CrazyLogin
Version 7.24
Its recommended to run your server in online mode!
Minecraft is a excellent game. If you want to play it, you should buy it, like every other game you play.
Description
Adds per player passwords to your server. This will increase your server's protection against griefers and account thiefs.
Keep these two things in mind:
- The protection is only as good as your passwords.
- The server is still less secure then a server in online mode.
- My plugin is not limited to offline mode servers,
therefore you can increase security for both server types (offline and online mode servers).
- My plugin is not limited to offline mode servers,
Features
- This plugin supports two modes. Maybe-Password and Password-Only
- Maybe-Password:
The user can create a password, if he wants to
(a password is required for ops/players with permission) - Password-Only:
The user has to create a password and login.
- Maybe-Password:
- Users who aren't logged in, cannot chat, build, fight, drop items, move, teleport.
- (Optional) Ability to hide/change Join/Quit-Messages, hide players who aren't logged in.
- Multiple password Encryption algorithms
- AuthMe, xAuth support
- Integrated Config, Flat, MySQL and SQLite-Database support.
- Integrated Logging support.
- Integrated CrazyPipes support.
- Session support
- Supports single sessions
- saveLogins (teleport to spawn until login).
- If you do not logout and autoLogout is disabled, you can rejoin from the same IP.
- Permission + option to disable ingame registration.
- forceSaveLogin option to hide the players current location until login
- this fixes the issues with AntiCheat being kicked for flying due to anti move protection.
- maxRegistrationsPerIP and maxOnlinesPerIP options
- Command usage is stricktly limited, when not logged in (whitelist).
- Possibility to block guest commands, chat and join.
- Warn players with permission, if some fails to login or execute a command if he isn't allowed to.
- (Optional) Kick players who don't register, don't login, fail to login, execute a command.
- (Optional) TempBan players who don't login or fail to login.
- Adminlogin and Tokenlogin commands available
- Command to logout automatically when leaving the server
- Command to expire passwords (force players to change their passwords)
- Filter- & Sortable Accountlist
- Playerinfo (Name, IP, Connection and more)
- Ability to delete inactive accounts.
- PluginAPI available
- Client AutoLogin Plugin available (can be blocked)
Requirements
- CrazyCore (Version 10.7.7 or later)
Related Plugins
- CrazyLoginAutoLogin (Client-Plugin)
- CrazyCaptcha (Captcha)
- CrazyLoginFilter (IP/Connection Access Filter)
- CrazyLoginRank (Join Ranking)
Configuration & Options
(with description of all available options)
Commands with their Permissions
Issues ?
CommandHelper
Have a look at this CommandHelper Extension
Factions
Factions uses a very special way to execute commands, which bypasses default command protection.
Use this plugin to fix that until Faction fixed that:
CrazyLogin_FactionProtection
Convert database
You can convert your database with /crazylogin mode database <Type>".
Especially on huge flat databases this may take very long.
You can use this tool to convert your flat database to a mysql import script.
CrazyLogin_Flat_2_MySQL
(Notice: This file has NOT been reviewed by any Bukkit staff!)
Just copy this jar to your accounts.db then execute this jar.
This will create an accounts.db.sql file.
Others ?
Create a ticket or post a message!
Metrics
(Generated by MCStats.org)
Languages
- en_GB (English)
- de_DE (German - Deutsch)
- bg_BG (Bulgarian - български, thanks to LocoFreak)
- el_GR (Greek - ελληνικά, thanks to razorrazor)
- es_AR (Spanish (Argentina) - argentino, thanks to LynnJordison)
- es_ES (Spanish - Español, thanks to Sirikon, vicente947)
- fi_FI (Finnish - Suomi, thanks to suomenlippis)
- fr_FR (French - Français, thanks to FireBurst699)
- it_IT (Italian - italiano, thanks to giuditta1974)
- kr_KR (Korean - 한국어, thanks to TABtech)
- lt_LT (Lithuanian - Lietuvos, thanks to donatass162)
- nl_NL (Dutch - Nederlands, thanks to blipman17, jekeke123)
- pl_PL (Polish - polski, thanks to MegaManNT)
- pt_BR (Portuguese (Brazil) - brasileiro, thanks to bchilelli)
- ro_RO (Romanian - Romana, thanks to Cozzmy13)
- ru_RU (Russian - русский, thanks to kilolife, SannyOK)
- zh_CN (Chinese - 简体中文, thanks to cdcp998, mindcat, Liouftgoo)
- zh_TW (Traditional Chinese - 繁體中文, thanks to Chanmo)
(Please post additional translations here, so i can share them to everybody!)
