Job Description and Shift (12:00 PM to 9:00 PM)

- Strong proficiency in Angular or React (5+ years)
- Secure UI development
- SSO integration in front-end apps
- OAuth 2.0 / OIDC flows
- Okta SDK usage
- SiteMinder or IAM use cases
- Adaptive authentication UI

Core IAM Concepts (Mandatory)

Authentication & Authorization protocols: OIDC (OpenID Connect) – flows, ID token handling OAuth 2.0 – grant types, scopes, refresh tokens PKCE (Proof Key for Code Exchange) – why and how it’s used Session Management: Session creation, renewal, and termination Handling session timeouts and re-authentication Token Handling: Access token vs ID token vs refresh token Token validation and expiration strategies Login/Logout Flows: Standard login/logout Universal Logout (single sign-out across apps) Single Sign-On (SSO): Inbound SSO – integrating external identity providers (e.g., Okta as IdP) Outbound SSO – enabling apps to act as IdP for other services Federation concepts (SAML, OIDC) Security Best Practices: CSRF, XSS prevention in login flows Secure storage of tokens (browser vs server)

 

Additional comments

Implementing secure login/logout flows in SPAs or web apps Handling redirects for OIDC/OAuth flows Managing session state in front-end frameworks (React, Angular, etc.) Integration with Okta Sign-In Widget or custom login pages Handling SSO flows (inbound and outbound) in UI Error handling for authentication failures

Preferred (Not Mandatory)

Familiarity with Okta platform (Sign-In Widget, SDKs, API) Experience in migration projects from legacy IAM systems (e.g., SiteMinder)