Senior Java Spring Boot Developer (SAML & OAuth)

Trusted Tech Solutions, Inc.

India

Description

Job Title: Senior Java Spring Boot Developer (SAML & OAuth)

Location: Remote

Engagement Type: Contract

(Initial part-time, hourly; potential to convert to full-time)

About The Role

We are seeking a highly experienced Senior Java Spring Boot Developer with deep expertise in OAuth 2.0 and SAML 2.0 to design and build secure, production-grade microservices. This role requires a hands-on engineer who can develop authentication and authorization mechanisms from the ground up and integrate with enterprise identity providers.

Key Responsibilities

  • Develop and maintain production-grade microservices using Java 17+ and Spring Boot
  • Implement and manage OAuth 2.0 flows, including:
  • Authorization Code
  • Client Credentials
  • PKCE
  • Token Introspection
  • Refresh Token Rotation
  • Integrate SAML 2.0 Single Sign-On (SSO) with enterprise identity providers such as Okta, Azure AD, and Ping Identity
  • Build and manage distributed job scheduling systems using:
  • Quartz Scheduler (clustered)
  • Spring Batch
  • Spring Scheduler
  • Define and enforce API security policies, including:
  • Token validation
  • Scope enforcement
  • Rate limiting
  • Audit logging
  • Ensure secure and scalable system architecture aligned with modern best practices

Required Experience & Skills

  • 7+ years of professional experience in Java development with Spring Boot in production environments
  • Strong expertise in Spring Authorization Server or Spring Security OAuth2
  • Deep understanding of OAuth 2.0 and OpenID Connect, with ability to implement flows without relying solely on frameworks
  • Hands-on experience with SAML 2.0, including:
  • SP-initiated and IdP-initiated SSO
  • Metadata exchange
  • Attribute mapping
  • Assertion encryption and signing
  • Experience with job scheduling frameworks:
  • Quartz (clustered environments)
  • Spring Batch pipelines
  • Distributed scheduling with Spring
  • Strong knowledge of:
  • Spring Security
  • Spring Cloud Gateway
  • JWT handling (signing, rotation, blacklisting)
  • Solid understanding of:
  • REST API design
  • HTTP security headers
  • HTTPS/TLS protocols
  • Experience with relational databases such as PostgreSQL or MySQL, and ORMs like Hibernate/JPA
  • Familiarity with event-driven architectures using Kafka or RabbitMQ
  • Proficiency in Git, Maven/Gradle, Docker, and Kubernetes fundamentals

Nice to Have

  • Experience working with identity/authorization platforms such as Keycloak, Auth0, or Okta (as an Authorization Server)

Powered by JazzHR

JPpsBdEeSo