Looking for KeyCloak 18 consultant (UK-based or EU-based) to assist with deployment and implementation of KC18 Quarkus on AWS

We are a software company operating in the Transportation sector and we provide solutions to companies that include Long Distance Hauliers, Bus Operators and many other companies that have their own fleet of vehicles that they maintain at their own workshops. Our core offering is still a Windows Native Monolithic application.

We have in recent years started to offer our solution as a managed solution on AWS using Amazon Workspaces initially and more recently we started to make use of Amazon AppStream 2.0 to provide end users with access to our solution where we manage everything from infrastructure provisioning to user provisioning. Until now, user management was done through the built-in User Pool of AppStream, but we now have an immediate requirement for SAML 2.0 integration with Azure Active Directory and possibly also for integration with Windows Active Directory and we believe KeyCloak is the answer for us.

We need to implement KeyCloak with the following requirements and nice-to-haves:

  • SAML 2.0 integration with Azure AD where users will log in to AAD’s interface to see and the list of available applications and from there launch an AWS AppStream session using a temporary streaming URL as described here: Enabling Federation with Azure AD Single Sign-On and Amazon AppStream 2.0. SAML assertions also need to be implemented to allow multiple applications to be allocated to some users based on the assertions.
  • Multi-realm login support where users don’t have to know the specific realm (auto redirection to users appropriate realm) perhaps using something like keycloak-home-idp-discovery
  • Fine-grained realm admin support so that we can give admin rights to one or two users in a realm so that they can manage the users of that realm including user creation and user deletion (I know this is currently a preview feature of KeyCloak 18 (Quarkus edition).
  • Must support Microsoft AD integration also.
  • Any other reporting / connection nice-to-haves that are suggested.
  • We will be self-hosting in the eu-west-1 (Ireland) region - on e.g. AWS EC2 Linux instance (docker perhaps?) or container on AWS ECS… Alternatively hosted as (an affordable) service that we can add to our existing offering without having to increase end-user pricing…
  • Some assistance to customise the interface will also be required.

Please DM me if you are interested and include hourly rates or total cost to deliver the above and estimated time needed to deliver. Please also mention country of origin.