I’ve a twitter based application. It uses OAuth protocol for authenticating users who use my app. Now I just wanted to get some doubts cleared on two aspects.Firstly, is there any possiblity that a user’s OAuth acces token which is normally of the format <user_id>-random_string used to access his/her details be changed by twitter from its end. As in, can twitter change the access token for a particular user.
Secondly, the user-id that is sent from twitter end after the authentication is done for a user, is it a 6 digit integer and unique for every user?If its a six digit integer/character then how would uniqueness be maintained as it would get repetitive after 1 million users. And what is the significance of this user id(apart from makinf spefic api calls like fetching timelines etc…) ?
Please do help in clarifying the above doubts as it would greatly help me in solving some problems that my app is currently facing.