A complete platform for document intelligence.
NexDok provides end-to-end document management, AI indexing, semantic search, Q&A with citations, approval workflows, and enterprise-grade access control — all in a single platform.
Manage, version, and organize every document.
These services cover the lifecycle of every piece of content stored in NexDok — from creation and upload through versioning, classification, and retrieval.
Document Management Service
The core of NexDok. Stores, organizes, and serves every document in your workspace with metadata, permissions, version history, and an activity timeline.
Version Control Service
Maintains an immutable history of every revision. Each version is numbered automatically, can carry a label and change summary, and can be marked as the official Published Version.
Collections Service
Organizes documents into named groupings — by project, department, topic, or initiative. Collections carry their own visibility and permission model.
Document Types Service
Define the kinds of documents your workspace handles (Policy, Contract, Syllabus, etc.). Each type defines its own metadata schema, retention rules, and approval requirements.
Metadata Service
Captures, validates, and indexes custom fields attached to every document. Metadata is schema-driven, filterable in the UI, and queryable via API.
Native Document Editor
A built-in rich-text editor for authoring documents directly in NexDok — no upload required. Supports tables, lists, embedded images, and structured content.
Document Upload Service
Handles binary document uploads through UI direct upload and API upload flows for seamless content ingestion.
Document Ingest Service
The asynchronous pipeline that processes every uploaded file: extracts text, splits it into semantic chunks, generates AI embeddings, and stores them for search and Ask.
Quick Preview Service
Renders an instant preview of any document directly inside the document library — without navigating away.
Document Renditions Service
Generates and stores alternative formats of a document (e.g., a PDF rendition of a DOCX original) along with thumbnails and previews.
Turn your documents into a queryable knowledge base.
These services turn your document corpus into an intelligent, searchable, and answerable knowledge base powered by AI.
Semantic Search Service
Finds documents by meaning — not just keywords — by comparing the meaning of your query against AI embeddings of every indexed chunk. Always permission-aware.
Ask Service (AI Q&A)
A natural-language question-answering engine. Type a question and Ask retrieves the most relevant chunks, composes a grounded answer using an LLM, and cites every source.
Deep Ask Service
A focused variant of Ask scoped to a single document. Analyze a long contract, extract clauses, or summarize sections — all within the bounds of one file.
Query API Service
A public API endpoint that returns the most relevant chunks for a query without the LLM answer-generation step. Build custom AI experiences on top of your NexDok corpus.
Source Attribution Service
Every Ask answer comes with citations: the documents and specific chunks the answer was drawn from, with links to verify the source.
Embedding & Indexing Service
Manages the AI representation of every chunk in your workspace. Uses 1,536-dimension embeddings stored in pgvector. Re-indexing happens automatically.
Review, approve, sign, and distribute with confidence.
These services govern how content moves through the organization — review, approval, signing, and distribution.
Approval Workflow Service
Requires that document types or collections go through formal review before publishing. Submitters create requests, approvers see pending decisions in a dedicated inbox.
Approvals Inbox Service
A per-user view of approval requests waiting for that user’s decision, with deep links to the version under review.
Electronic Signature Service
Sends documents for legally binding electronic signature through SignDok. Supports multiple signers, sequential or parallel order, deadlines, and reminders.
Signing Inbox Service
A per-user view of documents awaiting signature, both as an internal user and as an external signer.
Signing Operations Service
A monitoring console for administrators to see every signing request, sync status, retry failed submissions, cancel active requests, and send reminders.
Secure Sharing Service
Distributes documents to recipients with controlled access — passcodes, expiration dates, watermarks, and download tracking.
Sharing Operations Service
The administrator console for monitoring all sharing activity, troubleshooting expired or stalled shares, and supporting end users.
Document Lifecycle Service
Manages the formal state transitions a document goes through (Draft → Review → Published → Archived) and records the reason for each transition.
Control who can see, do, and change what.
These services control permissions and security across every layer of NexDok — from authentication through granular document-level access.
Authentication Service
Handles user sign-in, session tokens, and identity. Supports password authentication and Multi-Factor Authentication via TOTP.
Multi-Factor Authentication Service
Adds a second authentication factor on top of password sign-in. Members can enroll, verify, and manage their MFA factors.
Role & Permission Service
Enforces what every member can see and do at workspace, account, collection/zone, and per-document levels.
Access Groups Service
Create named groups of members and grant permissions to the group rather than to individuals — making bulk access management practical.
Security Zones Service
A higher-order organizing layer for permissions. Zones classify content by sensitivity and control AI indexing eligibility.
Tenant Isolation Service
The architectural guarantee — enforced at application, database, and storage layers — that every workspace’s data is fully separated.
Audit Service
Records every important action in the workspace into an immutable, time-ordered log for compliance reviews and security investigations.
