Migrating using existing UUIDs

[Skyppid]

We need to migrate from Keycloak to Authgear. To apply our own rules (which users get into which group, to migrate custom attributes, etc.) we implemented a tool instead of the Import API.

But in any case, both the Admin API and the Import API do not allow to specify UUIDs for new users. Is there a way to do so that is not documented or is it possible you implement that as feature?

Our whole ecosystem relies on those user IDs and by creating new ones the links break. Some parts cannot be updated (EventStore for example), so impact is critically high.

My idea as workaround would be to directly write into the database of Authgear, by that it should be possible to inject the existing UUIDs from Keycloak, right? Or do you see any issue with that?

Thanks!

[fungc-io]

Hi @Skyppid ,
Thanks for raising this.

Specifying UUIDs for new users isn't supported through the Admin API or Import API today.

If you're self-hosting, writing directly into the Authgear database should work for your migration scenario. You'll just need to make sure all related tables and foreign key references are populated consistently. I'd recommend testing carefully on a staging environment first.

I'll note this internally as a feature request for the Import API.

[Skyppid]

Thanks, alright, then we'll do it directly via database as migrating all references to User IDs would be a lot of work. And yes, I am sure other people would love that too. Migrating from other systems it only makes sense to be able to import IDs as well to keep data consistent.

But does this influence the search-index based queries? Do we need to manually trigger reindexing then or does Authgear automatically index then?

[tung2744]

@Skyppid
The search index will not be updated automatically.
Depends on your search implementation (postgresql or elasticsearch), you need to run the corresponding command:

For elasticsearch:

authgear internal elasticsearch reindex --all \
  --elasticsearch-url "http://YOUR_ELASTICSERCH:9200" \
  --database-url "postgres://YOUR_AUTHGEAR_DATABASE" \
  --database-schema public

For postgresql search:

authgear search reindex {YOUR_PROJECT_ID} \                                                                                                                                               
  --database-url "postgres://YOUR_AUTHGEAR_DATABASE" \
  --database-schema public \
  --search-database-url "postgres://YOUR_SEARCH_DATABASE" \
  --search-database-schema public

Note: This command did not support reindex all projects, so you need to put your project id in YOUR_PROJECT_ID.