2016-10-23 18:29:00 +02:00
<!-- AUTO - GENERATED FILE! Do not edit this directly -->
2019-01-29 00:00:38 +01:00
<!-- File auto - generated on Mon Jan 28 23:57:12 CET 2019. See docs/config/config.tpl.md -->
2016-10-23 18:29:00 +02:00
## AuthMe Configuration
2017-11-28 12:57:39 +01:00
The first time you run AuthMe it will create a config.yml file in the plugins/AuthMe folder,
2016-10-23 18:29:00 +02:00
with which you can configure various settings. This following is the initial contents of
the generated config.yml file.
```yml
DataSource:
# What type of database do you want to use?
2019-01-29 00:00:38 +01:00
# Valid values: SQLITE, MYSQL, POSTGRESQL
backend: SQLITE
2017-10-09 10:19:27 +02:00
# Enable the database caching system, should be disabled on bungeecord environments
# or when a website integration is being used.
2016-10-23 18:29:00 +02:00
caching: true
# Database host address
2019-01-29 00:00:38 +01:00
mySQLHost: 127.0.0.1
2016-10-23 18:29:00 +02:00
# Database port
mySQLPort: '3306'
2017-02-05 13:48:24 +01:00
# Connect to MySQL database over SSL
mySQLUseSSL: true
# Username to connect to the MySQL database
2019-01-29 00:00:38 +01:00
mySQLUsername: authme
2017-02-05 13:48:24 +01:00
# Password to connect to the MySQL database
2016-10-23 18:29:00 +02:00
mySQLPassword: '12345'
# Database Name, use with converters or as SQLITE database name
2019-01-29 00:00:38 +01:00
mySQLDatabase: authme
2016-10-23 18:29:00 +02:00
# Table of the database
2019-01-29 00:00:38 +01:00
mySQLTablename: authme
2016-10-23 18:29:00 +02:00
# Column of IDs to sort data
2019-01-29 00:00:38 +01:00
mySQLColumnId: id
2016-10-23 18:29:00 +02:00
# Column for storing or checking players nickname
2019-01-29 00:00:38 +01:00
mySQLColumnName: username
2016-10-23 18:29:00 +02:00
# Column for storing or checking players RealName
2019-01-29 00:00:38 +01:00
mySQLRealName: realname
2016-10-23 18:29:00 +02:00
# Column for storing players passwords
2019-01-29 00:00:38 +01:00
mySQLColumnPassword: password
2018-05-21 09:10:27 +02:00
# Column for storing players passwords salts
mySQLColumnSalt: ''
2016-10-23 18:29:00 +02:00
# Column for storing players emails
2019-01-29 00:00:38 +01:00
mySQLColumnEmail: email
2016-10-23 18:29:00 +02:00
# Column for storing if a player is logged in or not
2019-01-29 00:00:38 +01:00
mySQLColumnLogged: isLogged
2017-10-15 18:32:51 +02:00
# Column for storing if a player has a valid session or not
2019-01-29 00:00:38 +01:00
mySQLColumnHasSession: hasSession
2018-04-22 11:13:27 +02:00
# Column for storing a player's TOTP key (for two-factor authentication)
2019-01-29 00:00:38 +01:00
mySQLtotpKey: totp
2017-10-28 12:23:14 +02:00
# Column for storing the player's last IP
2019-01-29 00:00:38 +01:00
mySQLColumnIp: ip
2016-10-23 18:29:00 +02:00
# Column for storing players lastlogins
2019-01-29 00:00:38 +01:00
mySQLColumnLastLogin: lastlogin
2017-10-28 12:23:14 +02:00
# Column storing the registration date
2019-01-29 00:00:38 +01:00
mySQLColumnRegisterDate: regdate
2017-10-28 12:23:14 +02:00
# Column for storing the IP address at the time of registration
2019-01-29 00:00:38 +01:00
mySQLColumnRegisterIp: regip
2016-10-23 18:29:00 +02:00
# Column for storing player LastLocation - X
2019-01-29 00:00:38 +01:00
mySQLlastlocX: x
2016-10-23 18:29:00 +02:00
# Column for storing player LastLocation - Y
2019-01-29 00:00:38 +01:00
mySQLlastlocY: y
2016-10-23 18:29:00 +02:00
# Column for storing player LastLocation - Z
2019-01-29 00:00:38 +01:00
mySQLlastlocZ: z
2016-10-23 18:29:00 +02:00
# Column for storing player LastLocation - World Name
2019-01-29 00:00:38 +01:00
mySQLlastlocWorld: world
2017-04-29 18:31:37 +02:00
# Column for storing player LastLocation - Yaw
2019-01-29 00:00:38 +01:00
mySQLlastlocYaw: yaw
2017-04-29 18:31:37 +02:00
