Enhancing Application Security with Spring

₹12500-37500 INR

Cerrado

Publicado

hace alrededor de 1 mes

₹12500-37500 INR

Pagado a la entrega

I'm looking for an experienced Java developer with a deep knowledge of Spring Security and MySQL. The main focus of the project is to implement user authentication, manage authorization and access control, as well as secure the application against potential threats. Key tasks will include: Objective:- To list and document the functional aims of the security module functionalities to be used as part of the REST API based web or mobile solutions. This module should be generalized to integrate with any application as a component or module and have to configure the basic security values in the database. Functional Aim(s):- ● 100% DB Driven Data & Configurations ● Dynamic User and Role Management (OAuth2.0 based Authentication & Authorization) ● Mobile Number + OTP based Login as the first thing ● Basic Email-ID/Username with password authentication. ● Self (Common) User Profile Management ● MFA Enabled / Configurable Security Authentication ● DB Driven Resource Access Authorization ● Security Audit ● Security Information Tracking ● SSO Implementation ● Security Limits & IP Whitelisting ● User (Personal) Security Settings ● SAML Login Integration ● Cross Platform (Mobile/ Web/ Standalone / API) Support ● Role Based Client App Actions & Menu Links Management ● Security Access Exceptions / Restrictions ● Security Monitoring & Notification ● Inter service communication through Security authorization ● Custom Filter or Interceptor (or some other logic) to validate the subscriber’s access validity ● Single User with Multiple Roles and Multiple Client app access facility ● Security Preferences functionality for subscriber/user to manage from his account. ● Configurable Remember-Me option at the time sign-in ● Additional features like password reset alert for every 6 months or configured time period. ● MPIN / Face Recognition / Thumb for better experience - to maintain or automate the password entry for mobile apps ● Password Recovery / Reset Mechanisms. ○ Through OTP ○ Through Email ○ Through Standard Generated Keywords or Strings ○ Through Recovery Email ID ● Should be an independent micro service or jar to bundle with or to connect with any java based REST API Solution for re-use ● Package structure : com.chs.core.security.** ● Should be an complete module with all integrations like logging, aspects(if required), exceptions, error messages, sonarqube, emma, configurable external properties (for connecting to database or some other integrations like AWS account) Data Entities to be maintained:- User Role Application Channel User Group EndPoints Resource Service Login History Oauth Tokens OTP Record OTP Attempts IP Exceptions Txn Audit Request Log Response Log Exceptions Codes System Params Directories Key points to be noted:- ● We are going to use Spring Security as part of the Security Module Implementation. ● Spring Data JPA is the base ORM Facility that we gonna use within the application ● Let us have multi datasource connectivity, one for traditional DB Entities and another for Logging. ● We are going to maintain the entire code base through a GitHub/ Bitbucket account. ● We’ve to prepare a Central maven repo in our AWS account and will have a Dev Infra Setup to test the Module and e-commerce dev platform. ● From the team, expecting the CI/CD Pipeline planning for the entire project. ● Let us plan some Project SCRUM to track the things. ● Declare the mutual discussion and doubts session for code base review and other discussions. ● SPOC For the entire Module Development. ● Declare the Deadline for each module. ● Identify the challenges and try to fill them as POC’s prior for validation with CHS. ● Finally ASK for the help in terms of ○ Understanding the functionality or business need ○ Technical assistance ● Key Technical Implementation Are must for every Code base:- ○ Test Cases (using Mockito) ■ For unit & integration testing based on the functional scenarios ○ First Level Documentation (Swagger UI integration) ○ Code Review Plugin validation ○ PostMan Project File to test the REST API ○ Logging & Aspects implementations are must for basic logging ○ Use Common Codebase for CRUD operations. The perfect candidate is proficient with: - Java, Spring Boot and Spring Security - MySQL for database management - Understanding of secure coding practices - Previous experience in similar projects This project requires substantial expertise in Spring Security, making it perfect for a detail-oriented developer with a knack for secure coding. It's imperative that the selected programer is committed to following best practices for secure application development. The developer should also possess a keen eye for potential security leaks in their code. These tasks will be done using Java as the main language and MySQL for database management. Considering the specialized nature of this project, any similar previous experience will be highly appreciated and beneficial.

