user ID in
interface?
can I think so?