LoginSecurity
LoginSecurity
LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.
How does it work?
Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.
Features
- Register your account optional or required (change in config)
- 5 Useful commands to mangage your password
- Advanced administrative control
- Advanced documentation via wiki
- Secure password storage using BCrypt
- Secure sessions storing to improve user experience
- Customizable time-out
- Map captcha upon registration (user friendly)
- Conversion from AuthMe and xAuth (check wiki for more info)
- Premium support through AutoIn
- Automatic update with changelog overview
- Username filtering (length and characters)
- Highly detailed configuration
- Automatically updated translation manager (user-submitted)
- Prevents being kicked by orther players loging in with your name
Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)
Commands
/lac - Admin command, rmpass and reload
/register <password> - Set your password
/login <password> - Login with your password
/changepass <old> <new> - change your password
/logout - Logout
Permissions
- loginsecurity.admin - allows admin command
- loginsecurity.update - shows update notifications
Video
Thanks to ServerMiner for making this informative tutorial
Orther tutorials: German (by MineCraftler4Live)
Planned
- Add translation interface for easier language selection
- Suggestions?
Known Bugs
- Players can mount/dismount and ride on vehicles while not logged in
Disclaimer
By default, LoginSecurity will check for updates from bukkitdev every 3 hours.
This feature can be disabled by setting "update-checker" to "false"
Anyone with the permission node ls.admin will be notified of updates, and it also able to download them via /lac update.
Which again can be disabled by disabling the update-checker
This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:
- A unique identifier
- The server's version of Java
- Whether the server is in offline or online mode
- The plugin's version
- The server's version
- The OS version/name and architecture
- The core count for the CPU
- The number of players online
The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.
Additionally, when the language setting is changed, information is retrieved from lang.lenis0012.com to aquire up to date translations.
Links
- v3.0.2 - Download (18 - 1.15)
- Source code (GitHub)
- https://github.com/lenis0012/LoginSecurity-2/wiki (Wiki)
- https://github.com/lenis0012/Translations/wiki/Contribute (Translation Contribution)
Donate
If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner
Comments
-
lenis0012 Owner
-
View User Profile
-
Send Message
Posted Apr 3, 2013Can't I need help with the login and register plugin for my players to register
I tried to use AUTHME plugin XAUTH plugin and LOGIN SECURITY plugin
they don't work but they are running completely and installed completely after I logged out and login again it won't say that i need to login or register
even login security plugin is use by other servers we need to register first
but when im installing it completely it won't run on the server
please i need to solve this problem
-
View User Profile
-
Send Message
Posted Apr 1, 2013people can login to ur account...and invite and disband factions without typing the password! i got 5 dollars for the First person to fix this within a day please.
example: open minecraft. Type Char name "Notch" [ as example ] without typing password...u type the following f invite, f disband, etc etc no forward slash.
-
View User Profile
-
Send Message
Posted Mar 31, 2013Hi, there is a bug: some players can build and move bofore they are logged in
-
View User Profile
-
Send Message
Posted Mar 31, 2013Hi, is it possible to convert the Authme database to a LoginSecurity database?
-
View User Profile
-
Send Message
Posted Mar 30, 2013Hi. :) I updated to the most current version, hoping it was faster - but it failed. People could play with logging in. :( I hope this fixed soon.