# Column for storing player LastLocation - Pitch
2019-01-29 00:00:38 +01:00
mySQLlastlocPitch: pitch
2017-12-13 23:13:28 +01:00
# Overrides the size of the DB Connection Pool, default = 10
poolSize: 10
2017-07-12 02:21:05 +02:00
# The maximum lifetime of a connection in the pool, default = 1800 seconds
# You should set this at least 30 seconds less than mysql server wait_timeout
maxLifetime: 1800
2016-10-23 18:29:00 +02:00
ExternalBoardOptions:
# Column for storing players groups
mySQLColumnGroup: ''
# -1 means disabled. If you want that only activated players
# can log into your server, you can set here the group number
# of unactivated users, needed for some forum/CMS support
nonActivedUserGroup: -1
# Other MySQL columns where we need to put the username (case-sensitive)
mySQLOtherUsernameColumns: []
# How much log2 rounds needed in BCrypt (do not change if you do not know what it does)
bCryptLog2Round: 10
# phpBB table prefix defined during the phpBB installation process
2019-01-29 00:00:38 +01:00
phpbbTablePrefix: phpbb_
2016-10-23 18:29:00 +02:00
# phpBB activated group ID; 2 is the default registered group defined by phpBB
phpbbActivatedGroupId: 2
2017-03-22 23:14:02 +01:00
# IP Board table prefix defined during the IP Board installation process
2019-01-29 00:00:38 +01:00
IPBTablePrefix: ipb_
2017-03-22 23:14:02 +01:00
# IP Board default group ID; 3 is the default registered group defined by IP Board
IPBActivatedGroupId: 3
2017-07-06 18:46:24 +02:00
# Xenforo table prefix defined during the Xenforo installation process
2019-01-29 00:00:38 +01:00
XFTablePrefix: xf_
2017-03-22 23:14:02 +01:00
# XenForo default group ID; 2 is the default registered group defined by Xenforo
XFActivatedGroupId: 2
2016-10-23 18:29:00 +02:00
# Wordpress prefix defined during WordPress installation
2019-01-29 00:00:38 +01:00
wordpressTablePrefix: wp_
2016-10-23 18:29:00 +02:00
settings:
sessions:
# Do you want to enable the session feature?
# If enabled, when a player authenticates successfully,
# his IP and his nickname is saved.
# The next time the player joins the server, if his IP
# is the same as last time and the timeout hasn't
# expired, he will not need to authenticate.
enabled: false
# After how many minutes should a session expire?
2017-02-05 13:48:24 +01:00
# A player's session ends after the timeout or if his IP has changed
2016-10-23 18:29:00 +02:00
timeout: 10
2016-10-23 21:12:49 +02:00
# Message language, available languages:
# https://github.com/AuthMe/AuthMeReloaded/blob/master/docs/translations.md
2019-01-29 00:00:38 +01:00
messagesLanguage: en
2017-11-01 21:02:22 +01:00
# Forces authme to hook into Vault instead of a specific permission handler system.
forceVaultHook: false
2016-12-15 22:36:54 +01:00
# Log level: INFO, FINE, DEBUG. Use INFO for general messages,
# FINE for some additional detailed ones (like password failed),
# and DEBUG for debugging
2019-01-29 00:00:38 +01:00
logLevel: FINE
2016-12-15 22:36:54 +01:00
# By default we schedule async tasks when talking to the database. If you want
# typical communication with the database to happen synchronously, set this to false
useAsyncTasks: true
2017-11-01 21:02:22 +01:00
# By default we handle the AsyncPlayerPreLoginEvent which makes the plugin faster
# but it is incompatible with any permission plugin not included in our compatibility list.
# If you have issues with permission checks on player join please disable this option.
useAsyncPreLoginEvent: true
2016-10-23 18:29:00 +02:00
restrictions:
# Can not authenticated players chat?
# Keep in mind that this feature also blocks all commands not
# listed in the list below.
allowChat: false
# Hide the chat log from players who are not authenticated?
hideChat: false
# Allowed commands for unauthenticated players
2017-11-28 12:57:39 +01:00
allowCommands:
2019-01-29 00:00:38 +01:00
- /login
- /register
- /l
- /reg
- /email
- /captcha
- /2fa
- /totp
2016-10-23 18:29:00 +02:00
# Max number of allowed registrations per IP
# The value 0 means an unlimited number of registrations!
maxRegPerIp: 1
# Minimum allowed username length
2016-10-30 13:01:22 +01:00
minNicknameLength: 3
2016-10-23 18:29:00 +02:00
# Maximum allowed username length
maxNicknameLength: 16
# When this setting is enabled, online players can't be kicked out
# due to "Logged in from another Location"
# This setting will prevent potential security exploits.
ForceSingleSession: true
ForceSpawnLocOnJoin:
2016-10-23 21:12:49 +02:00
# If enabled, every player that spawn in one of the world listed in
# "ForceSpawnLocOnJoin.worlds" will be teleported to the spawnpoint after successful
# authentication. The quit location of the player will be overwritten.
2016-10-23 18:29:00 +02:00
# This is different from "teleportUnAuthedToSpawn" that teleport player
# to the spawnpoint on join.
enabled: false
# WorldNames where we need to force the spawn location
# Case-sensitive!
2017-11-28 12:57:39 +01:00
worlds:
2019-01-29 00:00:38 +01:00
- world
- world_nether
- world_the_end
2016-10-23 18:29:00 +02:00
# To activate the restricted user feature you need
# to enable this option and configure the AllowedRestrictedUser field.
AllowRestrictedUser: false
# The restricted user feature will kick players listed below
2016-11-13 12:27:52 +01:00
# if they don't match the defined IP address. Names are case-insensitive.
2017-09-17 11:32:12 +02:00
# You can use * as wildcard (127.0.0.* ), or regex with a "regex:" prefix regex:127\.0\.0\..*
2016-10-23 18:29:00 +02:00
# Example:
# AllowedRestrictedUser:
# - playername;127.0.0.1
2017-07-06 18:46:24 +02:00
# - playername;regex:127\.0\.0\..*
2016-10-23 18:29:00 +02:00
AllowedRestrictedUser: []
2017-02-05 13:48:24 +01:00
# Ban unknown IPs trying to log in with a restricted username?
banUnsafedIP: false
2016-10-23 18:29:00 +02:00
# Should unregistered players be kicked immediately?
kickNonRegistered: false
# Should players be kicked on wrong password?
2016-12-15 22:36:54 +01:00
kickOnWrongPassword: true
2016-10-23 18:29:00 +02:00
# Should not logged in players be teleported to the spawn?
# After the authentication they will be teleported back to
# their normal position.
teleportUnAuthedToSpawn: false
# Can unregistered players walk around?
allowMovement: false
# After how many seconds should players who fail to login or register
# be kicked? Set to 0 to disable.
timeout: 30
2017-02-05 13:48:24 +01:00
# Regex pattern of allowed characters in the player name.
2016-10-23 18:29:00 +02:00
allowedNicknameCharacters: '[a-zA-Z0-9_]*'
# How far can unregistered players walk?
# Set to 0 for unlimited radius
allowedMovementRadius: 100
# Should we protect the player inventory before logging in? Requires ProtocolLib.
ProtectInventoryBeforeLogIn: true
# Should we deny the tabcomplete feature before logging in? Requires ProtocolLib.
2016-12-15 22:36:54 +01:00
DenyTabCompleteBeforeLogin: false
2016-10-23 18:29:00 +02:00
# Should we display all other accounts from a player when he joins?
# permission: /authme.admin.accounts
displayOtherAccounts: true
2017-11-28 12:57:39 +01:00
# Spawn priority; values: authme, essentials, cmi, multiverse, default
2019-01-29 00:00:38 +01:00
spawnPriority: authme,essentials,cmi,multiverse,default
2016-10-23 18:29:00 +02:00
# Maximum Login authorized by IP
maxLoginPerIp: 0
# Maximum Join authorized by IP
maxJoinPerIp: 0
# AuthMe will NEVER teleport players if set to true!
noTeleport: false
2017-07-15 19:38:05 +02:00
# Regex syntax for allowed chars in passwords. The default [!-~] allows all visible ASCII
# characters, which is what we recommend. See also http://asciitable.com
# You can test your regex with https://regex101.com
allowedPasswordCharacters: '[!-~]*'
2016-10-23 18:29:00 +02:00
GameMode:
# Force survival gamemode when player joins?
ForceSurvivalMode: false
unrestrictions:
