DEV Community

Jonathan
Jonathan

Posted on

I built a privacy-first authentication system at 17 - feedback?

#privacy #beginners #opensource #security

Hey there,

I’m Jonathan, a 17 y/o privacy nerd + coder, and I’ve been building a project the last month called Oxidiko — a serverless, privacy-first login/authentication system designed to minimize your attack surface and stop the usual password leaks we’re all sick of hearing about. It's like a mix of Bitwarden and OAuth2, with no password managment hell and more privacy.

You know how:

every site asks for your email & password (then leaks them 🙃)

auth flows are centralized & you’re just trusting them with your identity

and the more accounts you have, the bigger your risk footprint becomes

Yeah. That sucks.
So I built Oxidiko to fix a few of these problems.

🔑 Why I made it

I wanted something secure, serverless, and portable, without handing over my info to yet another company. Something that lets me decide what data (if any) to share, and minimizes what attackers can even steal in the first place.

🧩 What does it solve?

✅ No passwords to leak — users get an oxidiko_id derived from a passkey and a fallback PIN.
✅ No centralized vault of emails or creds to hack.
✅ Less attack surface: your data stays local, nothing to steal from my servers (because… there aren’t really any).
✅ One-tap login — but without trading privacy for convenience.

Websites can just verify the signed JWT with my public key, and done. No secrets flying around.

🚀 What’s next?

After I get back from a 10-day vacation, I’ll be working on a feature that lets users fully self-host Oxidiko.
That way you can generate your own keys & endpoints, further decentralize your identity, and keep literally everything under your control.
I think that would push the privacy aspect even further.

📬 I’d love to hear what you all think!

Any feedback on the concept?

Ideas for making it even more secure or easier to use?

Do you see yourself trusting something like this? Why/why not?

I’m open to roasting & suggestions — you’re the perfect audience to poke holes in it.

Links

📄 Docs: https://oxidiko.vercel.app/docs

🧑‍💻 GitHub: https://github.com/Oxidiko/Oxidko

📲 Telegram: https://t.me/oxidiko

Thanks for reading — looking forward to your thoughts!

  • Jonathan

Top comments (0)