Senior Java Spring Boot Developer (SAML & OAuth)
Remote
Contracted
Experienced
Job Title: Senior Java Spring Boot Developer (SAML & OAuth)
Location: Remote
Engagement Type: Contract
(Initial part-time, hourly; potential to convert to full-time)
About the Role
We are seeking a highly experienced Senior Java Spring Boot Developer with deep expertise in OAuth 2.0 and SAML 2.0 to design and build secure, production-grade microservices. This role requires a hands-on engineer who can develop authentication and authorization mechanisms from the ground up and integrate with enterprise identity providers.
Key Responsibilities
Required Experience & Skills
Nice to Have
Location: Remote
Engagement Type: Contract
(Initial part-time, hourly; potential to convert to full-time)
About the Role
We are seeking a highly experienced Senior Java Spring Boot Developer with deep expertise in OAuth 2.0 and SAML 2.0 to design and build secure, production-grade microservices. This role requires a hands-on engineer who can develop authentication and authorization mechanisms from the ground up and integrate with enterprise identity providers.
Key Responsibilities
- Develop and maintain production-grade microservices using Java 17+ and Spring Boot
- Implement and manage OAuth 2.0 flows, including:
- Authorization Code
- Client Credentials
- PKCE
- Token Introspection
- Refresh Token Rotation
- Integrate SAML 2.0 Single Sign-On (SSO) with enterprise identity providers such as Okta, Azure AD, and Ping Identity
- Build and manage distributed job scheduling systems using:
- Quartz Scheduler (clustered)
- Spring Batch
- Spring Scheduler
- Define and enforce API security policies, including:
- Token validation
- Scope enforcement
- Rate limiting
- Audit logging
- Ensure secure and scalable system architecture aligned with modern best practices
Required Experience & Skills
- 7+ years of professional experience in Java development with Spring Boot in production environments
- Strong expertise in Spring Authorization Server or Spring Security OAuth2
- Deep understanding of OAuth 2.0 and OpenID Connect, with ability to implement flows without relying solely on frameworks
- Hands-on experience with SAML 2.0, including:
- SP-initiated and IdP-initiated SSO
- Metadata exchange
- Attribute mapping
- Assertion encryption and signing
- Experience with job scheduling frameworks:
- Quartz (clustered environments)
- Spring Batch pipelines
- Distributed scheduling with Spring
- Strong knowledge of:
- Spring Security
- Spring Cloud Gateway
- JWT handling (signing, rotation, blacklisting)
- Solid understanding of:
- REST API design
- HTTP security headers
- HTTPS/TLS protocols
- Experience with relational databases such as PostgreSQL or MySQL, and ORMs like Hibernate/JPA
- Familiarity with event-driven architectures using Kafka or RabbitMQ
- Proficiency in Git, Maven/Gradle, Docker, and Kubernetes fundamentals
Nice to Have
- Experience working with identity/authorization platforms such as Keycloak, Auth0, or Okta (as an Authorization Server).
Apply for this position
Required*