-
View User Profile
-
Send Message
Posted Mar 30, 2013Hi when I log on its says to register and I do then when I leave and come back again its says to re register what do I do
-
View User Profile
-
Send Message
Posted Mar 27, 2013Get this error when loging in
2013-03-28 01:40:37 [SEVERE] Could not pass event PlayerCommandPreprocessEvent to LoginSecurity v2.0.3 org.bukkit.event.EventException at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:427) at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62) at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.java:477) at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:462) at net.minecraft.server.v1_5_R2.PlayerConnection.handleCommand(PlayerConnection.java:958) at net.minecraft.server.v1_5_R2.PlayerConnection.chat(PlayerConnection.java:884) at net.minecraft.server.v1_5_R2.PlayerConnection.a(PlayerConnection.java:841) at net.minecraft.server.v1_5_R2.Packet3Chat.handle(Packet3Chat.java:44) at net.minecraft.server.v1_5_R2.NetworkManager.b(NetworkManager.java:292) at net.minecraft.server.v1_5_R2.PlayerConnection.d(PlayerConnection.java:110) at net.minecraft.server.v1_5_R2.ServerConnection.b(SourceFile:35) at net.minecraft.server.v1_5_R2.DedicatedServerConnection.b(SourceFile:30) at net.minecraft.server.v1_5_R2.MinecraftServer.r(MinecraftServer.java:578) at net.minecraft.server.v1_5_R2.DedicatedServer.r(DedicatedServer.java:225) at net.minecraft.server.v1_5_R2.MinecraftServer.q(MinecraftServer.java:474) at net.minecraft.server.v1_5_R2.MinecraftServer.run(MinecraftServer.java:407) at net.minecraft.server.v1_5_R2.ThreadServerApplication.run(SourceFile:573) Caused by: java.lang.NullPointerException at com.lenis0012.bukkit.ls.LoginListener.onPlayerCommandProcess(LoginListener.java:268) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:601) at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:425) ... 16 more
-
View User Profile
-
Send Message
Posted Mar 27, 2013Please update file: com.lenis0012.bukkit.ls.LoginListener.java line: 268 from <<< CommandExecutor ex = plugin.commandMap.get(cmd); to
CommandExecutor ex = plugin.commandMap.get(data[0].substring(1));
-
View User Profile
-
Send Message
Posted Mar 27, 2013Hi, there is a bug when you login in with any name of admins or members with the same name (different ip) it will say register and you will be the same player for example: lets say my minecraft account name is '' a '' and I am op the bug : any one will enter the server and his nick '' A '' the plugin will let him register as new player but the server still make him op
and of course you will say don't make a cracked server but every one i know him has cracked minecraft :(
i wish if you can fix this ( only if u make the plugin see all letters the same ''A=a'' i will be glad to you )
and i'm sorry because my English is bad :(
and thanks.
-
View User Profile
-
Send Message
Posted Mar 27, 2013Hello Lenis0012,
I have send you a PM regarding a major bug/exploit in this plugin, please PM me back.
Thank you.
-
View User Profile
-
Send Message
Posted Dec 1, 2016Please update to the latest version
-
View User Profile
-
Send Message
Posted Mar 26, 2013@Scorpion_vn
dont work for me ;(
-
View User Profile
-
Send Message
Posted Mar 26, 2013@Studdly1
my to
@Scorpion_vn
i will try it thx
-
View User Profile
-
Send Message
Posted Mar 26, 2013Folks, user versions 1.6.10 - works great with 1.5.0 Plus it supports language file.
Version 2.0 is under heavy development :-/
-
View User Profile
-
Send Message
Posted Mar 26, 2013@Studdly1
I get the same message.
-
View User Profile
-
Send Message
Posted Mar 26, 2013-
View User Profile
-
Send Message
Posted Mar 26, 2013never mind I opened the YML file with notepad and disabled the "timeout" ...setting or whatever it is lol
-
View User Profile
-
Send Message
Posted Mar 26, 2013I'm having weird problems with this plugin...the password login and all works, good security but whenever I log in it says successful login, the a minute later, it kicks me off and says login timeout. and I logged in! successful login too! this is the only plugin that got CLOSE to working for me so I really need a solution. plz help Iv'e reacently been hacked harder than you could ever imagine my comp was running at 1 frame per MINUTE Nazi signs everywhere, millions of animals, tons of lava and water everywhere...it was horrable and just because my server account had no password (before I installed this plugin) but it wont let me stay logged in...HELP thnx
-
View User Profile
-
Send Message
Posted Mar 25, 2013Will you consider putting an ip thing like iplock so that certain ip adreses can be saved. I love this plugin but I really want that feature. IPlock is always outdated
-
View User Profile
-
Send Message
Posted Mar 25, 2013@lenis0012 As i said if your username is an op. You can type all commands you want and they work BEFORE THE ADMIN actually logged in.
So can do whatever with your server. And this is a huge bug in this plugin. We need an update.