nocaptcha: Replacing CAPTCHAs with Single-use WebAuthn Passkeys

#webdev #security #opensource #webauthn

Introduction

We've open-sourced nocaptcha, a project that replaces traditional CAPTCHA puzzles with WebAuthn passkeys for bot prevention.

GitHub: https://github.com/singlr-ai/nocaptcha
Try it: https://demo.singlr.ai/nocaptcha/

Technical Implementation

nocaptcha uses WebAuthn credentials as single-use tokens. Instead of solving puzzles or selecting images, users simply perform a tap/touch authentication using their device's security features.

Key aspects:

No persistent user registration needed
Leverages hardware security features via WebAuthn/Passkeys
Simple authentication flow
MIT licensed

Current State & Roadmap

We're working with the W3C WebAuthn Community Group on enabling truly disposable passkeys.

Contributing

Looking for feedback and contributions

Top comments (0)

Setting up Supabase Auth with Nuxt v3

Sebastian Rubina - Oct 16

Functional templates with the Sempare Template Engine for Delphi

Sempare Limited - Oct 16

My Hacktoberfest 2024: A Month of Code, Challenges, and Growth

Lohit Kolluri - Oct 16

What is SCIM Provisioning: In-Depth Guide [2024]

Ege Aytin - Oct 29

DEV Community