Replace timestamp-based IDs with UUIDs for guaranteed uniqueness and race condition safety

2025-10-21 15:23:48 +02:00
parent 3fe1c8adc0
commit f0b628d746
18 changed files with 149 additions and 154 deletions
--- a/server/utils/members.js
+++ b/server/utils/members.js
@@ -1,5 +1,6 @@
 import { promises as fs } from 'fs'
 import path from 'path'
+import { randomUUID } from 'crypto'

 // Handle both dev and production paths
 const getDataPath = (filename) => {
@@ -75,10 +76,10 @@ export async function saveMember(memberData) {
      throw new Error('Mitglied nicht gefunden')
    }
  } else {
-    // Add new
+    // Add new - use UUID for guaranteed uniqueness
    const newMember = {
-      id: `m${Date.now()}`,
-      ...memberData
+      ...memberData,
+      id: randomUUID() // Cryptographically secure unique ID
    }
    members.push(newMember)
  }
--- a/server/utils/news.js
+++ b/server/utils/news.js
@@ -1,5 +1,6 @@
 import { promises as fs } from 'fs'
 import path from 'path'
+import { randomUUID } from 'crypto'

 // Handle both dev and production paths
 const getDataPath = (filename) => {
@@ -64,10 +65,10 @@ export async function saveNews(newsData) {
      throw new Error('News nicht gefunden')
    }
  } else {
-    // Add new
+    // Add new - use UUID for guaranteed uniqueness
    const newItem = {
      ...newsData,
-      id: `n${Date.now()}`, // ID must come AFTER ...newsData to not be overwritten
+      id: randomUUID(), // Cryptographically secure unique ID
      created: new Date().toISOString(),
      updated: new Date().toISOString()
    }