- Fixed price
- Expert
- Est. budget: $4,000.00
What this is: I'm the founder of a working AI SaaS platform (FastAPI/uvicorn backend, React/Vite frontend, deployed on AWS). The product pipeline is built and live! I need an experienced engineer to build the authentication, payments, and usage-entitlement layer that gates the product behind login and paid usage. You'll work against a runnable stub repository (real routes + data shapes, proprietary internals removed) - so you can build and test the full layer without ever touching the core IP, and afterwards - I will merge your work into the production app! Scope: • Auth (Clerk): signup/login, session lifecycle, backend session/JWT verification, inject a validated `user_id` into protected endpoints. • Payments (Stripe): Checkout for purchasing usage credits, plus a webhook that credits the user's ledger on successful payment. The webhook MUST be signature-verified, idempotent (Stripe retries-credit exactly once), and reconcilable (handle webhook-failed-but-payment-succeeded). • Entitlement ledger (the core): a credit balance per user with atomic check-and-decrement (two concurrent requests must never double-spend) on PostgreSQL. A `check_entitlement(user_id, ...)`gate that expensive endpoints call before doing paid work. • Server-side route gating: enforce entitlement on every paid endpoint (not just hidden in the UI); clean 401/402/403 responses. • Frontend integration (React): login/signup UI, buy-credits/checkout flow, balance display,graceful "out of credits" states, wired to the above. • Tests for the money-critical paths (webhook idempotency, atomic decrement, gating-bypass attempts). Stack you'll work with: Python 3.11, FastAPI, Pydantic, uvicorn (Linux). React + Vite, Tailwind. PostgreSQL. Clerk. Stripe. Who I'm looking for: Someone who has shipped this exact kind of system to production before. In your proposal, briefly tell me: 1. How you ensure Stripe webhook idempotency and handle reconciliation when a webhook fails but payment succeeded. 2. How you'd implement the atomic credit check-and-decrement so concurrent requests couldn't double-spend. 3. A relevant production system you've built (Stripe + auth + usage metering ideally). *I'd much rather a short, specific proposal - than a long generic one!* Working with me: I'm an engaged founder who genuinely enjoys building, and I want this to be a good experience for both of us! I'm responsive, communicate clearly, and I respect your expertise - because you're the specialist here,and I'm hiring you because you know this much better than I do! I'm not a micromanager and I'm not nitpicky - I just want the end results to be solid! I review in milestones, asking questions because I like understanding the work (not because I'm second-guessing you), and I make decisions quickly so you're never stuck waiting on me! The scope is already well-defined (detailed spec + a runnable stub repo on engagement), so you're not pricing around a vague, shifting target - it's a clean, bounded build. I care about getting the money-handling pieces right, and I'm betting you do too - if that resonates, I think we'll work well together! IP / engagement: A mutual NDA + IP-assignment (work-for-hire) before repo access. You build against stubs; you won't receive the proprietary pipeline. Work is milestone-based, fixed-bid preferred. To apply: Answer the three questions above + share 1-2 relevant examples, and ballpark your timeline and milestone structure (suggested: auth → payments+webhook → ledger+gating → frontend → tests/docs)!