ID del proyecto: 37955145

Información sobre el proyecto

19 propuestas

Proyecto remoto

Activo hace 4 días

¿Buscas ganar dinero?

Dirección de email

Beneficios de presentar ofertas en Freelancer

Fija tu plazo y presupuesto

Cobra por tu trabajo

Describe tu propuesta

Es gratis registrarse y presentar ofertas en los trabajos

19 freelancers están ofertando un promedio de ₹29.711 INR por este trabajo

@pksaini1990

Hi, Thank you for considering us for your project. As a proficient Java developer with in-depth knowledge of Spring Boot and MySQL, I have successfully designed and implemented highly secure systems similar to what you are aiming for. In fact, my team and I have been in the industry for over 12 years, ranking among the top 10% on Freelancer.com with a project completion rate of 96%. Having worked on more than 300+ projects including for 50+ startups, we truly understand the criticality and importance of a robust user authentication and authorization system integrated within any application. I have extensive experience in creating security systems that are driven by dynamic data and configurations stored in databases. Not only do I specialize in OAuth2.0 based Authentication & Authorization. I've also implemented multiple layers of MFA security measures and user profile management features like OTP based Login, Remember-Me option at login, Password Recovery Mechanisms, etc. Moreover, apart from securing the application at granular levels through role-based access control and SSO implementation. Additionally, my experience extends to Cross Platform support (Web/Mobile/Standalone/API) ensuring compatibility with diverse Java REST API solutions. Thanks & Regards Parvesh Saini

₹20.000 INR en 30 días

4,6

(16 comentarios)

6,0

@haseebburiro

Hi,Hope you're doing blissful! I've Gone through with the requirements . And I'm sure I can provide you best on this with my skills and experience. Lets have chat on this.

₹20.000 INR en 3 días

4,9

(34 comentarios)

5,3

@sonishubham

Hey There, As a seasoned full-stack developer with over 9 years of experience in Java and MySQL, I’m confident that I possess the skills and knowledge you're seeking for your Spring Security project. Throughout my career, I've successfully executed over 550 projects, including complex web and mobile applications ensuring their 100% data security. Considering the vision you’ve outlined for this module, I assure you of a robust and scalable solution that addresses all of your functional aims. Moreover, being adaptable and eager to learn new technologies, I stay up to date with the latest frameworks like Spring Security and Spring Data JPA. I strictly follow software development best practices including Test-Driven Development (TDD) using Mockito, first level documentation via Swagger UI Integration and regular code review. These techniques, combined with my meticulous nature, enable me to deliver code with impeccable quality involving minimal surprises. In conclusion, as a top-rated freelancer known for delivering top-notch quality service exceeding client expectations, I offer myself as the SPOC for your entire security module development. With an ambitious nature and strong problem-solving skills, I not only tackle challenges head-on but also work proactively by offering POCs prior to validation. Given the opportunity to contribute to your project not only solo but also as a team player.

₹25.000 INR en 7 días

5,0

(8 comentarios)

4,6

@MQamar123

With extensive experience spanning 7 years in software development and a keen eye for detail, I believe I am the perfect fit for your Java project. My skill set perfectly aligns with your prerequisites, specifically my proficiency in Spring Security and MySQL, which is crucial to implement robust user authentication, authorization, and access control systems. In addition to this, my broad-ranging knowledge of various languages and frameworks equips me to handle any curveballs that may come up during implementation. Choosing me as your developer doesn't just mean getting someone skilled in the necessary languages and frameworks. It also means gaining a partner who's committed to meeting your expectations at each phase of this project’s lifecycle. I'm always available for discussions, possess excellent problem-solving abilities, adhere strictly to deadlines, proactively identify and find solutions to potential challenges. With me on board, you can be fully confident that the security module functionalities of your application will function optimally while maintaining high standards of code documentation and review throughout the process.

₹12.500 INR en 7 días

5,0

(7 comentarios)

4,3

@GyanaMishra99

Professional java developer with 10 years of industry experience. Well versed in springboot based microservice application along with kafka and cloud. Exposure to spring security for both authentication and authorisation using jwt tokens . Exposure to otp based login using mail based otp or twilio . Feel free to connect.

