SAML login with Spring

We already have a password-based and SAML-based login system that was tested with Okta (IdP). Our entire architecture is based in Java+Spring and uses Spring Security to handle authentication and @Secured annotations the controllers to handle authorization.

It is required that all SAML users are registered in our database so we can handle authorization (role-based) on our back-end.

Some screenshots of the login flow and pieces of code used to enable it are attached.

Our current challenge regards a client that asked us for SAML-based login with their Microsoft Federation platform : they cannot successfully login and their specialist sent us the attached message indicating what they believe is going wrong.

We would like to hire a freelancer to implement the necessary changes to make our security module work with the client's federation platform.

The requirements for this job are:

- The solution must, as already currently implemented, enable both user/password login and multiple SAML authentication methods (possible by adding several OpenSaml4AuthenticationProvider to [login to view URL])

- The solution must work both with our current test case (Okta) and our client's IdP (Microsoft)

- An NDA must be signed (client requirement)

- Good knowledge of Spring Security and SAML protocol

- Git knowledge

- Good communication skills in order to validate the solution with the client and explain to our team how/why it works

- Communication with the client's technical team in order to make progress, given that only the client can access the service from their Federation IdP

- Discuss with our technical team which are the possible paths/solutions, how they work and pros/cons in order to decide which one to take

Some observations:

- We have implemented our own OpenSaml4AuthenticationProvider (called OpenSaml4AuthenticationProviderCorrigido) in order to circumvent some compatibility errors between Spring Security and the dependency spring-security-saml2-service-provider. The custom authentication provider is identical to the standard one in the dependency, with the exception of a call to OpenSamlVerificationUtils, which has been replaced by a custom class OpenSamlVerificationUtilsCorrigido. This class, in turn, is a copy of an older implementation which is compatible with the other Spring Security libraries.

- More details can be provided after the NDA is signed

- We expect this job to be a minor correction on the already developed security module

- The client did not provide a X509 certificate

- We provide a default metafile, with no auto generation (sample attached)

Skills: Java, Spring Security, Spring Boot

About the Client:
( 0 reviews ) São Paulo, Brazil

Project ID: #33795338

8 freelancers are bidding on average $500 for this job


Hello Sir/ Ma’am A skilled full stack developer, I have rich experience in JAVA,C, C++, C#, Python, .NET , MYSQL, SQL, IONIC , MATLAB,PHP and ARDUINO. I am very confident with my skills and I'd like to help your bu More

$250 USD in 17 days
(36 Reviews)

Hi, I have read your post carefully. As a senior Java developer, I have already developed lots of projects. Furthermore, Spring Boot is my major. That's why I think I can get this done in a timely manner. If you hire More

$500 USD in 7 days
(4 Reviews)

I have 13+ years of experience in Java/J2EE. I was involved in analysis, design, development and testing of applications thus spanning the entire lifecycle of application development. My expertise includes Java8, JSP, More

$500 USD in 7 days
(1 Review)

Hello, How are you? I have gone through your project requirement carefully and I am definitely sure that I can deliver perfect result in time. I have +7 years of experiences with Web scraping, Machine learning, Web aut More

$500 USD in 7 days
(0 Reviews)

I have experience in SAML and x.509 certification. Worked in lot of cryptographic related projects. Let me know if you are interested. Then you

$500 USD in 7 days
(0 Reviews)

I have professional experience to work with Web Applications, Mobile Apps and Desktop Software development. My professional skillfulness: • Spring Boot: I have been working Backend and Frontend with single or Multi More

$500 USD in 7 days
(0 Reviews)

Here is a Telecommunication Engr will provide you a 100% satisfactory work. I have already worked on a lot of projects relating JAVA, JAVA OpenGL, Apache Xerces, Apache Yetus, Colt, JPedal, JPOS, Spring Security, Ojalg More

$750 USD in 4 days
(0 Reviews)

Hi, I have built custom saml authentation for a multi client single code base strucutre. I believe I can diagnose and rule out issues being faced by you. I have worked with signing, encryption, custom paramters and mu More

$500 USD in 10 days
(0 Reviews)