- Hourly
- Intermediate
- Est. time: 3 to 6 months, Less than 30 hrs/week
Microsoft Entra & UPN Migration Expert Job Title Microsoft Entra ID Expert – Domain Migration, Tenant Rename & UPN Conversion (M365 / Azure AD) Job Description We are executing a complex Microsoft 365 identity migration for a mid-size enterprise and are looking for a seasoned Microsoft Entra ID (formerly Azure AD) specialist to provide expert-level guidance, and technical oversight throughout the engagement. Most hands-on configuration will be performed by senior developers. The project involves three interconnected workstreams: • UPN suffix migration — converting all user accounts from a legacy domain (@olddomain.com) to a new primary domain (@newdomain.com), including app dependency remediation, service account handling, and mail flow validation • Identity Provider (IDP) transition — migrating from Okta as the primary IDP to Microsoft Entra ID, with Okta retained as a secondary token-passing relay during the transition period • Primary Domain/MS Tenant rename – migrating the primary Microsoft 365 domain from an old domain to a new domain. The old domain will still exist on the tenant. You will work alongside an existing internal project team and are expected to provide both advisory support and direct technical execution. Scope of Work Identity & UPN Migration • Audit and remediate all applications authenticating via the legacy UPN suffix (SAML, OAuth, OIDC, and legacy auth) • Execute bulk UPN suffix change via PowerShell / Microsoft Graph for all user accounts and applicable service accounts • Validate post-migration authentication across Microsoft 365 workloads (Exchange Online, SharePoint/OneDrive, Teams, OneNote), Okta-federated apps, and third-party SaaS applications • Advise on and assist with OneDrive URL transition, sharing link remediation strategy, and OneNote notebook reconnection • Ensure Proofpoint/mail flow continuity with new primary SMTP domain Entra ID / IDP Configuration • Configure Microsoft Entra ID as primary IDP with Okta as secondary/token-passing relay • Design and implement Conditional Access policy baseline (MFA enforcement, device compliance, location controls, sign-in risk) • Validate and remediate Workday-to-Entra attribute sync and writeback • Validate AWS, Intune, and other Entra-integrated service trust configurations post-UPN change Documentation & Knowledge Transfer • Produce or review runbooks for UPN cutover, IDP flip, and MS Tenant domain rename. • Document rollback procedures for each major phase • Provide a help desk runbook covering common post-cutover user issues (OneDrive sync, OneNote, Teams, shared links, Office Backstage) • Participate in a post-migration health check and lessons-learned review Required Qualifications • 5+ years of hands-on experience with Microsoft Entra ID / Azure Active Directory in enterprise environments • Demonstrated experience with UPN suffix migrations and/or Microsoft 365 tenant/domain renames at scale (500+ users) • Proficiency with PnP PowerShell, Microsoft Graph API, and SPO Management Shell for bulk operations • Experience with Okta-to-Entra IDP migration or Okta federation configuration • Familiarity with Workday-Entra integration (attribute mapping, writeback) is a strong plus • Experience with Windows LAPS, GPO management, and AD OU design • Excellent written English — able to produce clear technical runbooks and decision documentation Preferred Certifications (any of the following) • Microsoft Certified: Identity and Access Administrator Associate (SC-300) • Microsoft Certified: Azure Solutions Architect Expert (AZ-305) • Microsoft Certified: Security Operations Analyst Associate (SC-200) • Microsoft 365 Certified: Enterprise Administrator Expert (MS-102) Engagement Details Project type Ongoing / milestone-based Estimated duration 3–4 months Estimated hours 10–20 hours/week (flexible based on milestone cadence) Availability required Overlap with US Central time zone for weekly syncs Communication Microsoft Teams + email; weekly status call Work type Remote What to Include in Your Proposal To be considered, please address the following in your proposal: 1. Describe a comparable engagement — Detail a UPN suffix migration or IDP transition you led, including the scale (number of users), the tools/methods you used, and any complications you encountered and resolved. 2. Microsoft Tenant/Domain rename – Describe a domain migration project you worked on and lessons learned when converting the domain. 3. Okta + Entra coexistence — Have you worked in an environment where Okta and Entra ID ran simultaneously? How did you handle the token-passing configuration? 4. OneDrive/SharePoint post-UPN remediation — What is your approach to handling broken sharing links and OneNote sync issues after a bulk UPN change? 5. Your hourly rate and estimated availability over the next 90 days. Applications that do not address the proposal questions above will not be reviewed.
