LoginSecurity
LoginSecurity
LoginSecurity is a lightweight password authorization plugin. You can optionally set a password each time you enter the server, adding a double layer of security to your account. The password is stored inside the configuration file, nobody else except the server owner can access or modify it.
How does it work?
Install the pluign to your /plugins/ directory, then start your server.
Type /register <password>, your account is now locked with a password.
For each time you login, make sure to use /login <password>.
Features
- Register your account optional or required (change in config)
- 5 Useful commands to mangage your password
- Advanced administrative control
- Advanced documentation via wiki
- Secure password storage using BCrypt
- Secure sessions storing to improve user experience
- Customizable time-out
- Map captcha upon registration (user friendly)
- Conversion from AuthMe and xAuth (check wiki for more info)
- Premium support through AutoIn
- Automatic update with changelog overview
- Username filtering (length and characters)
- Highly detailed configuration
- Automatically updated translation manager (user-submitted)
- Prevents being kicked by orther players loging in with your name
Session login allows the user to log in right after they logged out and not have to type in their password again. (1 minute time limit of being logged out, stores IP during that time to keep everything safe)
Commands
/lac - Admin command, rmpass and reload
/register <password> - Set your password
/login <password> - Login with your password
/changepass <old> <new> - change your password
/logout - Logout
Permissions
- loginsecurity.admin - allows admin command
- loginsecurity.update - shows update notifications
Video
Thanks to ServerMiner for making this informative tutorial
Orther tutorials: German (by MineCraftler4Live)
Planned
- Add translation interface for easier language selection
- Suggestions?
Known Bugs
- Players can mount/dismount and ride on vehicles while not logged in
Disclaimer
By default, LoginSecurity will check for updates from bukkitdev every 3 hours.
This feature can be disabled by setting "update-checker" to "false"
Anyone with the permission node ls.admin will be notified of updates, and it also able to download them via /lac update.
Which again can be disabled by disabling the update-checker
This plugin utilises Hidendra's plugin metrics system, which means that the following information is collected and sent to mcstats.org:
- A unique identifier
- The server's version of Java
- Whether the server is in offline or online mode
- The plugin's version
- The server's version
- The OS version/name and architecture
- The core count for the CPU
- The number of players online
The Metrics version Opting out of this service can be done by editing plugins/Plugin Metrics/config.yml and changing opt-out to true.
Additionally, when the language setting is changed, information is retrieved from lang.lenis0012.com to aquire up to date translations.
Links
- v3.0.2 - Download (18 - 1.15)
- Source code (GitHub)
- https://github.com/lenis0012/LoginSecurity-2/wiki (Wiki)
- https://github.com/lenis0012/Translations/wiki/Contribute (Translation Contribution)
Donate
If you want to support me working on this project, please donate.
It helps me alot to keep my projects up.
Donate at the top right corner
Comments
-
lenis0012 Owner
-
View User Profile
-
Send Message
Posted May 14, 2020[Server thread/WARN]: /tmp/sqlite-3.30.1-c89ec8df-1845-4aab-b66f-dff46682b152-libsqlitejdbc.so.lck (No such file or directory)
How fix?
-
View User Profile
-
Send Message
Posted Apr 27, 2020Hey guys, I don't read comments on dev.bukkit.org very often, if you encounter any bugs. Please report them at https://github.com/lenis0012/LoginSecurity-2/issues
The dev.bukkit.org version has been outdated for a while, I just uploaded a new version, but it has not yet been approved. It should be on here soon.
Have a good day everyone
-
View User Profile
-
Send Message
Posted Mar 9, 2020One of the players of my server found a really huge exploit, my english is bad so ill try to explain it
First, you need to die.