₹30.000 INR en 7 días

4,7

(14 comentarios)

4,7

@phpmaestro20

Hello, I'm Nitin, a seasoned freelance developer with a dedicated team of professionals. I specialize in Web App, boasting a portfolio of stunning projects with top-notch UX/UX design. My expertise spans Flutter (for both Android and iOS), Java, PHP, and Larval, and I bring over 7 years of experience to the table. I've got you covered whether it's websites, applications, or e-commerce platforms. Best, Nitin P

₹45.000 INR en 7 días

5,0

(5 comentarios)

3,9

@DGM999

Hello Jagan M., I am Sadat Saeed, with 8 years of experience in Java and MySQL. I have carefully reviewed the project requirements for enhancing application security with Spring. My approach involves implementing user authentication, authorization, access control, and threat mitigation through a comprehensive Spring Security module. My expertise in Java, Spring Boot, and MySQL, along with a track record of successful projects, ensures a secure and efficient solution. Please review my portfolio https://www.freelancer.ca/u/DGM999 and let's discuss further details. Best regards, Sadat Saeed

₹35.000 INR en 8 días

5,0

(3 comentarios)

3,9

@sunilsahu4

With over a decade of hands-on experience in Java, MySQL, and Spring Boot -- three of the key technologies your project demands -- I believe I'm the paradigmatic fit for this job. At my firm, NCS, we specialize in scalable, secure, and efficient software solutions; a capability that has been well honed through countless projects similar to yours. Your project aims for strong data-driven application security with specific reference to OAuth2.0 based authentication and authorization, MFA mechanisms, dynamic user management, role-based access control and many more. Given that these features form the fulcrum for secure application development, allow me to emphasize that not only are they within my range of expertise but I have previously been successful in building them on a microservice architecture with Spring Security.

₹37.500 INR en 7 días

4,9

(5 comentarios)

3,1

@ModernTechno442

Hello Greetings Of The Day We are Great fit because we are working in IT industry since 8 Years we have Experienced and quality developers in our Team and We are serving and making our clients happy and satisfied since last 8+ years with our outstanding performance in the fields of Website Development, Mobile App Development (Android, iOS, Desktop), CRM/ERP Development, AI ML, UX/UI Design, Games, Digital Marketing and Blockchain. Working Tech is PHP, Node, JS , Flutter , HTML, React, python, Unity and Many more. We also work over the similar projects posted by you so please open the communication by responding, so that we can provide you all demo details. I hope we get a positive reply from your side and we are eagerly waiting to work with you. Thank you

₹25.000 INR en 7 días

5,0

(3 comentarios)

2,5

@anilnivargi49

Hi, I have around 9+ yrs of exp in java/j2ee and mainly worked in java8, Spring boot, Spring MVC, JPA/Hibernate, SQL and NoSQL databases. We can discuss more details over the chat.

₹25.000 INR en 7 días

5,0

(14 comentarios)

2,5

@paul396

Hello, I UNDERSTAND YOUR REQUIREMENTS 100% Very happy to your project. Reading your project, I notice that you are looking for a normal programming language developer. I am very familiar with PHP, JavaScript, CSS, HTML, Laravel, Codeigniter, React.js, Vue.js, Angular.js, MySQL, PostgreSQL, Node.js, Python, Django, Flask..... I have 7+ years experience in Website development and Mobile application development(flutter, flutterflow, android studio). So I am pretty sure I can build whatever that you want. Looking forward to work with you. Sincerely.

₹25.000 INR en 7 días

5,0

(3 comentarios)

1,2

@JawwadAzlan

I have 7 years of experience in Java and micro services, Spring Boot, Spring MVC, Spring Rest, mysql. I am confident I can do your work. As a seasoned Java developer, I have garnered extensive experience in developing secure applications using various frameworks including Spring and Spring Boot and working with databases like MySQL just to name a few of my technical skills. Not only do I understand the importance of user authentication, authorization, secure data transfer, and access control in an application, but I also know how to integrate these technologies into a REST API based web or mobile solution. Your project's aim to build a security module that is generalized to integrate with any application, stands as an exciting challenge for me. Understanding the significance of scalable security features in the ever-evolving digital landscape, I am proficient in building solutions that are highly configurable, dynamic and maintainable such as Mobile Number + OTP based Login, OAuth2.0 based Authentication & Authorization, DB-Driven Resource Access Authorization among others you specified. In terms of code maintenance and review that is crucial for such projects, I can assure you of effective utilization of version control tools like GitHub/ Bitbucket as well as in-depth documentation. Furthermore, I've worked with CI/CD pipelines before, meaning I can effectively plan and implement one for this project to enhance its speed and reliability.