Compliance Audit Service
Specialized summaries of activity compiled for compliance officers, internal control reviews, and external audit engagements.
Retention & Expiration Service
Enforces document retention rules and scheduled expirations. Documents can be auto-archived or auto-deleted when their retention window closes.
Run your workspace with full control.
These services give administrators the controls to run a workspace day to day — from member management to branding.
Workspace Management Service
Provision, configure, suspend, archive, and delete workspaces. Manage workspace-level settings, defaults, and lifecycle status.
Member Management Service
Invite new members, assign roles, manage member status, and onboard or offboard users with invitation flows and role changes.
Workspace Switcher Service
Lets users who belong to multiple workspaces move between them quickly without signing out, while maintaining strict data isolation.
Tenant Branding Service
Customizes the visual identity of a workspace: display name, colors, logo, favicon, and login background. Supports white-label deployments.
Account Management Service
Manages the top-level billing entity that owns one or more workspaces. Handles account-level roles and status.
Plans & Capabilities Service
Defines and enforces the subscription tier: which features are enabled and which limits apply — for documents, storage, AI queries, and members.
Usage Service
Reports current consumption against plan quotas: documents stored, storage in bytes, AI queries used, and active members.
Settings Service
A centralized configuration hub for every administrator surface: members, access groups, zones, document types, collections, API keys, branding, and more.
Connect NexDok to the rest of your stack.
These services let NexDok integrate with your existing systems through APIs, webhooks, and real-time notifications.
API Service
A complete RESTful API that exposes every operation available in the user interface. Built with FastAPI and documented with OpenAPI.
API Keys Service
Generate, scope, expire, and revoke server-to-server API credentials. Keys are SHA-256 hashed at rest with least-privilege scopes.
Webhooks Service
Push real-time notifications to external systems whenever something happens in NexDok. Supports HMAC-signed payloads and automatic retries.
Webhook Delivery Service
Delivers events asynchronously to webhook endpoints with up to seven retry attempts, status tracking, and a permanent delivery log.
Event Service
The internal event bus recording every meaningful action as an event. Events feed webhooks, the audit log, and the activity timeline.
SignDok Integration Service
The two-way bridge between NexDok and SignDok: submits signing requests outbound, receives signed PDFs and status updates inbound.
Notification Service
Delivers user-facing notifications — in-app and via email — when something requires the user’s attention.
Email Provider Service
The pluggable backend that the Notification Service uses to send transactional email. Configurable per deployment.
See what is happening, in real time.
These services give workspaces and platform operators a clear view of activity, health, and diagnostics.
Dashboard Service
The home view summarizing recent activity, key metrics, getting-started guidance, and outstanding work for a workspace.
Activity Timeline Service
A per-object chronological log: every event affecting a document, approval, signing request, or share — combined into a readable story.
Workflow History Service
The state-transition log of a document: created, version added, submitted for approval, approved, rejected, published, archived, restored.
Operations Console
A dedicated administrative web application for tenant and platform administrators. Surfaces tenants, accounts, plans, audit logs, and usage analytics.
Health & Diagnostics Service
Exposes liveness and readiness endpoints for every NexDok service so operators can verify the system is healthy.
Admin Tools Service
Administrative endpoints for tenant operators: re-indexing documents, replaying events, inspecting failed deliveries, and resolving stuck workflows.
Downloads Service
Issues short-lived, signed download URLs for document files — so binaries can be served securely without exposing storage credentials.
The technical foundation that powers NexDok.
These are the deployable components that make up the NexDok platform — for technically-minded evaluators, integration partners, and self-hosted deployments.
Web Application
The primary end-user interface. A single-page application built with React + TypeScript + Vite, themable per workspace.
Operations Console App
A separate React + TypeScript single-page application for platform and tenant administration with views for accounts, tenants, and plans.
Doc API
The primary backend service. A Python FastAPI application hosting every API endpoint, business rule, and authorization check.
Ingest Worker
The async pipeline that downloads uploaded files, extracts text, chunks it, generates AI embeddings, and stores them in pgvector.
Webhook Worker
A standalone worker that polls events, builds payloads, signs them with HMAC, and delivers them to configured webhook endpoints.
Notification Worker
A standalone worker that delivers in-app and email notifications, renders templates, and updates delivery status.
PostgreSQL + pgvector
The system of record for every entity. Uses pgvector for AI embedding storage and similarity search. Enforces tenant isolation via Row-Level Security.
Supabase Storage
Object storage for every binary file in the system at tenant-isolated paths, accessed by the Doc API using service-role credentials.
Supabase Auth
The user identity provider. Issues JWTs, validates passwords, supports MFA factors, and provides the cross-cutting identity source.
Ready to explore NexDok?
Start managing your documents intelligently today.