LoginSecurity
LoginSecurity
LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.
How does it work?
Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.
Features
- Register your account optional or required (change in config)
- 5 Useful commands to mangage your password
- Advanced administrative control
- Advanced documentation via wiki
- Secure password storage using BCrypt
- Secure sessions storing to improve user experience
- Customizable time-out
- Map captcha upon registration (user friendly)
- Conversion from AuthMe and xAuth (check wiki for more info)
- Premium support through AutoIn
- Automatic update with changelog overview
- Username filtering (length and characters)
- Highly detailed configuration
- Automatically updated translation manager (user-submitted)
- Prevents being kicked by orther players loging in with your name
Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)
Commands
/lac - Admin command, rmpass and reload
/register <password> - Set your password
/login <password> - Login with your password
/changepass <old> <new> - change your password
/logout - Logout
Permissions
- loginsecurity.admin - allows admin command
- loginsecurity.update - shows update notifications
Video
Thanks to ServerMiner for making this informative tutorial
Orther tutorials: German (by MineCraftler4Live)
Planned
- Add translation interface for easier language selection
- Suggestions?
Known Bugs
- Players can mount/dismount and ride on vehicles while not logged in
Disclaimer
By default, LoginSecurity will check for updates from bukkitdev every 3 hours.
This feature can be disabled by setting "update-checker" to "false"
Anyone with the permission node ls.admin will be notified of updates, and it also able to download them via /lac update.
Which again can be disabled by disabling the update-checker
This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:
- A unique identifier
- The server's version of Java
- Whether the server is in offline or online mode
- The plugin's version
- The server's version
- The OS version/name and architecture
- The core count for the CPU
- The number of players online
The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.
Additionally, when the language setting is changed, information is retrieved from lang.lenis0012.com to aquire up to date translations.
Links
- v3.0.2 - Download (18 - 1.15)
- Source code (GitHub)
- https://github.com/lenis0012/LoginSecurity-2/wiki (Wiki)
- https://github.com/lenis0012/Translations/wiki/Contribute (Translation Contribution)
Donate
If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner
How can you change the login message? If not, can you add that as a feature?
Hello,
(1) http://lang.lenis0012.com/language/ru_ru
500 - Internal Server Error
(2) When we get the promised 2.2 without errors?.. We're waiting for 6 months already...
So, on my minecraft server, after i deleted this plugin, it still had blindness, no commands amd other things, has anyone got an idea how could i maybe fix this issue, thanks in advance
The video won't load
How can I open the .db file?
Is that where the passwords are?
In reply to DapperManatee64:
In reply to attano_corvo:
Thanks for the help!
bug
i have a server i play on but i cant know plz tell me how to fix
(example) dies on server
example closes mc
example comes back to server
cant respawn cuz need to login
can login cuz need to respawn
If a player forgot the password, how he can recover it?
You have to reset it using /lac rmpass <playername>
Hello lenis, please add "20 translations and more to come" in the features list.
Regards Tzzzt123
hola
how can i config to when i change online mode to false - premium users still not needing register or login, and recognize the old uuid generated from mojang auth server, and not a new uuid generated from the new config of server.properties in offline mode?
because my server already have a lot of premium players, to i change it to online-mode=false - they lose all homes, items, cause when they do a login, it have created a new uuid.
Muy buen plugin, lo único feo es que no tiene limite de registros por ip.
Estaría bueno que pongan para un limite de cuentas por ip, eso nos facilitaría mucho el trabajo de banear hackers y demás cosas.
Espero que tomen en cuenta mi propuesta, vi varios comentarios y todos piden esto.
A great bug (((
Let say there’s a nick «Example» and Example has logged in
If I try to login as an «examplE» — it says «The player is in game already».
Then lets Example log out.
The I try to log in with examplE one’s again. Log in! Not register!
If I put correct password — examplE logging in. But… asa a new player - without any inventory of Example.
But!..
If I try to log in as Example — it says «The player is in game already» (((
Please, fix it.
This is not a bug.
Some plugins consider players with the same name, regardless of the casing, as the same player.
LoginSecuirty does as well, to avoid issues.
LoginSecurity does NOT do the same!
See that: https://github.com/lenis0012/LoginSecurity-2/issues/85
LoginSecurity consider "John" and "john" as different players and creates the problems... (((
Shortcuts ("l" instead of "login" and "reg" instead of "register") that could be used as alternative to login/register command -- DO NOT work.
It says:
"Login failed! Invalid password.
Please log in using /login <password>."
Help please!
Hello,
It would be great if the plugin could permit to register not more than one (or 2, or 3) accounts from one IP.
Thank you!
Could you submit this as an issue on our github?