- Hourly
- Expert
- Est. time: 3 to 6 months, Not sure
JOB TITLE: Technical Advisor / Fractional CTO (Part-Time MVP Oversight) PROJECT TYPE: Mobile-First Progressive Web App (PWA) – TIME COMMITMENT: ~2 to 3 hours per week (Milestone-based review) DURATION: 4 to 5 Months (Duration of MVP build) COMPENSATION: [Flat Fee Monthly Retainer] ABOUT THE PROJECT We are launching a highly secure, niche online Progressive Web Application (PWA) tailored specifically for medical and healthcare professionals (Doctors, Nurses, EMTs, and Ancillary staff). The core features include a custom schedule/shift-matching query, a hybrid user-verification system (integrating the free US Federal NPI Registry API alongside manual photo badge uploads via Cloudinary), premium tier setups via Stripe Billing webhooks, and third-party chat infrastructure (CometChat/Sendbird). We are hiring an external software development agency to build the MVP. We require an independent, highly skilled Technical Advisor to represent our interests, audit deliverables, and ensure strict code quality. ROLE RESPONSIBILITIES: As our Fractional Technical Advisor, you will act as our "Technical Shield" during the development lifecycle. Your responsibilities will include: Architecture Review: Review the development agency’s proposed database schema (PostgreSQL/MongoDB) and technical architecture blueprint before coding begins to ensure scalability. Milestone Code Auditing: At the conclusion of each project milestone (approx. every 3–4 weeks), log into our private GitHub/GitLab repository to inspect the agency's backend and frontend pull requests for clean documentation, code efficiency, and stability. Vendor Accountability: Attend milestone demo calls alongside the founder to ask technical questions, review functional staging links, and issue a "Pass/Fail" recommendation before milestone payments are released to the agency. Security & Vulnerability Check: Perform a high-level review of data security protocols—specifically ensuring that user-uploaded medical badges, personal identifiers, and Stripe webhooks are completely secure and not exposed via public URLs. REQUIRED QUALIFICATIONS: 5+ years of experience as a Senior Full-Stack Engineer, Technical Lead, or Engineering Manager. Deep production experience building and deploying modern Progressive Web Applications (PWAs). Strong mastery of React/Next.js, Node.js (Express), or Python (FastAPI/Django). Proven experience with third-party API infrastructure drops (specifically Stripe billing pipelines and real-time chat SDKs like Sendbird/Twilio/CometChat). Excellent communication skills and the ability to explain complex technical vulnerabilities or shortcuts to a non-technical founder in simple language. Strict Neutrality Constraint: You cannot be affiliated with or employed by any software development agency bidding on this project. Send resume with expected monthly retainer
- Hourly: $40.00 - $70.00
- Intermediate
- Est. time: 3 to 6 months, Less than 30 hrs/week
Research Ignited is looking for a friendly, entrepreneurial instructor to lead our Startup Launch Lab, a live online program for middle and high school students. In this no-coding entrepreneurship lab, students learn how to turn an idea into a startup-style portfolio. They use market research, product design, business strategy, and AI tools to create a startup concept, prototype or mockup, simple business model, and founder-style pitch deck. What you’ll do Lead live online sessions for small student groups Teach practical entrepreneurship concepts in a simple, student-friendly way Guide students through idea selection, customer research, competitor analysis, MVP/prototype planning, pricing, and pitch development Give feedback on student deliverables each week Help students prepare a final founder-style pitch presentation Required qualifications Strong understanding of entrepreneurship, product development, business strategy, or innovation Ability to explain startup concepts clearly to middle and high school students Comfortable guiding students from idea to pitch deck in a structured, beginner-friendly way Strong communication, mentoring, and presentation skills Reliable, organized, and comfortable teaching live online sessions Strongly preferred Experience building, launching, pitching, or advising a startup, student venture, product idea, or innovation project Familiarity with the startup journey, including problem discovery, customer research, competitor analysis, MVP/prototype planning, business model development, and pitch deck creation Experience creating or reviewing founder-style pitch decks Comfort using tools such as ChatGPT, Canva, Google Slides, Google Sheets, Figma, or no-code/prototyping platforms Prior teaching, tutoring, mentoring, startup competition, consulting, product, MBA, or entrepreneurship club experience Ideal background This role may be a good fit for a current MBA student, business graduate student, founder, product manager, startup operator, venture/innovation student, entrepreneurship club leader, or advanced undergraduate/graduate student with strong startup or business experience.
