Four steps. No friction.
The whole system works on the customer's phone. No app download, no account, no card reader at the door.
You post a QR code at the door. Customer scans it on their phone — opens a mobile checkout page for that specific door, showing the price and access duration.
Customer enters their phone number and pays with a card. Stripe handles the payment — no card data ever touches the door controller. PCI-safe by design.
Payment success triggers a random time-boxed PIN — sent by SMS and shown on screen. The PIN is hashed in storage; the door only sees a compare. It expires when time runs out.
Customer types the PIN on the keypad at the door. Validated against the active grant. Relay energizes for exactly the minutes they paid for. Then the door auto-relocks.
Any door that earns by the hour
If it needs controlled access and someone should be paying to use it, Boojee Access fits.
Clean, keyless, paid. A few coins for a guaranteed-clean restroom — and the revenue actually funds the cleaning. Cities, transit hubs, parks, gas stations, festivals. This one alone is a killer.
Rent units without a manager on-site. After-hours access, day passes, hourly units — all automated.
Sell hot-desk access by the hour. No front desk. No membership app. Customer pays and walks in.
Day passes, guest access, after-hours entry. Revenue from people who'd never buy a monthly membership.
Replace the key-exchange dance. Guest pays, gets a PIN tied to their reservation window. No lockboxes to break.
HOA clubhouse, rooftop deck, laundry room, bike storage. Controlled access without a full key system.
Hourly tool-bay and studio access. Charge by the session. Auto-kick when time expires.
Fail-secure. Not fail-open.
If the controller loses network, the door stays locked. No exception. Security framing is explicit throughout the system — no shortcuts.
The raw PIN is never stored. Only a bcrypt hash lives in the database. The controller gets a yes/no — never the original PIN.
Every grant has a hard expiry timestamp. DynamoDB TTL auto-deletes expired records. No stale grants that can be replayed.
5 wrong PINs on the keypad triggers a 10-minute lockout. Rate limiting on the validate endpoint as well.
The controller must present a device_secret on every validate call. A rogue device or API probe can't validate PINs.
Payment is Stripe-hosted on the customer's phone. The Pi controller only sees the PIN — never card numbers or payment data.
Every PIN attempt — success or failure — is logged with timestamp, door ID, and outcome. Owner sees the full history.
Full pay → PIN → unlock loop
This is a live browser simulator — the full access flow runs right here with no backend, no hardware. Every piece mirrors the real system.
Your doors, your rules
Register doors, set prices, generate QR posters, and watch the access log — all client-side for the demo. Backed by the cloud in production.
Per door. Per month.
These are the planned tiers at launch — hardware is not yet shipping and subscriptions are not yet active. Hardware is separate (one-time ~$60–120/door kit). Software is a flat monthly per door — no per-transaction cut from Boojee. Stripe's fee applies to each payment.
- 1 door controller
- Unlimited access transactions
- PIN + SMS delivery (when live)
- Access log
- Owner console
- Up to 5 door controllers
- Shared owner dashboard
- Cross-door access log
- PIN + SMS delivery
- QR poster generator
- Multi-use grant options
- Unlimited door controllers
- API access
- Hey Boo voice control
- Webhook events
- Custom branding on PIN screens
- Priority support
If you want it, we’ll build it.
Boojee Access is in development and we build to demand. Raise your hand — tell us you want it and what you’d use it for — and you go to the front of the line when it ships. No charge, no commitment. We just want to see who wants it.
Public restrooms alone — clean, paid, keyless — would change the game. Storage, gyms, studios, rentals: same story.