LoginSecurity
LoginSecurity
LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.
How does it work?
Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.
Features
- Register your account optional or required (change in config)
- 5 Useful commands to mangage your password
- Advanced administrative control
- Advanced documentation via wiki
- Secure password storage using BCrypt
- Secure sessions storing to improve user experience
- Customizable time-out
- Map captcha upon registration (user friendly)
- Conversion from AuthMe and xAuth (check wiki for more info)
- Premium support through AutoIn
- Automatic update with changelog overview
- Username filtering (length and characters)
- Highly detailed configuration
- Automatically updated translation manager (user-submitted)
- Prevents being kicked by orther players loging in with your name
Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)
Commands
/lac - Admin command, rmpass and reload
/register <password> - Set your password
/login <password> - Login with your password
/changepass <old> <new> - change your password
/logout - Logout
Permissions
- loginsecurity.admin - allows admin command
- loginsecurity.update - shows update notifications
Video
Thanks to ServerMiner for making this informative tutorial
Orther tutorials: German (by MineCraftler4Live)
Planned
- Add translation interface for easier language selection
- Suggestions?
Known Bugs
- Players can mount/dismount and ride on vehicles while not logged in
Disclaimer
By default, LoginSecurity will check for updates from bukkitdev every 3 hours.
This feature can be disabled by setting "update-checker" to "false"
Anyone with the permission node ls.admin will be notified of updates, and it also able to download them via /lac update.
Which again can be disabled by disabling the update-checker
This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:
- A unique identifier
- The server's version of Java
- Whether the server is in offline or online mode
- The plugin's version
- The server's version
- The OS version/name and architecture
- The core count for the CPU
- The number of players online
The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.
Additionally, when the language setting is changed, information is retrieved from lang.lenis0012.com to aquire up to date translations.
Links
- v3.0.2 - Download (18 - 1.15)
- Source code (GitHub)
- https://github.com/lenis0012/LoginSecurity-2/wiki (Wiki)
- https://github.com/lenis0012/Translations/wiki/Contribute (Translation Contribution)
Donate
If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner
@Viesturs881
You have miss configured your database settings.
Are you using mysql?
@LueLusten
uhmmm.
If your server is running offline mode, use the java equivelant of UUID.nameUUIDfromString("OfflinePlayer:PLAYER_NAME".getBytes());
@lenis0012
Hey how would I create a user from php I am able to create the password find that checks out but when I create a user it does not work,
Lets say I create HelloKitty (4973c3ed-62ee-30ae-98dd-3775e5f249b6)
I can see that the other UUID's don't match user so how are these created and how do I get the plugin to see them as user, it seems it checks these ID's rather then the username so I still get please register
Dosn't work with Spigot 1.8.8 in start of server,it show's error
[21:13:02] [Server thread/ERROR]: Could not load 'plugins/LoginSecurity.jar' in folder 'plugins'
Full log file here: http://pastebin.com/9u1qWP5x
@LueLusten
we use the format of bcrypt
we use 10 log2 rounds, 10 blowfish rounds and the salt has a length of 16.
It works with any parameters tho
@LueLusten
After I looked at your source I found the one its using, so I am able to create the hash what should be supported by the plugin thanks
Hey I been able to get 2.1.5 to use mysql but I need to know what hash 7 is as I need to be able to create user registers outside of MC, I guess I can just disable or block the permissions for /register to stop a user registering via the game.
Only supported users of my site will be able to join
@MerlinK11
Pocket Edition uses a different protocol entirely, sorry :(
Hi I have a question, they could as a plugin Write what similar working here. But should the run as Server = premium entering only premium users. But it would be cool if on a normal Minecraft Server also Minecraft Pocket Edition Player Can play on a premium server only difference that premium users do not have to log in but the MCPE, players so what I need urgently. Could you develop so what ??
And sorry that was here from Google my mother translated language is German
@plachta3
The inventory issue is related to MySQL.
It should be resolved in 2.1.5 (the latest dev build)
It is untested as of right now, but the official version will be out soon.
@plachta3
Im very sorry that you are experiance these severe issues May i recommend disabling hide-inventory for the time being, i will have a fix for this issue in the next version
@CronanDrkGameYT
could you report these messages?
I put it on my server but when i do it keeps putting warn msgs in console and wont let anyone register or login.
@lenis0012
Thank you. Here's my config if needed: http://pastebin.com/NxmRyNtV I'm using MySQL for the database.
@hutt132
i will take a look at it.
Using v2.1.4 with Spigot. Getting this error whenever a player joins: http://pastebin.com/Auk97ND3
@zhongshinan
Contact me through PM :)
Hello.I come from China.I want to take this plugin to MCBBS.Can you agree with me? www.mcbbs.net
Thank you
@ServerMiner
We already use this tutorial on our page :)
I found it on youtube a while ago and really liked it.
Could you guys do one on Marriage Reloaded?
@ThisUsernameIsMine
Thanks for helping people out.
v2.1.4 has been uploaded and should resolve a lot of issues regarding the rmpass command.
We love your plugin so we decided to create a video to showcase its features!
We created a YouTube video tutorial for you, feel free to use it on your plugin info area: https://www.youtube.com/watch?v=3re8ZqjwreM