LoginSecurity

Table of Contents

LoginSecurity

LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.

How does it work?

Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.

Features

Register your account optional or required (change in config)
5 Useful commands to mangage your password
Advanced administrative control
Advanced documentation via wiki
Secure password storage using BCrypt
Secure sessions storing to improve user experience
Customizable time-out
Map captcha upon registration (user friendly)
Conversion from AuthMe and xAuth (check wiki for more info)
Premium support through AutoIn
Automatic update with changelog overview
Username filtering (length and characters)
Highly detailed configuration
Automatically updated translation manager (user-submitted)
Prevents being kicked by orther players loging in with your name

Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)

Commands

/lac - Admin command, rmpass and reload

/register <password> - Set your password

/login <password> - Login with your password

/changepass <old> <new> - change your password

/logout - Logout

Permissions

loginsecurity.admin - allows admin command
loginsecurity.update - shows update notifications

Video

Thanks to ServerMiner for making this informative tutorial
Orther tutorials: German (by MineCraftler4Live)

Planned

Add translation interface for easier language selection
Suggestions?

Known Bugs

Players can mount/dismount and ride on vehicles while not logged in

Disclaimer

By default, LoginSecurity will check for updates from bukkitdev every 3 hours.
This feature can be disabled by setting "update-checker" to "false"
Anyone with the permission node ls.admin will be notified of updates, and it also able to download them via /lac update.
Which again can be disabled by disabling the update-checker

This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:

A unique identifier
The server's version of Java
Whether the server is in offline or online mode
The plugin's version
The server's version
The OS version/name and architecture
The core count for the CPU
The number of players online

The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.
Additionally, when the language setting is changed, information is retrieved from lang.lenis0012.com to aquire up to date translations.

Donate

If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner

Comments

_ForgeUser10721967
- Join Date: 3/10/2013
- Posts: 3
- Member Details
#506 _ForgeUser10721967

View User Profile

Send Message

Posted Apr 21, 2013
i getting this error with 2.0.3 on 1.5 server: /login accepted but players kicked after 10 sec, no warning or quit reason in server.log users receving message disconnected by server login time out please update

[SEVERE] Could not pass event PlayerCommandPreprocessEvent to LoginSecurity v2.0.3 org.bukkit.event.EventException at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:427) at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62) at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.java:477) at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:462) at net.minecraft.server.v1_5_R2.PlayerConnection.handleCommand(PlayerConnection.java:958) at net.minecraft.server.v1_5_R2.PlayerConnection.chat(PlayerConnection.java:884) at net.minecraft.server.v1_5_R2.PlayerConnection.a(PlayerConnection.java:841) at net.minecraft.server.v1_5_R2.Packet3Chat.handle(Packet3Chat.java:44) at net.minecraft.server.v1_5_R2.NetworkManager.b(NetworkManager.java:292) at net.minecraft.server.v1_5_R2.PlayerConnection.d(PlayerConnection.java:110) at net.minecraft.server.v1_5_R2.ServerConnection.b(SourceFile:35) at net.minecraft.server.v1_5_R2.DedicatedServerConnection.b(SourceFile:30) at net.minecraft.server.v1_5_R2.MinecraftServer.r(MinecraftServer.java:580) at net.minecraft.server.v1_5_R2.DedicatedServer.r(DedicatedServer.java:225) at net.minecraft.server.v1_5_R2.MinecraftServer.q(MinecraftServer.java:476) at net.minecraft.server.v1_5_R2.MinecraftServer.run(MinecraftServer.java:409) at net.minecraft.server.v1_5_R2.ThreadServerApplication.run(SourceFile:573) Caused by: java.lang.NullPointerException at com.lenis0012.bukkit.ls.LoginListener.onPlayerCommandProcess(LoginListener.java:268) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:425) ... 16 more

Rollback Post to Revision RollBack
_ForgeUser9273795
- Join Date: 7/22/2012
- Posts: 1
- Member Details
#505 _ForgeUser9273795

View User Profile

Send Message

Posted Apr 18, 2013
Everytime someone logs in, they get this error message:

Files uploaded to BukkitDev should contain the version number, seperated from the name by a 'v', such as PluginName v1.0 Please notify the author (lenis0012) of this error.

