We need an experienced PHP developer to make a few tightly scoped fixes on a live, legacy PHP frontend. The work is focused on debugging auth flow and a 401 API issue, plus ensuring Secrets Manager integration works correctly from EC2. This is not a rewrite and no refactors. We need someone comfortable reading existing PHP code, tracing request flows, and applying minimal, safe patches to restore functionality on production. Scope (Immediate) Fix public route regression (site prompting login for public pages) Resolve 401 on CRM Tenants API (/tenant/api/tenants) Verify Authorization header handling (Axios/interceptor if applicable) Confirm API base path correctness Ensure AWS Secrets Manager is read from correct region (eu-west-1) in PHP SDK config Restart Apache/PHP-FPM and validate login + key pages load Document repo/branch/commit + proof (200 response + screenshot) Requirements 1.Strong PHP (debugging legacy codebases) 2.Comfortable with auth middleware / route guards 3.Experience with AWS SDK for PHP (Secrets Manager) 4.Knows EC2 + IAM role-based auth basics 5.Can patch what’s currently deployed (no repo switching) 6.Can provide proof of fix (curl/DevTools + screenshot) Nice-to-Have Familiarity with Apache/Nginx, PHP-FPM Ability to work carefully on production under time pressure