- Fixed price
- Intermediate
- Est. budget: $100.00
We need an experienced web developer who can start immediately and complete this project today. Our nonprofit horse rescue, Saddle Peak Ranch, recently built a new website using Lovable AI. The website is fully designed and ready to go live, but we are having issues connecting the website to our domain name. The domain is currently registered and managed through a local government-hosted provider, and the DNS/domain setup has proven difficult to configure correctly. We need an experienced developer who can troubleshoot the issue, update the necessary DNS settings, and ensure the website is properly published and resolving to the correct domain. Access will be provided to: Lovable AI account Domain registrar/domain management account Any additional information needed to complete the setup Deliverables: Connect the Lovable website to our existing domain Configure all required DNS records Verify SSL is working correctly Ensure the website is fully live and accessible from the domain Confirm proper redirects and functionality Requirements: Experience with DNS management and domain configuration Experience deploying websites and troubleshooting hosting/domain issues Ability to work immediately and complete today Strong communication during the process Budget: $100 Fixed Price
- Hourly: $70.00 - $125.00
- Expert
- Est. time: 1 to 3 months, Less than 30 hrs/week
I am building Dewy, an early-stage construction technology platform focused on construction buyout and subcontractor quote intelligence. The first MVP is intentionally narrow: users should be able to upload subcontractor quote/proposal documents and receive structured outputs showing included scope, exclusions, assumptions, qualifications, cost structure, alternates, allowances, and potential risk flags. I have already developed the product concept, construction logic, early workflows, and prototype direction using Codex/AI tools. I am not looking for someone to invent the product from scratch. I need a senior AI product engineer who can review what I have, determine what is usable, define a clean MVP architecture, and help turn the current direction into a working private beta. Initial scope: * Review the current prototype/code/product materials. * Identify what should be reused vs. rebuilt. * Recommend the MVP architecture and tech stack. * Define the AI document-processing workflow. * Design the structure for file upload, extraction, editable results, and export. * Help create a realistic build roadmap, timeline, and budget. * Potentially continue into hands-on MVP development if there is a strong fit. Ideal experience: * Full-stack SaaS / MVP development * AI / LLM application development * OpenAI API or similar model integrations * Document extraction or document intelligence workflows * PDF/DOCX parsing and structured data extraction * React / Next.js * Python * APIs and backend workflows * Supabase/Postgres or similar database experience * Vercel or similar deployment experience * Ability to work with a non-technical founder and translate business goals into a practical build plan This is not a full enterprise platform build yet. The first MVP should stay focused on one core workflow: Subcontractor quote documents in → structured buyout intelligence out. Please respond with: 1. Relevant AI/document extraction projects you have built. 2. How you would approach the MVP architecture. 3. Whether you recommend starting with an audit/roadmap before build. 4. Your hourly rate and availability. 5. Whether you are interested in ongoing build involvement after the initial review.
- Hourly: $60.00 - $75.00
- Intermediate
- Est. time: More than 6 months, 30+ hrs/week
**Job Description** Join our team to design, secure, automate, and operate a highly available Azure-based SaaS platform. You will partner with Engineering, Product, Data, QA, and Security teams to build scalable cloud infrastructure, improve developer productivity, strengthen security, and ensure platform reliability through automation and observability. **Key Responsibilities** **Cloud Platform & Infrastructure** - Design, deploy, and maintain secure, scalable Azure infrastructure. - Architect resilient solutions supporting high availability, disaster recovery, and business continuity. - Manage core Azure services including App Services, Azure SQL, Storage, Redis, Service Bus, and networking components. **DevOps & Automation** - Build and maintain CI/CD pipelines using Azure DevOps. - Implement Infrastructure as Code using Terraform, Bicep, or ARM templates. - Automate deployments, operational processes, and platform management. - Drive improvements in release reliability, deployment velocity, and operational efficiency. **Containers & Platform Operations** - Deploy and manage containerized workloads using Docker and Kubernetes (AKS preferred). - Optimize platform performance, scalability, security, and reliability. - Support database operations, monitoring, and performance optimization across Azure services. **Observability, Security & Compliance** - Implement monitoring, alerting, and observability using Azure Monitor, Application Insights, Datadog, and related tools. - Manage identity, secrets, and access controls using Microsoft Entra ID and Azure Key Vault. - Support security, compliance, vulnerability management, and audit initiatives. **Platform Engineering** - Improve developer experience through automation and self-service capabilities. - Establish platform standards, documentation, and operational best practices. - Reduce operational overhead through continuous improvement and automation. **Required Qualifications** - 7+ years of experience in DevOps, Cloud Engineering, SRE, or Platform Engineering. - Deep expertise in Microsoft Azure and cloud infrastructure design. - Strong experience with Azure DevOps, CI/CD pipelines, and Infrastructure as Code. - Hands-on experience with Docker, Kubernetes, and cloud networking. - Strong scripting and automation skills using PowerShell, Bash, Python, or similar. **Technical Skills** - Required: Azure App Services, Azure SQL, Data Factory, Storage, Redis, Service Bus, Key Vault, Azure Monitor, Entra ID, Azure DevOps, Terraform (preferred), Docker, Kubernetes, Datadog, networking, and automation. - Preferred: Azure Front Door, Cloudflare, ACR, Azure Functions, Event Grid, GitHub Actions, FinOps, AI-assisted operations, and multi-tenant SaaS environments. **Preferred Experience** - Supporting enterprise SaaS platforms in Azure. - Working in regulated environments (SOC 2, HIPAA, or similar). - Implementing cloud security, observability, and operational excellence practices. **Success Metrics** - Secure, scalable, and highly available cloud platform operations. - Reliable and automated deployment processes. - Improved platform performance, observability, and security posture. - Enhanced developer productivity and reduced operational overhead.