Rollback Post to Revision RollBack
_ForgeUser9885184
- Join Date: 10/28/2012
- Posts: 76
- Member Details
#504 _ForgeUser9885184

View User Profile

Send Message

Posted Apr 16, 2013
how to reset the password from a other player? (for admin)

Rollback Post to Revision RollBack
lenis0012
- Location: Krimpen
- Join Date: 2/11/2012
- Posts: 1,354
- Member Details
#503 lenis0012

View User Profile

Send Message

Posted Apr 14, 2013
@TanveerGT5

It has.
in LoginSecurity 2.0.3 you cnan set the encryption to PHPBB3

@w3thax

Ill fix hat soon asap

Rollback Post to Revision RollBack

_ForgeUser9728636

Join Date: 10/2/2012
Posts: 15
Member Details

#502 Posted Apr 14, 2013

I'm getting this and more similiar errors on 1.4.7 Spigot with LoginSecurity 2.0.3:

2013-04-14 20:25:54 [WARNING] [LoginSecurity] Could not get data from SQLite: [SQLITE_ERROR] SQL error or missing database (no such table: ls_lastlogin)
2013-04-14 20:25:54 [WARNING] [LoginSecurity] Could not set data to SQL manager: [SQLITE_ERROR] SQL error or missing database (no such table: ls_lastlogin)
2013-04-14 20:25:54 [SEVERE] java.sql.SQLException: [SQLITE_ERROR] SQL error or missing database (no such table: ls_lastlogin)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.DB.newSQLException(DB.java:383)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.DB.newSQLException(DB.java:387)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.DB.throwex(DB.java:374)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.NativeDB.prepare(Native Method)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.DB.prepare(DB.java:123)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.PrepStmt.<init>(PrepStmt.java:42)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.Conn.prepareStatement(Conn.java:404)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.Conn.prepareStatement(Conn.java:399)
2013-04-14 20:25:54 [SEVERE] 	at org.sqlite.Conn.prepareStatement(Conn.java:383)
2013-04-14 20:25:54 [SEVERE] 	at com.lenis0012.bukkit.ls.data.ValueType.insert(ValueType.java:26)
2013-04-14 20:25:54 [SEVERE] 	at com.lenis0012.bukkit.ls.data.SQLite.setValue(SQLite.java:115)
2013-04-14 20:25:54 [SEVERE] 	at com.lenis0012.bukkit.ls.LoginListener.onPlayerQuit(LoginListener.java:107)
2013-04-14 20:25:54 [SEVERE] 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
2013-04-14 20:25:54 [SEVERE] 	at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
2013-04-14 20:25:54 [SEVERE] 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
2013-04-14 20:25:54 [SEVERE] 	at java.lang.reflect.Method.invoke(Unknown Source)
2013-04-14 20:25:54 [SEVERE] 	at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:425)
2013-04-14 20:25:54 [SEVERE] 	at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62)
2013-04-14 20:25:54 [SEVERE] 	at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.java:479)
2013-04-14 20:25:54 [SEVERE] 	at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:464)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.PlayerList.disconnect(PlayerList.java:209)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.PlayerConnection.a(PlayerConnection.java:719)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.NetworkManager.b(NetworkManager.java:295)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.PlayerConnection.d(PlayerConnection.java:115)
2013-04-14 20:25:54 [SEVERE] 	at org.getspout.spout.SpoutPlayerConnection.d(SpoutPlayerConnection.java:196)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.ServerConnection.b(SourceFile:39)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.DedicatedServerConnection.b(SourceFile:30)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.MinecraftServer.r(MinecraftServer.java:589)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.DedicatedServer.r(DedicatedServer.java:224)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.MinecraftServer.q(MinecraftServer.java:485)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.MinecraftServer.run(MinecraftServer.java:420)
2013-04-14 20:25:54 [SEVERE] 	at net.minecraft.server.v1_4_R1.ThreadServerApplication.run(SourceFile:849)
2013-04-14 20:25:54 [WARNING] [LoginSecurity] Could not get data from SQLite: [SQLITE_ERROR] SQL error or missing database (no such table: ls_accounts)

I have already tried to remove the whole "LoginSecurity" folder, but it didn't help. Any ideas?