₹37.000 INR en 7 días

5,0

(2 comentarios)

0,8

@astrosiatech

As an experienced Java developer, versed in the Spring framework and MySQL, I've had the opportunity to work on projects similar to yours, where application security was a paramount concern. I understand the significance of implementing robust user authentication, foolproof authorization, access control, as well as safeguarding applications against possible threats. My proficiency with Spring Security and MySQL makes me an ideal fit for this role. For your project's distinct requirements, I'm fully capable of delivering and documenting the functional aims of your security module functionalities for your REST API based web or mobile solution. Having worked extensively with OAuth2.0 based Authentication & Authorization, I can provide comprehensive and dynamic User and Role Management that are 100% DB Driven, adhering to your expectations. The tasks do not end with authentication and authorization; I also take care of various facets such as MFA enabled configuration, SSO Implementation, Role Based Client App Actions & Menu Links Management et al. Moreover, my problem-solving skills combined with my propensity for team collaboration will ensure effective construction of a standardized security solution that is scalable across different platforms - Mobile / Web / Standalone / API.

₹30.000 INR en 7 días

0,0

(0 comentarios)

0,0

@HamzaRebhi

Hello,I have approximately 5 years of experience in Java/J2EE. My main focus has been on Java 8, Java 11, and Java 17, along with proficiency in Spring Boot 2 and 3, Spring MVC, JPA/Hibernate, Spring Security,KeyCloak,Okta, Microservices (Eureka), Kafka, RESTful APIs, GraphQL, and SOAP. I'm also comfortable working with both SQL and NoSQL databases, as well as front-end technologies like Angular+2, HTML, CSS, and Bootstrap.

₹20.000 INR en 20 días

0,0

(0 comentarios)

0,0

@pparikshit

"10+ years of expertise in Java Spring boot Development" Hey, Greetings! I read your requirement carefully and have 10+ years of expertise in the required skills so I can be a good fit for this role. I have worked for Hexaware Technologies, CSC (Computer Science Corporation), Nomura Securities, and WM Corporation before starting a career as a freelancer. I have served clients from the USA, Canada, UAE, Singapore, Kenya, Sweden, and India. I am looking forward to talking to you and understanding your requirements thoroughly. I have experience with the following skills: In Backend: * Microservices * Spring (Spring Boot, Data, MVC, Security etc.) * JPA * EJB 3 Hibernate (with and without JPA). * J2EE * JSP * REST and SOAP Web services. * Hibernate In Frontend: * Javascript * JQuery * React.js * Angular In Desktop application development: * JavaFX * Eclipse RCP In Servers: * Apache Tomcat * Websphere * Weblogic * JBoss * Jetty servers In Databases: * PostgreSQL * MySQL * MS SQL Server * DB2 * Oracle Databases In Version management: * SVN * CVS * Git * VSS In Domains: * Retail * ERP * Healthcare * Energy * IoT *Insurance *Retail Banking *Investment Banking Looking forward to hearing back from you soon. Best Regards, Parikshit

₹50.000 INR en 7 días

5,0

(1 comentario)

0,0

@wenyun87

Familiar with Spring Cloud microservices framework and proficient in using its core components. Proficient in concurrent programming, with practical experience in ReentrantLock, AQS, and CAS lock mechanisms, and capable of ensuring thread safety using techniques such as Lock and Volatile. Familiar with open-source frameworks such as MyBatis and Spring, with an understanding of MyBatis caching mechanisms and Spring loading processes. Knowledgeable about the underlying principles of RocketMQ and Kafka message middleware, capable of providing solutions based on actual project scenarios. Proficient in MySQL underlying principles and indexing mechanisms, capable of independently optimizing SQL statements and resolving issues encountered in projects. Familiar with Zookeeper distributed lock and various node types usage, Nginx cluster configuration, and understanding of I/O models and principles. Well-versed in Redis development and design, with an understanding of its underlying mechanisms and the ability to quickly resolve issues. Knowledgeable about JVM underlying principles. Have read the Netty source code and have a certain understanding of NIO. The above is my own introduction to Java skills

₹25.000 INR en 2 días