Then, after you die, dont click "respawn" instead click"Title screen"
Then wait 60s to reconnect to the server
Now, when you access the server, click on "Respawn"
And now log in
You WILL be teleported where you died instead of your respawn point
idk if i have a wrong configuration or something but i don't know how to fix this
-
View User Profile
-
Send Message
Posted Apr 27, 2020In reply to Cyberyisus:
Fixed in 3.0.2
-
View User Profile
-
Send Message
Posted Mar 4, 2020Hey, Working well with MInecraft 1.14.4 with just craftbukkit. :D Great plugin so far man :D
-
View User Profile
-
Send Message
Posted Jan 14, 2020I have MySql Player Data Bridge installed, and LoginSecurity does not hide my inventory since the above mentioned add-in returns the items upon entering the server. What I can do?
-
View User Profile
-
Send Message
Posted Jan 11, 2020Hi,
The "session-timeout" parameter, when setting its value to -1, the plugin stops working completely.
I set its value to 0, so that the players session will not be open.
It works fine, in Minecraft 1.14.4 PaperSpigot
-
View User Profile
-
Send Message
Posted Dec 2, 2019how can i see the passwords of my server players?
-
View User Profile
-
Send Message
Posted Sep 10, 2019Problem found:
You can't write your password while being in a Nether portal.
-
View User Profile
-
Send Message
Posted Sep 5, 2019My problem is:
I recently got this error:
WARN: Establishing SSL connection without server's identity verificat ion is not recommended. According to MySQL 5.5.45+, 5.6.26+ and 5.7.6+ requirements SSL connection must be established by default if explicit option isn't set. For compliance with existing applications not using SSL the verifyServerCertificate property is set to 'false'. You need either to explicitly disable SSL by setting useSSL=false, or set useSSL=true and provide truststore for server certificate verification.
Those error always comes in a few minutes. Any info about how to Disble SSL? Reply me, thank you.
-
View User Profile
-
Send Message
Posted Aug 31, 2019how do i access the passwords as the server owner?
-
View User Profile
-
Send Message
Posted Aug 31, 2019How can I change the language?
-
View User Profile
-
Send Message
Posted Aug 28, 2019good plugin but only one think
change the /register <password> to /register <password> <password>
so if someone register with a issue in password he would correct it :)
-
View User Profile
-
Send Message
Posted May 3, 2019Hi guys, I just released an update with support for 1.8-1.14.
I do not check the comments very frequently though, so please report any bugs to https://github.com/lenis0012/LoginSecurity-2/issues
-
View User Profile
-
Send Message
Posted Jan 13, 20191.12 Please
-
View User Profile
-
Send Message
Posted Jan 5, 2019i pray the developer updates this plugin soon <3
i really love this plugin and it has really helped my server.
[this feature dosent work anymore] [at least for me]
location: The location mode allows you to spawn the player in a different location when they log in.
Once the player is logged in, they will be teleported back to where they originally were.
if u set the location to spawn,players are not teleported back to where they previously loged off after loging in. spammers and hackers and just assholes are using this to login to other peoples accounts to find out where thier base it so grief and its fustrating the hell out of me,please developer. :)
-
View User Profile
-
Send Message
Posted Dec 31, 2018Hello I saw an error, please help me
[21:02:00 ERROR]: Could not pass event PlayerJoinEvent to LoginSecurity v2.1.7
org.bukkit.event.EventException: null
at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.ja
va:298) ~[craftbukkit.jar:git-Bukkit-809c399]
at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.jav
a:62) ~[craftbukkit.jar:git-Bukkit-809c399]
at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.j
ava:499) [craftbukkit.jar:git-Bukkit-809c399]
at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.j
ava:484) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.PlayerList.onPlayerJoin(PlayerList.java
:330) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.PlayerList.a(PlayerList.java:151) [craf
tbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.LoginListener.b(LoginListener.java:131)
[craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.LoginListener.e(LoginListener.java:57)
[craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.NetworkManager.a(NetworkManager.java:22
4) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.ServerConnection.c(SourceFile:187) [cra
ftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.MinecraftServer.D(MinecraftServer.java:
768) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.DedicatedServer.D(DedicatedServer.java:
371) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.MinecraftServer.C(MinecraftServer.java:
651) [craftbukkit.jar:git-Bukkit-809c399]
at net.minecraft.server.v1_12_R1.MinecraftServer.run(MinecraftServer.jav
a:555) [craftbukkit.jar:git-Bukkit-809c399]
at java.lang.Thread.run(Unknown Source) [?:?]