_ForgeUser7341463
- Join Date: 8/7/2011
- Posts: 442
- Member Details
#501 _ForgeUser7341463

View User Profile

Send Message

Posted Apr 14, 2013
Should have PHPBB Support when it comes to MySQL.

Rollback Post to Revision RollBack
_ForgeUser10967131
- Join Date: 4/14/2013
- Posts: 1
- Member Details
#500 _ForgeUser10967131

View User Profile

Send Message

Posted Apr 14, 2013
Please update to 1.5.1 i need the plugin now

Rollback Post to Revision RollBack
lenis0012
- Location: Krimpen
- Join Date: 2/11/2012
- Posts: 1,354
- Member Details
#499 lenis0012

View User Profile

Send Message

Posted Apr 13, 2013
@utilityscarab

@waterbucket123

I haven't been doing verry well on recent updates. Ill release a massive bugfix soon

Rollback Post to Revision RollBack
_ForgeUser10782941
- Join Date: 3/19/2013
- Posts: 34
- Member Details
#498 _ForgeUser10782941

View User Profile

Send Message

Posted Apr 11, 2013
2013-04-12 02:02:22 [SEVERE] Could not pass event PlayerCommandPreprocessEvent to LoginSecurity v2.0.3 org.bukkit.event.EventException at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:427) at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62) at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.java:477) at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:462) at net.minecraft.server.v1_5_R2.PlayerConnection.handleCommand(PlayerConnection.java:958) at net.minecraft.server.v1_5_R2.PlayerConnection.chat(PlayerConnection.java:884) at net.minecraft.server.v1_5_R2.PlayerConnection.a(PlayerConnection.java:841) at net.minecraft.server.v1_5_R2.Packet3Chat.handle(Packet3Chat.java:44) at net.minecraft.server.v1_5_R2.NetworkManager.b(NetworkManager.java:292) at net.minecraft.server.v1_5_R2.PlayerConnection.d(PlayerConnection.java:110) at net.minecraft.server.v1_5_R2.ServerConnection.b(SourceFile:35) at net.minecraft.server.v1_5_R2.DedicatedServerConnection.b(SourceFile:30) at net.minecraft.server.v1_5_R2.MinecraftServer.r(MinecraftServer.java:578) at net.minecraft.server.v1_5_R2.DedicatedServer.r(DedicatedServer.java:225) at net.minecraft.server.v1_5_R2.MinecraftServer.q(MinecraftServer.java:474) at net.minecraft.server.v1_5_R2.MinecraftServer.run(MinecraftServer.java:407) at net.minecraft.server.v1_5_R2.ThreadServerApplication.run(SourceFile:573) Caused by: java.lang.NullPointerException at com.lenis0012.bukkit.ls.LoginListener.onPlayerCommandProcess(LoginListener.java:268) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:601) at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:425) ... 16 more

Rollback Post to Revision RollBack
_ForgeUser10782941
- Join Date: 3/19/2013
- Posts: 34
- Member Details
#497 _ForgeUser10782941

View User Profile

Send Message

Posted Apr 11, 2013
When I updated the plugin to 1.5.0 I keep getting login time out..

Rollback Post to Revision RollBack
_ForgeUser8083764
- Join Date: 12/15/2011
- Posts: 59
- Member Details
#496 _ForgeUser8083764

View User Profile

Send Message

Posted Apr 11, 2013
@pkminer

(FYI, i'm not the author of this plugin, but i'm using it :) ) Whenever my Server got a downtime, (its my technique) I'm renaming the serverlog to server.log_2 (or _3 etc.) so there are multiple ones (which i move to another folder) which arent so big, but nice to look in.

In my opinion this /getpass thingy is very insecure if someone abuses the rights to use it, or if it bugs or something

Rollback Post to Revision RollBack
_ForgeUser10654179
- Join Date: 3/1/2013
- Posts: 1
- Member Details
#495 _ForgeUser10654179

View User Profile

Send Message

Posted Apr 10, 2013
@abdul3641

I have the same problem, someone did even grief the server with this bug. He also used it to ruin other accounts. I had to use my backup so the server had a 'reset' from 4h. It's annoying for the members and especially for me as operator. It would be very nice if this is gonna be fixed.