Comments
-
theonemadhawk Owner
-
View User Profile
-
Send Message
Posted May 31, 2013@TheOneMadHawk
This does not work, I just want when a player joins my server and it does not account, that does not require to register and it can do everything (breaking blocks, move, talk etc. ..)
Because when i put "alwaysNeedPassword" to "False", it does not work, everyone must register for each connection, while I want it to be only those who choose to create an account.
You understand my problem ? ^^
-
View User Profile
-
Send Message
Posted May 31, 2013@Tune389
The saveLogin don't work. I spawn on join on the last psoition and after 5-10 sec i'm on the safe login zone? But in this time all can see the position from the acc.
You my have a look at this config options:
saveLoginEnabled: true <- required
forceSaveLogin: true <-required
delayPreLoginSecurity: 0 <- recommended
And how can i set the encryptor to md5 + salt for the phpbb software?
Can you please give me an example password?
If the salt and password cannot be sepearted easily (no split char '$') i need 3 passwords including their plaintext version.
Because i don't know think that the default slated md5 encryption matches the phpbb one.
I'll create a special plugin for you that will add phpbb encryption to CrazyLogin for you.
Or you can use the WebCrypt feature.
-
View User Profile
-
Send Message
Posted May 30, 2013Perfect plugin but i have a problem. The saveLogin don't work. I spawn on join on the last psoition and after 5-10 sec i'm on the safe login zone? But in this time all can see the position from the acc.
And how can i set the encryptor to md5 + salt for the phpbb software?
-
View User Profile
-
Send Message
Posted May 30, 2013@Nymphx76
This can be achieved this way:
/crazylogin mode alwaysNeedPassword False
or via config
or did you ask for something else?
-
View User Profile
-
Send Message
Posted May 30, 2013Hi !
How to ensure that players who ONLY register an account can not move, or write or use commands before login ?
Because actually, all player connected, registed or not, can not move, write etc...
-
View User Profile
-
Send Message
Posted May 24, 2013@ThisUsernameIsMine
I downloaded the new builds *wink* but it didn't change anything :(
(still showing multi-line messages on the same line with \n @ kick)
I'll have a second lokk at that.
Please send me the LocalePath of your message
CRAZYLOGIN.KICK....
I don't want to disable those requests ALL the time, but ONLY when disableRegistrations = TRUE
This is currently not possible
I would suggest switching between to language files in this case.
or you can use real high numbers here.
delayAuthRequests: 72000 < = the first message will be send after 1h
repeatAuthRequests: 200 < this is not required to be changed
autoKickUnregistered should be less than delayAuthRequests otherwise a player can see the message.
There is still the message when actions are cancelled.
-
View User Profile
-
Send Message
Posted May 24, 2013@TheOneMadHawk
I downloaded the new builds *wink* but it didn't change anything :(
(still showing multi-line messages on the same line with \n @ kick)
About the register-spam: The suggestion you made isn't what i'm looking for.
I don't want to disable those requests ALL the time, but ONLY when disableRegistrations = TRUE ;-)
-
View User Profile
-
Send Message
Posted May 24, 2013@ThisUsernameIsMine
i simply want to disable register requests completely when in-game registrations are disabled
use your custom lang files and set empty messages
Only when kicked.
I'll fix that asap.
EDIT: CrazyCore v10.6 and CrazyLogin v7.15.1 are waiting for approval
-
View User Profile
-
Send Message
Posted May 23, 2013@TheOneMadHawk
What i did so far is the following:
crazylogin mode donotspamauthrequests
22:30:36 [INFO] CrazyLogin] Mode "doNotSpamAuthRequests"="True" set
crazylogin mode donotspamregisterrequests
22:30:42 [INFO] [CrazyLogin] Mode "doNotSpamRegisterRequests"="True" set
(i simply want to disable register requests completely when in-game registrations are disabled)
If i can achieve this by using delayAuthRequests and repeatAuthRequests, please tell me which values i should use.
Only when kicked.
-
View User Profile
-
Send Message
Posted May 23, 2013@ThisUsernameIsMine
/crazylogin mode donotspamrequests doesn't seem to exist as command, but the config has it =/
Thanks for this information.
noticed another issue. When disabling in-game registrations and (auth/register)requests, they're still being broadcasted each 5 seconds, even after restarting the server.
there is a config option for that
I didn't had much time to test everything and i'm not sure for how long this issue has been around, but with CrazyCore 10.5 and CrazyLogin 7.15 the issue's still there:
does this only occur when being kicked? or ingame too?
