ansaurus

Question

Generating a truly unique order id in PHP?

Answer 1

+2 A:

Why do you need a unique ID ?

If you want to generate a unique ID in your DB, then leave it to your DB, using auto-increment.

Anyway, you could use a combination of microtime() and rand(). You be pretty unique.

Edit, relative to OP's comment :

You can't have a "always unique" if. Or if you find how, you'll win a turing award.

Even better mathematical approches leaves you with a taste of "yes but once in 15645736536475 times, I'll get screwed".

Only way is to have counter, that you increment everytime you need a new ID. That's how DBs do. Why do you need the Id before inserting ?

Clement Herreman 2009-09-08 09:30:01

I want a unique id BEFORE I commit to the db. And I agree, it would be "pretty unique". How can I get one that is ALWAYS unique, without storing it in a DB.

RD 2009-09-08 09:33:26

How do you think this is possible? To generate an "always unique id", you would not only have to know all ids that have been generated before, but also any id that will be ever generated... Have fun figuring out how to do that...

x3ro 2009-09-08 10:04:37

@x3ro: that's a bit of an exaggeration...if you assume that the algorithm itself doesn't change, then you can guarantee a unique ID by knowing *either* all past IDs *or* all future IDs. And with our current technology, the former is easier to implement!

Todd Owen 2009-09-08 10:09:19

Answer 2

A:

taken from PHP’s uniqid’s manpage:

$better_token = md5(uniqid(mt_rand(), true));

though it might be better to leave the md5-part out (reduces the number of tokens to 2^128)

if your using a database, then yes, you should let your DBMS handle the generation of id’s

knittl 2009-09-08 09:36:07

Answer 3

+1 A:

Assuming your users are authenticated and have a user id:

$unique_id = time() . mt_rand() . $userid;

If the same user requests this page a second time in the same second, there will still be a chance of 1 in mt_getrandmax(), which on my machine returns 2147483647. You can probably live with that?

If your users are not authenticated, you can use a hash of their IP address instead if you'd like.

Aistina 2009-09-08 09:54:03

Answer 4

+1 A:

If you're relying on a random string then yes, it is theoretically possible that two IDs will be the same. That's why a long random string is used, to make that possibility so unlikely as to be acceptable. The probabilities can be calculated: for example if an ID is composed of the current time (to the nearest second) and a random 5-character alphanumeric string, and supposing that 3 IDs are generated in the same second, then the odds of two (or more) being the same is: 1 - (38^5! / (38^5-3)! / 38^5^3) = 3.79e-8. Most people would agree that such odds are not low enough for practical applications, which is why the page you linked to suggests 10 characters instead.

If you have a session ID, username, etc. then you can use that in the order ID, to help matters.

Todd Owen 2009-09-08 10:04:44

I agree with the mathematical approach. IMO 1E-15 **begin** to be acceptable.

Clement Herreman 2009-09-08 10:50:35

ansaurus

tags:

views:

answers:

Generating a truly unique order id in PHP?

related questions