DocumentationChangelog
Getting Started

Installation

Get your own PowerMaster Instance up and running

Local Installation

In a local installation, the control center is located within the same Local Area Network (LAN) as the connected devices. In segmented networks – for example, when using access lists or firewalls – the required communication must be explicitly allowed. Once these prerequisites are met, both push and pull communication are possible.

The software is provided in a containerized form, allowing platform-independent installation. Existing infrastructures such as Docker or Kubernetes can be used directly. In environments without such infrastructure, a Raspberry Pi is a suitable, low-cost, and energy-efficient platform.

Within the local network, there are no restrictions on communication between the control center and end devices. However, a challenge arises when providing the PWA outside the home network: PWAs must be delivered via HTTPS with a publicly valid certificate. Not every customer network has a public IP address or supports port forwarding. To solve this issue consistently, the JFK Enterprise Secure Tunnel was developed. This service enables secure and reliable accessibility of the PWA — even without a public IP or manual port release.

Saas Installation

In the “Software as a Service” (SaaS) variant, the control center is centrally managed by JFK-Enterprise and provided to the customer as a cloud service. For the customer, PowerMaster functions like a typical cloud service, allowing them to add and control devices centrally.

If the customer uses devices that communicate via a pull method, a WireGuard VPN endpoint is required on the customer side. This can be implemented using existing hardware such as a router or another WireGuard client.

If no suitable hardware is available, a VPN endpoint can also be implemented with a low-cost ESP32, granting the SaaS installation access to the customer’s local network and its devices.

If only devices using secure push communication are employed, no VPN connection is necessary — provided that the customer correctly configures the devices.

The web interface and Progressive Web App (PWA) are provided centrally via an NGINX reverse proxy. This proxy does not communicate directly with individual PowerMaster installations over WireGuard but forwards requests to a central instance.

Advantages of the SaaS installation

  • Easy updates: All SaaS installations are centrally managed and automatically kept up to date without manual effort.
  • No hardware costs: If only devices with push communication are used, no additional hardware is needed. Otherwise, an inexpensive ESP32 is sufficient to provide VPN access.
  • Faster user interface: The web interface is provided centrally and typically runs much faster than local installations since it is independent of the customer’s internet connection.
  • Ideal for “Try & Buy”: Perfect for trial deployments — installation is simple and can be used immediately without major setup.
  • Main disadvantage: If the internet or VPN connection fails, devices can no longer be controlled. This can lead to financial losses or even technical damage to equipment.

Introduction

Welcome to the JFK-Enterprise PowerMaster

Usage

How to access the PowerMaster Dashboard