Case study
Advanced Middleware for Global Gate & Access Control
Executive summary
A high-concurrency middleware and management platform that centralizes identity and access control for multiple retirement villages and estates, integrating with AxxonSoft and HikVision for automated facial and license plate recognition.
The problem
Decentralized data
Access permissions were managed on local Axon servers, preventing property groups from maintaining a single "master view" across all facilities.
High-friction onboarding
Visitors faced delays at gates due to manual registration and unreliable pre-arrival authorization flows.
Middleware necessity
Large property groups needed a vendor-agnostic authentication layer that could work across different hardware stacks and multiple properties.
The solution
Master-slave database architecture
A master data layer stores facial signatures, vehicle records, and permissions, then synchronizes slave datasets to local Axon servers for offline recognition.
Omnichannel identity management
Residents use native mobile apps, while visitors use WhatsApp or SMS-assisted flows to upload biometric data through a secure web portal.
Intelligent visitor triage
A live "ping" system notifies residents when unannounced guests arrive, enabling immediate remote approval or denial.
Dynamic role-based access
A four-tier RBAC model supports super admins, estate managers, operational roles, and gate security with tightly scoped permissions.
Technical deep-dive (impact)
Real-time API orchestration. NestJS backend integration with AxxonSoft face and access APIs ensures local gate nodes have synchronized slave data ready for sub-second recognition.
Automated tenant isolation. Multi-tenant architecture isolates gate groups and resident datasets by estate to prevent cross-property data leakage.
Hardware-agnostic middleware. A proprietary API layer enables third-party properties to use authentication logic regardless of their exact software or hardware stack.
Production reliability under load. The platform is designed for high-concurrency commute windows, supporting simultaneous gate pings and approvals across multiple locations.
Security-first capture flow. Visitor capture links enforce live camera usage, with file upload blocking to reduce spoofing risk and strengthen biometric trust.
Operational architecture notes. Core roadmap includes gate-group-to-Axon ID mapping, estate-scoped filtering for role visibility, and a 30-second resident response timeout before security override.
Impact snapshot
Core sync model
Master/Slave
Central DB with local recognition nodes
RBAC depth
4-tier
Super admin to gate security
Resident ping flow
Real-time
Approval and timeout logic
Estate isolation
Multi-tenant
Scoped data and permissions
Platform readiness
Illustrative indicators aligned with gate throughput, synchronization reliability, and trust-centric access control.
Operational throughput trend (conceptual)
