You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Dimitri R.DR

Dimitri R.

SSO IAM Keycloak* OpenTelemetry* APIM*

€685/day
1 project
Nantes, FR
15+ years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Dimitri

With 15 years of experience, I help companies improve their performance by solving complex problems with simple and adapted solutions.

👉 For you, I can:

- Transformyour ideas into adapted and scalable technological solutions
- Train, support, and mentor** your technical teams to maximize their efficiency and align their skills with your strategic needs.
-Design and deploy effective API management solutionsto expose your resources to your partners and clients.
- Implementscalable architecturesthat support your business objectives.
- Optimize your systems** with telemetry tools to quickly identify and resolve hidden issues.

🤝 **My goal**: to help you accelerate the implementation of your projects, while ensuring high technical quality and sustainable growth.

🛠 **Technical expertise**: Oauth2, OIDC, IAM, Keycloak, OpenTelemetry, API management, DevOps, Azure, GCP.
-> Vue.js, .NET, PHP, Node.js.
  • French

    Native or bilingual

Can work on-site
Nantes (up to 50km), Angers (up to 50km), Paris (up to 10km)

Experience

  • viaTransit
    IAM Architect & Technical Lead
    SOFTWARE PUBLISHING
    March 2026 - April 2026 (1 month)
    Lyon, France
    SaaS MaaS Editor: a ticketing partner to integrate, with the requirement to call its API on behalf of the user without storing their credentials on the client side. In-house auth does not cover this case.

    I designed the end-to-end delegated authentication flow — the user logs in once, the backend calls the partner API on their behalf without ever holding their access. Logout propagated in both directions.

    Delivery of a Docker Compose POC executable in one command, reproducible in each region subject to legal data localization constraints (US, Canada, Europe).

    Flow validated in staging. Zero partner credentials stored. Team autonomous in IAM at the end of the service.

    Identity Access Management - Identity Governance and Administration

    Stack: IAM - Keycloak 25, OAuth2, OIDC, RFC 8693, Docker Compose, Express.js.
    Architecture Keycloak IAM OIDC OAuth2
  • Cloud Management Platform - Hébergeur cloud souverain
    Architect & Developer (architecture, compliance, development)
    SOFTWARE PUBLISHING
    November 2025 - April 2026 (5 months)
    Lyon, France
    For an HDS-certified cloud provider on Nutanix infrastructure, clients could not manage their VMs directly: any modification required a support ticket, with a delay of 48 to 72 hours.

    As an architect and developer, we designed a multi-tenant CMP platform: strict isolation by organization, native OAuth2 PKCE security with MFA TOTP/WebAuthn via Keycloak, transversal audit trail on all write operations, and asynchronous polling of the Nutanix Prism API for real-time feedback. I also delivered the DAA and the ISO 27001 / HDS compliance file, validated by the compliance teams.

    Result: resource modifications went from 48-72 hours to a few minutes, in full self-service, with documented and validated compliance.

    Stack: .NET 10, CQRS, FastEndpoints, Keycloak, IAM/OAuth2/OIDC, PostgreSQL, Vue 3, TypeScript, OpenTelemetry.
    Cloud Architect Keycloak IAM C# Tech Lead
  • SOGET
    Solution Architect / API Management
    SOFTWARE PUBLISHING
    July 2022 - October 2023 (1 year and 3 months)
    Le Havre, France
    SOGET was launching an API offering to expose ~10 services to two distinct audiences: end customers via OIDC login, integrator partners via API key. The constraint: to co-manage these two flows in Azure APIM in a consistent and maintainable way.

    I acted as a solution architect. I defined the exposure architecture, designed the Azure APIM policies to independently validate Keycloak JWT tokens and API keys while applying the same downstream security rules, and set up OpenAPI documentation via Bump.sh. I also supported two developers on four functional modules of the project.

    Result: portal deployed, dual authentication operational, team autonomous at the end of the mission.

    Stack: Azure APIM, Keycloak, OIDC, OpenAPI, Bump.sh, .NET Core, Azure DevOps.
    Architecture Keycloak IAM API Platform API

Reviews

5.0

Out of 1 rating

DariusD

Darius

CEO - VIADIGITAL

Reviewed on 4/6/2026

Dimitri has demonstrated great skills in Keycloak, he knows how to explain with great clarity and takes the time to do things well. He is a person who can be easily trusted, which is very appreciated.

Recommendations

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master I, Information Systems Architecture
    CNAM Angers
    2013
    Master I, Architecture des systèmes d'informations
  • Computer Science Degree in Design and Development, Computer Science
    Continuing Education CNAM Angers
    2012
    Licence informatique Conception et développement, Informatique

Skill set

Categories