- Fixed price
- Expert
- Est. budget: $200.00
The flagged item is the Apple reviewer email address in the submission section. Here's the corrected version with that removed: Job Posting — iOS React Native Engineer Needed (Critical Launch Crash) Title: React Native / iOS Engineer — Fix Launch-Blocking Crash Before App Store Submission Project: DuelDeck — real-money skill-based tournament card game, iOS app (React Native 0.84, New Architecture/Fabric enabled) Urgency: High — this is the single blocker preventing App Store submission. The problem The app crashes on every launch, within ~2 seconds, before any screen renders — including on a completely fresh install with no stored data. The crash signature is consistent and has been narrowed down through extensive isolation testing: An Objective-C exception is being thrown inside a TurboModule's synchronous/void method invocation (ObjCTurboModule::performVoidMethodInvocation), on the com.meta.react.turbomodulemanager.queue. Because this exception crosses a layer the New Architecture bridge cannot safely propagate, the entire process terminates (SIGABRT/abort()), regardless of any JavaScript-level error handling. What's already been ruled out (do not re-test these) Through direct binary-search isolation (disable component → clean rebuild → fresh install → measure time-to-crash), the following have been conclusively excluded as the cause: @react-native-community/geolocation PayPalCheckout SDK and our custom card payment native module A legacy unused Apple Pay native module Build architecture (tested both x86_64/Rosetta and native arm64 — same crash on both) react-native-mmkv (tested with MMKV fully bypassed, forced to AsyncStorage) What needs to happen Isolate the exact native module causing the crash. Strongest remaining candidates, in priority order: lottie-react-native, react-native-svg, react-native-screens, react-native-gesture-handler, a date/time picker library, an image picker library, a webview library. Use the same method: temporarily disable/remove one at a time, clean rebuild, fresh install (uninstall + reinstall to wipe all stored data), and confirm whether the crash persists. Fix the compatibility issue once found — typically a library version bump to one with confirmed New Architecture/Bridgeless support, or a patch to how the module is invoked. Verify a fully clean launch path: app must reach the splash screen, onboarding, and login screen reliably on a fresh install, every time, with no crash. How the app needs to function for this soft launch This is a soft launch, not the full feature set — the app needs to work cleanly within a deliberately narrowed scope. Once the crash is fixed, the build needs to behave exactly as follows before it's ready to submit: Onboarding and account creation. A new user goes through onboarding, then signs up with email and password only. No Google, Apple, or Facebook sign-in, and no phone/SMS login anywhere in the app — email is the only path in. After signup, the OTP email verification step has to actually work end to end: the code gets sent, the user enters it, and the account gets confirmed. No KYC gate. Users should be able to get into the main app and browse around without being forced through identity verification first. KYC stays in the backend for later, but it must not block access during this phase. Real location check. Geolocation needs to use actual Apple Core Location (device GPS with a proper permission prompt), not a workaround. This is what determines whether a user's state is eligible for real-money tournaments, and it needs to be a genuine native location check, not something hardcoded or guessed from the user's profile. Card deposits, no Apple Pay. Users fund their wallet with a debit or credit card through the PayPal card payment flow. Apple Pay should not appear as an option anywhere in this flow — card only. Tournament join has to work, fully. A user with money in their wallet needs to be able to open a tournament, pay the entry fee out of their balance, and get confirmed as entered — the whole payment-to-confirmed-entry path needs to be solid, not just the deposit step in isolation. VS / free play is off. The Invite tab and any 1-on-1 free-play matchmaking should not be live for this launch — show a "coming soon" placeholder instead of the real flow. Withdraw stays disabled. The withdraw button should be visibly present but greyed out / non-functional for now. Deposited funds are playable only and not withdrawable during this phase. Audio is off, and that's fine for now. Background music and sound effects are intentionally disabled for this launch and are not part of what's required to ship — don't spend time trying to bring them back unless