Prabath Siriwardena is an identity and security engineering leader with over two decades of experience designing and shipping IAM and API security solutions, currently driving identity efforts at DevRev from San Jose. He led the technical vision and product architecture for WSO2 Identity Server for more than a decade, scaling the product from zero to hundreds of enterprise customers and enabling hundreds of millions of users. A hands-on architect and Java back-end contributor, his open-source work includes implementing OAuth2 introspection and token validation features in the widely used WSO2 identity stack. He combines deep standards knowledge (OAuth2, OpenID Connect, SAML, XACML, Kerberos) with practical experience migrating monoliths to microservices and building multi-regional, multi-tenant deployments. Beyond product delivery, he advises on microservices security and national identity initiatives, and holds advanced training in algorithms and data privacy from Carnegie Mellon and Harvard Business School Online. Known for turning complex identity standards into production-grade, auditable systems, he blends researcher-level rigor with pragmatic engineering.
16 years of coding experience
10 years of employment as a software developer
B.Sc, Engineering, B.Sc, Engineering at University of Moratuwa
Data Privacy and Technology, Data Privacy and Technology at Harvard Business School Online
Algorithms and Advanced Data Structures, Algorithms and Advanced Data Structures at Carnegie Mellon University
Contributions:14 commits, 5 PRs, 12 pushes in 3 days
Contributions summary:Prabath primarily focused on implementing introspection support within the `carbon-identity` repository. This involved creating and modifying Java classes, specifically `OAuth2IntrospectionResponseDTO.java` and `TokenValidationHandler.java`. The changes added functionality for token validation and response generation based on the OAuth 2.0 introspection specification (RFC 7662). Furthermore, the user improved error handling within the token validation service.
Ballerina is a cloud native programming language, which makes it easy to write microservices that integrate APIs. Here we have examples, which show how to build microservices security patterns with Ballerina and WSO2 Identity Server. This is NOT an official git repo governed by ballerina.io.
Contributions:83 commits, 6 PRs, 66 pushes in 1 year 2 months
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Prabath Siriwardena - Member Of Technical Staff (Identity) at DevRev