LoginSecurity Icon



LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.

How does it work?

Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.


  • Register your account optional or required (change in config)
  • 5 useful commands to manage your password
  • Saving supported in SQLite and MySQL
  • Encryption available in: MD5, SHA, SHA-1, SHA-256, SHA-512 and PHPBB3
  • Custom encoder: UTF-8 and UTF-16
  • Customizeable login session
  • Customizeable login timeout
  • Custom min and max length for passwords
  • Messager API for client mods
  • User friendly experiance
  • Converter for xAuth (detects if xAuth is installed)
  • Easy to use
  • Blocks anything from happening before logged in (commands, movement ,etc.)
  • Supports blindness effect for login
  • Prevents being kicked by orther players loging in with your name

Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)


/lac - Admin command, rmpass and reload

/register <password> - Set your password

/rmpass - Removes your password

/login <password> - Login with your password

/changepass <old> <new> - change your password

/logout - Logout


  • ls.admin - allows admin command


This tutorial is outdated, alot of things have changed after v2.0
Orther tutorials: German (by MineCraftler4Live)

To do

  • MD5 support
  • Add an IP lock
  • Add a login session
  • Fix /changepass
  • Add a language.yml for language support
  • add login timeout
  • add ip checker
  • Suggestions?

Known Bugs

  • Players can mount/dismount and ride on vehicles while not logged in


This plugin is connecting to mojang services to conver old data to new UUID data. It sends a request for every single player stored in your database, wich only hapends if you upgrade from 2.0.8 or lower to 2.0.9 or higher. This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:

  • A unique identifier
  • The server's version of Java
  • Whether the server is in offline or online mode
  • The plugin's version
  • The server's version
  • The OS version/name and architecture
  • The core count for the CPU
  • The number of players online
  • The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.


If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner

LoginSecurity build server Hit couter

You must login to post a comment. Don't have an account? Register to get one!

  • Avatar of ClxGamer01 ClxGamer01 Jan 15, 2016 at 03:51 UTC - 0 likes

    The author is no longer updating this because it been 1 year without a new update!

  • Avatar of Anitua Anitua Jan 09, 2016 at 17:44 UTC - 0 likes

    In configuration, what fake-location is there for?

  • Avatar of x0tester0x x0tester0x Jan 05, 2016 at 12:43 UTC - 0 likes

    Hello, When I set the fake location to true, then when I left the game in the nether, I will killed by fall damage. Can you fix this please? I use the latest version (v2.0.10)

  • Avatar of pinetrees100 pinetrees100 Nov 17, 2015 at 01:49 UTC - 0 likes

    There is no translation features :P

    I hope to add some custom translation feature for this :D

  • Avatar of games647 games647 Nov 13, 2015 at 17:51 UTC - 0 likes

    @theaverageguy11: Go

    Sorry for the delay. I didn't noticed your reply. It's recommended to change the code how the plugin saves the player.

    FastLogin - Auto login offline mode/cracked accounts if the player has a paid account
    ScoreboardStats - Fast custom scoreboard with optional pvpstats tracking and compatibility with other scoreboard plugins
    ChangeSkin - Change your ingame skin
    TabChannels - Clickable chat channel switching

  • Avatar of theaverageguy11 theaverageguy11 Nov 02, 2015 at 08:24 UTC - 0 likes

    @games647: Go Anyway to alleviate the lag caused by it? Or would the author have to change how the plugin works for that? If the latter is true, any recommendations for alternative plugins?

  • Avatar of games647 games647 Nov 01, 2015 at 13:00 UTC - 0 likes

    @SashaRus34: Go

    You can do it by your own. Just edit the plugin.yml with a archive program.

    @theaverageguy11: Go

    Properly because the plugin runs a SQL-Query on the main thread there.

  • Avatar of theaverageguy11 theaverageguy11 Oct 31, 2015 at 22:00 UTC - 0 likes

    Hello I am using this plugin on git-PaperSpigot-7aa4900-62a2169 (MC: 1.8.8) (Implementing API version 1.8.8-R0.1-SNAPSHOT) and I noticed after running a timings test for 55 minutes the event "LoginListener::onPlayerQuit(PlayerQuitEvent)" is a source for causing a drop in TPS, as well as commands /login and /register.

    Is there a way to improve the performance of these events and commands?

  • Avatar of SashaRus34 SashaRus34 Oct 15, 2015 at 21:59 UTC - 0 likes

    ==== Hi the Creator of the plugin. ====
    **Add command **
    /reg Registration
    /l Authorization
    **Please** !!!! The plugin is good,but I want These teams!

  • Avatar of JKGamerxD JKGamerxD Oct 09, 2015 at 18:40 UTC - 0 likes

    Hi, one idea Custom /login and /register commands? tanks.


Date created
Jul 07, 2012
Last update
Oct 27, 2014
Development stage
  • enUS
GNU General Public License version 3 (GPLv3)
Curse link
Recent files