explicitly asked. Everything else stays as is. Rankings, profile, avatar upload, live countdown timers on tournament cards, and the rest of the existing feature set should continue working exactly as they do now — the engineer's job is the crash fix and the items above, not a feature audit of the whole app. Admin dashboard. Tournament creation, editing, and cancellation from the admin dashboard need to be reliable, since tournaments will be set up and managed from there around the time of launch. Re-validate the full soft-launch feature set above after the crash fix — confirming each item works on a real build, not just in theory. Prepare and submit the TestFlight build for internal testing, then prepare the App Store Connect submission (screenshots, privacy details, review notes). A pre-configured Apple reviewer test account will be provided once hired. Requirements Strong hands-on experience with React Native's New Architecture (Fabric, TurboModules, Bridgeless mode) specifically — this is not a general React Native bug, it requires someone comfortable reading Objective-C++/Swift native module bridging code and Xcode crash reports (.ips files). Comfortable working directly with .ips crash logs, symbolicating stack traces, and reasoning about ObjC exception propagation across the JSI/TurboModule boundary. Experience shipping React Native apps through TestFlight and App Store review. Familiarity with CocoaPods, Xcode build configurations, and debugging native module linkage issues. Codebase context React Native 0.84.1, iOS min target 15.1, New Architecture enabled. Backend already live and stable (Node.js/PostgreSQL on AWS ECS) — this is an iOS-app-only fix. Full crash investigation notes (stack traces, what's been tested, environment details) will be provided to the selected candidate at project start so no time is wasted repeating already-completed diagnostic work. Communication and file sharing will happen entirely through the platform's built-in tools.
- Hourly: $50.00 - $150.00
- Expert
- Est. time: 1 to 3 months, Less than 30 hrs/week
I want to build a private multi-model RAG-based Opportunity Intelligence Agent. It should support document ingestion, opportunity-specific workspaces, vector search, source citations, multi-model routing across OpenAI, Claude, Perplexity, and possibly DeepSeek, and generate strategic recommendations from both uploaded files and live web research. This is intended to become a reusable base agent capable of knowledge retrieval, web research, multi-model orchestration, document analysis, citation generation, and agent clonding and configuration. It will be used for analyzing & strategy development for project opportunities, responding to RFPs, and proposal assistance, as well as other applications.
- Hourly: $50.00 - $150.00
- Expert
- Est. time: More than 6 months, Hours to be determined
Founder-led cloud infrastructure agency specializing in regulated environments healthcare and defense engineering teams. We need a B2B SEO strategist to lead organic growth not a generalist SEO operator. Current state: brand, website, pillar pages, and first content cluster are live. Ranking on page 2 for our primary keyword after 30 days. Ready to invest in real SEO strategy to push to page 1 and build topical authority across our service areas. The work: Strategic audit of current site (pillar page, blog content, technical SEO) 90-day and 12-month content cluster roadmap Keyword research focused on commercial intent and buyer journey Topical authority development across 3-5 content pillars Internal linking architecture and on-page optimization Performance tracking tied to pipeline metrics, not just traffic Content brief development for in-house writing Required: 5+ years SEO experience specifically with B2B SaaS, B2B services, or technical companies Portfolio of case studies showing organic traffic growth and pipeline impact for B2B clients Demonstrated understanding of topical authority, content clusters, and intent mapping Native English communication (US/UK/Canada/Australia preferred) Not a fit: E-commerce, local SEO, or affiliate marketing background Strategy that starts with "keyword research" without commercial context Sub-$50/hour rates Promises of specific ranking outcomes Engagement: Starting at 5-10 hours per week, hourly or fixed-fee per deliverable. Long-term retainer potential for the right partner. Direct access to the founder for briefings and decisions. To apply, share: 2-3 case studies from B2B clients with specific metrics (traffic, rankings, pipeline impact) Your perspective on building topical authority for a new domain in a competitive technical niche Your typical engagement structure and timeline to first results