A comprehensive web-based control panel for managing Nuki Smart Locks with advanced user management, authorization control, and activity monitoring.
-
π Smart Lock Control: Lock, unlock, and unlatch operations for all connected Nuki devices
-
π₯ User Management: Multi-user support with role-based permissions and admin controls
-
π Authorization Management: Create and manage PIN codes with time-based restrictions
-
π Activity Logs: View detailed smart lock usage history with advanced filtering
-
π Battery Monitoring: Real-time battery status tracking for all devices
-
π‘οΈ Permission System: Granular access control for smartlocks and authorizations
-
β° Time Restrictions: Set date ranges, weekly schedules, and daily time limits for authorizations
-
π± Responsive Design: Mobile-friendly interface that works on all devices
Main dashboard showing smartlocks, battery status, and quick actions
-
Docker and Docker Compose
-
Nuki Smart Lock(s) connected to your Nuki account
-
Nuki Web API access (requires Nuki account)
git clone <your-repository-url>
cd nuki-web
Create a .env file in the backend/ directory:
cd backend
cp .env.example .env # If you have an example file, or create manually
Add the following environment variables to backend/.env:
# Nuki Web API Token - Get this from your Nuki account settings
NUKI_API_TOKEN="your_nuki_web_api_token_here"
# Initial Admin User (will be created as admin in database)
INITIAL_ADMIN_USER="admin:admin123"
# JWT Secret - Use a long, random string for security (minimum 32 characters)
JWT_SECRET="your_very_long_random_secret_string_here_at_least_32_characters"
Important Security Notes:
-
NUKI_API_TOKEN: This is your Nuki Web API key, which you can obtain from your Nuki account settings -
JWT_SECRET: Must be a long, random string (minimum 32 characters) for security. Generate one using:tr -dc "a-zA-Z0-9" < /dev/urandom | head -c 32 ; echo
# From the project root directory
docker-compose up -d
Open your web browser and navigate to:
http://localhost:8080
Login interface for accessing the application
-
Log in to your Nuki account at web.nuki.io
-
Navigate to your account settings
-
Find the "API" section
-
Generate or copy your Web API token
-
Use this token as your
NUKI_API_TOKEN
Location of the Web API token in your Nuki account settings
The application provides several main sections:
-
View all connected smart locks
-
Monitor battery status and device state
-
Perform lock/unlock/unlatch operations
-
Filter by name or state
-
Sync device status
Smartlocks overview with battery status, state information, and control buttons
-
Create and manage PIN codes
-
Set time-based restrictions (date ranges, weekly schedules, daily hours)
-
Assign authorizations to specific smartlocks
-
Enable/disable authorizations
-
Filter and search existing authorizations
Authorization management interface showing PIN codes and their assignments
Authorization creation form with time restrictions and smartlock selection
-
View detailed activity logs for all smart locks
-
Filter by device, action type, date, or user
-
Monitor usage patterns and security events
Activity logs with filtering options and detailed event information
-
Create and manage user accounts
-
Set user permissions for specific smartlocks
-
Configure authorization management permissions
-
Grant or revoke admin privileges
User management interface for administrators
Detailed permission configuration for individual users
The system supports granular permissions:
-
Smartlock Access: Control which smartlocks a user can view and operate
-
Authorization Permissions:
-
Create new PIN codes
-
Edit existing authorizations
-
Delete authorizations
-
Specific Authorization Access: Fine-grained control over individual PIN codes
The backend provides a RESTful API with the following key endpoints:
-
POST /login- User authentication -
GET /verify-token- Token validation
-
GET /api/smartlocks- List all smartlocks -
POST /api/smartlocks/{id}/action/lock- Lock a smartlock -
POST /api/smartlocks/{id}/action/unlatch- Unlatch a smartlock -
POST /api/smartlocks/{id}/sync- Sync smartlock status
-
GET /api/smartlock/auths- List all authorizations -
PUT /api/smartlock/auth- Create new authorization -
POST /api/smartlock/{smartlock_id}/auth/{auth_id}- Update authorization -
DELETE /api/smartlock/auth- Delete authorization(s)
-
GET /api/smartlock/log- Get activity logs -
GET /api/smartlock/{id}/log- Get logs for specific smartlock
All API endpoints require JWT authentication via Bearer token.
-
Fork the repository
-
Create a feature branch (
git checkout -b feature/amazing-feature) -
Commit your changes (
git commit -m 'Add some amazing feature') -
Push to the branch (
git push origin feature/amazing-feature) -
Open a Pull Request
-
JWT Secret: Always use a long, random string for
JWT_SECRETin production -
API Token: Keep your Nuki API token secure and never commit it to version control
-
HTTPS: Use HTTPS in production environments
-
User Permissions: Regularly review user permissions and access levels
-
Database: The SQLite database contains sensitive user data - ensure proper backup and security
- Cannot connect to Nuki API:
-
Verify your
NUKI_API_TOKENis correct -
Check your internet connection
-
Ensure your Nuki account has API access enabled
- Authentication issues:
-
Verify
JWT_SECRETis set and consistent -
Check that the secret is at least 32 characters long
- Database errors:
-
Ensure the
data/directory is writable -
Check Docker volume permissions
- Port conflicts:
-
Ensure port 8080 is available
-
Modify
docker-compose.ymlif needed
This project is licensed under the GNU Affero General Public License v3.0 (AGPLv3)
For issues and questions:
-
Check the troubleshooting section above
-
Search existing GitHub issues
-
Create a new issue with detailed information about your problem
Note: This application requires a valid Nuki account and compatible Nuki Smart Lock devices. Ensure your devices are properly set up and connected to the Nuki service before using this application.