Caused by: java.lang.NoClassDefFoundError: javax/xml/bind/DatatypeConverter
at com.lenis0012.bukkit.loginsecurity.util.InventorySerializer.serialize
(InventorySerializer.java:45) ~[?:?]
at com.lenis0012.bukkit.loginsecurity.util.InventorySerializer.serialize
Inventory(InventorySerializer.java:22) ~[?:?]
at com.lenis0012.bukkit.loginsecurity.modules.general.PlayerListener.onP
layerJoin(PlayerListener.java:127) ~[?:?]
at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
~[?:?]
at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
~[?:?]
at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Sour
ce) ~[?:?]
at java.lang.reflect.Method.invoke(Unknown Source) ~[?:?]
at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.ja
va:296) ~[craftbukkit.jar:git-Bukkit-809c399]
... 14 more
-
View User Profile
-
Send Message
Posted Dec 23, 2018Very good the plugin, I am using it in the version PT_BR! But, I missed something when using it ... Could you put something in the next version? For people using minecraft Premium (paid version) do not need to register, and those who do not pay, have to register!
-
View User Profile
-
Send Message
Posted Jul 10, 2018Everytime a user login using LoginSecurity i get the following message shown in my terminal. Maybe someone can tell me what's the cause of this issue it bloats the log file and makes server messages hard to read.
As described by the error message I'm running a Spigot Server for 1.12 on the newest stable version of the plugin.
[15:25:11 ERROR]: Could not pass event PlayerJoinEvent to LoginSecurity v2.1.7
org.bukkit.event.EventException: null
at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:306) ~[spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62) ~[spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at org.bukkit.plugin.SimplePluginManager.fireEvent(SimplePluginManager.java:500) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:485) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.PlayerList.onPlayerJoin(PlayerList.java:346) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.PlayerList.a(PlayerList.java:166) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.LoginListener.b(LoginListener.java:159) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.LoginListener.e(LoginListener.java:57) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.NetworkManager.a(NetworkManager.java:233) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.ServerConnection.c(ServerConnection.java:140) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.MinecraftServer.D(MinecraftServer.java:845) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.DedicatedServer.D(DedicatedServer.java:406) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.MinecraftServer.C(MinecraftServer.java:679) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at net.minecraft.server.v1_12_R1.MinecraftServer.run(MinecraftServer.java:577) [spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
at java.lang.Thread.run(Unknown Source) [?:?]
Caused by: java.lang.NoClassDefFoundError: javax/xml/bind/DatatypeConverter
at com.lenis0012.bukkit.loginsecurity.util.InventorySerializer.serialize(InventorySerializer.java:45) ~[?:?]
at com.lenis0012.bukkit.loginsecurity.util.InventorySerializer.serializeInventory(InventorySerializer.java:26) ~[?:?]
at com.lenis0012.bukkit.loginsecurity.modules.general.PlayerListener.onPlayerJoin(PlayerListener.java:127) ~[?:?]
at jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:?]
at jdk.internal.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) ~[?:?]
at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) ~[?:?]
at java.lang.reflect.Method.invoke(Unknown Source) ~[?:?]
at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:302) ~[spigot-1.12.2.jar:git-Spigot-642f6d2-ab13683]
... 14 more
-
View User Profile
-
Send Message
Posted Apr 9, 2018How do i make it so when a user disconnects from my server, they are auto logged out and have to log back in when they join again? New to the whole bukkit/spigot set up and am needing to start asking questions haha. Using this plug-in and love it so far, just noticed this problem today while fidgeting around.