Last edited by _ForgeUser10654179: Apr 10, 2013

Rollback Post to Revision RollBack
_ForgeUser10886742
- Join Date: 4/2/2013
- Posts: 1
- Member Details
#494 _ForgeUser10886742

View User Profile

Send Message

Posted Apr 8, 2013
19:56:00 [WARNING] The author of this plugin has misconfigured their Auto Update system 19:56:00 [WARNING] Files uploaded to BukkitDev should contain the version number , seperated from the name by a 'v', such as PluginName v1.0 19:56:00 [WARNING] Please notify the author (lenis0012) of this error.

The console constantly spits out this error, it seems as if the auto update system is broken, and you misconfigured the version number. This error seems to be causing a lot of stress too, causing EndOfStream errors that disconnect the server. I am using the latest version of the plugin (v2.0.3)
Rollback Post to Revision RollBack
_ForgeUser8707654
- Join Date: 4/7/2012
- Posts: 296
- Member Details
#493 _ForgeUser8707654

View User Profile

Send Message

Posted Apr 8, 2013
Could you make a converter for passwords,to convert from AuthMe Reloaded to this plugin

Rollback Post to Revision RollBack
_ForgeUser10290139
- Join Date: 12/29/2012
- Posts: 30
- Member Details
#492 _ForgeUser10290139

View User Profile

Send Message

Posted Apr 7, 2013
@ConnectCraft

Only problem, I have to download it each time, and it becomes bigger and bigger.

Seperate daily logs don't show /login for some reason

Rollback Post to Revision RollBack
_ForgeUser8083764
- Join Date: 12/15/2011
- Posts: 59
- Member Details
#491 _ForgeUser8083764

View User Profile

Send Message

Posted Apr 6, 2013
@pkminer

just look in the server.log, and search for /login, the passwords are displayed there i think

Rollback Post to Revision RollBack
_ForgeUser10290139
- Join Date: 12/29/2012
- Posts: 30
- Member Details
#490 _ForgeUser10290139

View User Profile

Send Message

Posted Apr 5, 2013
I HAVE A SUGGESTION.

Implement a special permission that allows the use of:

/getpass <name>

Makes it much easier for owners to get their players passwords.

Rollback Post to Revision RollBack
_ForgeUser8800220
- Join Date: 4/25/2012
- Posts: 1
- Member Details
#489 _ForgeUser8800220

View User Profile

Send Message

Posted Apr 4, 2013
I do have a Suggestion: I don't know if this is possible, but I thought I read somewhere that the Plugin is able to check a user's authenticity. If that is true then adding support to your plugin where if the person is playing on a premium account, they don't have to login... (It would be amazing for my Server)

Rollback Post to Revision RollBack
_ForgeUser9715468
- Join Date: 9/30/2012
- Posts: 6
- Member Details
#488 _ForgeUser9715468

View User Profile

Send Message

Posted Apr 4, 2013
When running I get the following error:

04.04 18:59:53 [Server] WARNING Please notify the author (lenis0012) of this error. 04.04 18:59:53 [Server] WARNING Files uploaded to BukkitDev should contain the version number, seperated from the name by a 'v', such as PluginName v1.0 04.04 18:59:53 [Server] WARNING The author of this plugin has misconfigured their Auto Update system

Rollback Post to Revision RollBack
lenis0012
- Location: Krimpen
- Join Date: 2/11/2012
- Posts: 1,354
- Member Details
#487 lenis0012

View User Profile

Send Message

Posted Apr 3, 2013
@Desijay

Use v1.6.10 for now

Rollback Post to Revision RollBack
To post a comment, please login or register a new account.

Project ID

41702
Created

Jul 7, 2012
Last Released File

Aug 17, 2023
Total Downloads

1,054,484
License

GNU General Public License ver...

Bukkit

LoginSecurity

Bukkit Plugins

LoginSecurity

Table of Contents

LoginSecurity

LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.

How does it work?

Features

Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)

Commands

/lac - Admin command, rmpass and reload

/register <password> - Set your password

/login <password> - Login with your password

/changepass <old> <new> - change your password

/logout - Logout

Permissions

Video

Planned

Known Bugs

Disclaimer

Links

Donate

Comments

About This Project

Categories

Members

Recent Files

Bukkit