I should also add that we don't use the URL for any kind of security/lookup. we rely on other information for that. as such the aim is to give readable canonical urls to your application, much like most apps use a…
thanks for the link, I agree it's bad practice if there's any kind of lookup/security based on the slug. We have a few other mitigations against looking up anything security wise from the slug itself. but will take it…
also you can get hold of us in app using the intercom speech bubble in the bottom right of the app. That way we can track back to your user account and see what's up.
I'm not sure what you mean by "your database" and what was wiped clean?
it's not user id but actually just a random number. it's unrelated to your ID (which are actually more complex than just integers). The random number is there just to ensure we don't get collisions on slugs.
I should also add that we don't use the URL for any kind of security/lookup. we rely on other information for that. as such the aim is to give readable canonical urls to your application, much like most apps use a…
thanks for the link, I agree it's bad practice if there's any kind of lookup/security based on the slug. We have a few other mitigations against looking up anything security wise from the slug itself. but will take it…
also you can get hold of us in app using the intercom speech bubble in the bottom right of the app. That way we can track back to your user account and see what's up.
I'm not sure what you mean by "your database" and what was wiped clean?
it's not user id but actually just a random number. it's unrelated to your ID (which are actually more complex than just integers). The random number is there just to ensure we don't get collisions on slugs.