-
View User Profile
-
Send Message
Posted May 23, 2013@TheOneMadHawk
Sorry for the late response. Was having trouble with my internet connection (amazing sluggish speed).
I didn't had much time to test everything and i'm not sure for how long this issue has been around, but with CrazyCore 10.5 and CrazyLogin 7.15 the issue's still there:
- http://i.imgur.com/iBjTXbJ.jpg
I always keep my language files up-to-date (using my own informal translation) and i could not notice anything awkward, formatting-wise.
I'm running the Beta build of Craftbukkit 1.5.2-R0.1 #2771
Edit: noticed another issue. When disabling in-game registrations and (auth/register)requests, they're still being broadcasted each 5 seconds, even after restarting the server.
hmm: /crazylogin mode donotspamrequests doesn't seem to exist as command, but the config has it =/
-
View User Profile
-
Send Message
Posted May 16, 2013@Chinchil
There is no way to instantly convert databases.
But you can use the password updater
simply type
/crazylogin mode algorithm MD5
This is enable both algorithms and all passwords will be updated on login.
If all passwords are converted (i guess after a month) you can execute the command again and only the new passwords work.
@Nightiky
Simple:
If you know how to code a webpage yes, otherwise no.
Complete:
First of all use MYSQL database connection in CrazyLogin. Use the table with the players names. (a column "password" (you can rename it) will be created, but does not contain any usefull data, although they might change from time to time).
http://dev.bukkit.org/server-mods/crazycore/pages/mys-ql/
You should use a recent CrazyCore release if you are using custom column names. (Had a bug in there)
Then use WebCrypt encryption
http://dev.bukkit.org/server-mods/crazylogin/pages/encryption/web/
<Encrypt_URL> can be a dummy page which allways returns the same text. Example "CrazyLogin" Do not use an empty file.
www.example.com/dummy.txt
<Match_URL> this part is important. Use the Player=$0$ and Password=$1$ params to send them to the web page.
This web page then should check in your database whether the password is correct.
www.example.com/weblogin.php?player=$0$&password=$1$
if the password is correct print "TRUE" (case insensitive) on that page something else otherwise.
You have to code this page!
You won't be able to change the password ingame.
If you need more help setting up CrazyLogin, just ask.
But i cannot write the web files for you. (Because i don't know how)
Your config should now look like this:
-
View User Profile
-
Send Message
Posted May 16, 2013Is there anyway to hook up CrazyLogin with Xenforo database? Problem is that Xenforo uses 2 separate tables - one for username and one for login. Also I didnt find support for Xenforo password algorithm.
Thanks!
-
View User Profile
-
Send Message
Posted May 16, 2013Hello TheOneMadHawk. im in urgent need to convert my database passwords saved in crazyhash to md5, because i need to synchronise it with some web apps, could You give some advice on how to convert these data from Your format back to good old md5?
-
View User Profile
-
Send Message
Posted May 15, 2013@Zachary_DuBois
Please send me your server log before CrazyLogin holds the server up (if possible including the crash/kill itself)
Which version ? Does this happen with a newer/older version too?
i need a copy of your config + a list of installed plugins to help you.
Sure that this is caused by CrazyLogin?
I expirienced the same issue with Playerstats (5 minutes start/shutdown time) recently.
-
View User Profile
-
Send Message
Posted May 14, 2013I have this odd problem trying to stop my server. CrazyLogin just completely holds the server up and then Multicraft force kills my server because of it.
-
View User Profile
-
Send Message
Posted May 14, 2013@Nespeck
Try this dev build with group support:
https://raw.github.com/ST-DDT/Crazy/master/CrazyLogin/CrazyLogin.jar
(I haven't tested this feature very much = Be carefull and please report any bug here)
Here the available chat params
https://github.com/ST-DDT/Crazy/blob/master/CrazyLogin/src/resource/lang/messages.lang#L3-5
@ThisUsernameIsMine
I'm confused too.
Does the server show this
MessagePartA\nPartB
instead of
MessagePartA
PartB
?
Try deleting the lang folder first.
If this does not work please test whether this affects all plugins and/or all messages.
Which server software are you using CraftBukkit/Spigot + plugin version?
-
View User Profile
-
Send Message
Posted May 14, 2013When splitting messages over multiple lines using "\n" (without the double quotes) it simply displays the newline-character in the server-response message as one line [confused]
-
View User Profile
-
Send Message
Posted May 11, 2013awesome :)
-
View User Profile
-
Send Message
Posted May 11, 2013@Nespeck
Added to ToDo list