L
Posted 11 hours ago
Software Engineer, Identity & Access
Lovable
Requirements
Expertise in OAuth 2.0, OIDC, SAML, and JWT, Experience with RBAC and Postgres row-level security, Proficiency in TypeScript, Experience operating auth systems at scale, Based in Stockholm for on-site work
Skills
TypeScriptOAuth 2.0OIDC
About the role
Responsibilities
- Design and build the Apps Platform's identity and access management system for both platform and app-level authentication
- Implement authentication flows including OAuth 2.0/OIDC, magic links, social login, MFA, and session management
- Build robust authorization models using RBAC, row-level security, and API key management
- Own multi-tenancy isolation to ensure secure separation of user apps, data, and credentials
- Manage secrets infrastructure including secure storage, rotation, and access control
- Migrate identity services to a fully owned, composable identity layer
- Operate auth as a production service with monitoring, alerting, and incident response
- Collaborate with AI and product teams to ensure secure-by-default authentication for generated apps
Requirements
- Deep expertise in IAM: OAuth 2.0, OIDC, SAML, JWT, and token lifecycle
- Experience building or operating auth systems at scale in multi-tenant SaaS or PaaS environments
- Strong security mindset regarding credential leakage, privilege escalation, and tenant isolation
- Experience with RBAC/ABAC models and Postgres row-level security
- Familiarity with identity providers like Auth0, Supabase Auth, Clerk, or Keycloak
- Proficiency with TypeScript across backend services and API layers
- Proven experience migrating auth systems in production without breaking sessions
- Strong operational instincts regarding uptime, latency, and blast radius
- Based in Stockholm or ready to relocate for an on-site, 5-days-a-week role
Preferred Qualifications
- Experience with secrets management tools like Vault or AWS Secrets Manager
- Background in compliance-relevant auth work (SOC 2, GDPR, HIPAA)
- Familiarity with Supabase Auth internals (GoTrue)
- Experience designing auth for AI-generated or low-code applications
- Familiarity with managed cloud services (AWS, GCP)
About the Company
Lovable is an AI-powered software creation platform. Millions of users use Lovable to go from idea to working application, generating hundreds of thousands of apps every day.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeSoftware Engineer, Identity & Access
Lovable · Stockholm