2016-11-13 12:27:52 +01:00
# Below you can list all account names that AuthMe will ignore
# for registration or login. Configure it at your own risk!!
# This option adds compatibility with BuildCraft and some other mods.
# It is case-insensitive! Example:
# UnrestrictedName:
# - 'npcPlayer'
# - 'npcPlayer2'
2016-10-23 18:29:00 +02:00
UnrestrictedName: []
2019-01-29 00:00:38 +01:00
# Below you can list all inventories names that AuthMe will ignore
# for registration or login. Configure it at your own risk!!
# This option adds compatibility with some mods.
# It is case-insensitive! Example:
# UnrestrictedInventories:
# - 'myCustomInventory1'
# - 'myCustomInventory2'
UnrestrictedInventories: []
2016-10-23 18:29:00 +02:00
security:
# Minimum length of password
minPasswordLength: 5
# Maximum length of password
passwordMaxLength: 30
2017-10-28 12:23:14 +02:00
# Possible values: SHA256, BCRYPT, BCRYPT2Y, PBKDF2, SALTEDSHA512,
2016-12-15 22:36:54 +01:00
# MYBB, IPB3, PHPBB, PHPFUSION, SMF, XENFORO, XAUTH, JOOMLA, WBB3, WBB4, MD5VB,
2017-10-28 12:23:14 +02:00
# PBKDF2DJANGO, WORDPRESS, ROYALAUTH, ARGON2, CUSTOM (for developers only). See full list at
2016-12-15 22:36:54 +01:00
# https://github.com/AuthMe/AuthMeReloaded/blob/master/docs/hash_algorithms.md
2017-10-28 12:23:14 +02:00
# If you use ARGON2, check that you have the argon2 c library on your system
2019-01-29 00:00:38 +01:00
passwordHash: SHA256
2016-11-13 10:37:01 +01:00
# If a password check fails, AuthMe will also try to check with the following hash methods.
# Use this setting when you change from one hash method to another.
# AuthMe will update the password to the new hash. Example:
# legacyHashes:
# - 'SHA1'
legacyHashes: []
2017-05-21 12:28:35 +02:00
# Salt length for the SALTED2MD5 MD5(MD5(password)+salt)
doubleMD5SaltLength: 8
2016-12-15 22:36:54 +01:00
# Number of rounds to use if passwordHash is set to PBKDF2. Default is 10000
pbkdf2Rounds: 10000
2016-10-23 18:29:00 +02:00
# Prevent unsafe passwords from being used; put them in lowercase!
2016-10-30 13:01:22 +01:00
# You should always set 'help' as unsafePassword due to possible conflicts.
2016-10-23 18:29:00 +02:00
# unsafePasswords:
# - '123456'
# - 'password'
2016-10-30 13:01:22 +01:00
# - 'help'
2017-11-28 12:57:39 +01:00
unsafePasswords:
2016-10-23 18:29:00 +02:00
- '123456'
2019-01-29 00:00:38 +01:00
- password
- qwerty
2016-10-23 18:29:00 +02:00
- '12345'
- '54321'
- '123456789'
2019-01-29 00:00:38 +01:00
- help
2016-10-23 18:29:00 +02:00
registration:
# Enable registration on the server?
enabled: true
# Send every X seconds a message to a player to
# remind him that he has to login/register
messageInterval: 5
# Only registered and logged in players can play.
# See restrictions for exceptions
force: true
2016-12-31 15:34:40 +01:00
# Type of registration: PASSWORD or EMAIL
2017-01-07 11:08:45 +01:00
# PASSWORD = account is registered with a password supplied by the user;
# EMAIL = password is generated and sent to the email provided by the user.
# More info at https://github.com/AuthMe/AuthMeReloaded/wiki/Registration
2019-01-29 00:00:38 +01:00
type: PASSWORD
2016-12-31 15:34:40 +01:00
# Second argument the /register command should take: NONE = no 2nd argument
# CONFIRMATION = must repeat first argument (pass or email)
# EMAIL_OPTIONAL = for password register: 2nd argument can be empty or have email address
# EMAIL_MANDATORY = for password register: 2nd argument MUST be an email address
2019-01-29 00:00:38 +01:00
secondArg: CONFIRMATION
2016-10-23 18:29:00 +02:00
# Do we force kick a player after a successful registration?
# Do not use with login feature below
forceKickAfterRegister: false
# Does AuthMe need to enforce a /login after a successful registration?
forceLoginAfterRegister: false
# Enable to display the welcome message (welcome.txt) after a login
# You can use colors in this welcome.txt + some replaced strings:
2016-10-23 21:12:49 +02:00
# {PLAYER}: player name, {ONLINE}: display number of online players,
# {MAXPLAYERS}: display server slots, {IP}: player ip, {LOGINS}: number of players logged,
# {WORLD}: player current world, {SERVER}: server name
2016-10-23 18:29:00 +02:00
# {VERSION}: get current bukkit version, {COUNTRY}: player country
useWelcomeMessage: true
2016-10-23 21:12:49 +02:00
# Broadcast the welcome message to the server or only to the player?
# set true for server or false for player
2016-10-23 18:29:00 +02:00
broadcastWelcomeMessage: false
# Should we delay the join message and display it once the player has logged in?
delayJoinMessage: false
2017-01-05 01:39:24 +01:00
# The custom join message that will be sent after a successful login,
2017-01-07 11:34:58 +01:00
# keep empty to use the original one.
# Available variables:
2017-01-05 01:39:24 +01:00
# {PLAYERNAME}: the player name (no colors)
2017-10-09 09:25:20 +02:00
# {DISPLAYNAME}: the player display name (with colors)
# {DISPLAYNAMENOCOLOR}: the player display name (without colors)
2017-01-07 11:34:58 +01:00
customJoinMessage: ''
2016-10-23 18:29:00 +02:00
# Should we remove the leave messages of unlogged users?
removeUnloggedLeaveMessage: false
# Should we remove join messages altogether?
removeJoinMessage: false
# Should we remove leave messages altogether?
removeLeaveMessage: false
# Do we need to add potion effect Blinding before login/reigster?
applyBlindEffect: false
# Do we need to prevent people to login with another case?
# If Xephi is registered, then Xephi can login, but not XEPHI/xephi/XePhI
2016-12-15 22:36:54 +01:00
preventOtherCase: true
2017-02-05 13:48:24 +01:00
GroupOptions:
# Enables switching a player to defined permission groups before they log in.
# See below for a detailed explanation.
enablePermissionCheck: false
# This is a very important option: if a registered player joins the server
# AuthMe will switch him to unLoggedInGroup. This should prevent all major exploits.
# You can set up your permission plugin with this special group to have no permissions,
# or only permission to chat (or permission to send private messages etc.).
# The better way is to set up this group with few permissions, so if a player
# tries to exploit an account they can do only what you've defined for the group.
# After login, the player will be moved to his correct permissions group!
# Please note that the group name is case-sensitive, so 'admin' is different from 'Admin'
# Otherwise your group will be wiped and the player will join in the default group []!
# Example: registeredPlayerGroup: 'NotLogged'
registeredPlayerGroup: ''
# Similar to above, unregistered players can be set to the following
# permissions group
unregisteredPlayerGroup: ''
2016-10-23 18:29:00 +02:00
Email:
# Email SMTP server host
2019-01-29 00:00:38 +01:00
mailSMTP: smtp.gmail.com
2016-10-23 18:29:00 +02:00
# Email SMTP server port
mailPort: 465
2017-03-06 19:54:46 +01:00
# Only affects port 25: enable TLS/STARTTLS?
useTls: true
2016-10-23 18:29:00 +02:00
# Email account which sends the mails
mailAccount: ''
# Email account password
mailPassword: ''
2017-01-14 22:14:09 +01:00
# Email address, fill when mailAccount is not the email address of the account
mailAddress: ''
2016-10-23 18:29:00 +02:00
# Custom sender name, replacing the mailAccount name in the email
mailSenderName: ''
# Recovery password length
RecoveryPasswordLength: 8
# Mail Subject
2019-01-29 00:00:38 +01:00
mailSubject: Your new AuthMe password
2016-10-23 18:29:00 +02:00
# Like maxRegPerIP but with email
maxRegPerEmail: 1
# Recall players to add an email?
recallPlayers: false
# Delay in minute for the recall scheduler
delayRecall: 5
# Blacklist these domains for emails
2017-11-28 12:57:39 +01:00
emailBlacklisted:
2019-01-29 00:00:38 +01:00
- 10minutemail.com
2016-10-23 18:29:00 +02:00
# Whitelist ONLY these domains for emails
emailWhitelisted: []
# Send the new password drawn in an image?
generateImage: false
# The OAuth2 token
emailOauth2Token: ''
Hooks:
# Do we need to hook with multiverse for spawn checking?
multiverse: true
# Do we need to hook with BungeeCord?
bungeecord: false
# Send player to this BungeeCord server after register/login
sendPlayerTo: ''
# Do we need to disable Essentials SocialSpy on join?
2016-12-15 22:36:54 +01:00
disableSocialSpy: false
2016-10-23 18:29:00 +02:00
# Do we need to force /motd Essentials command on join?
useEssentialsMotd: false
Protection:
# Enable some servers protection (country based login, antibot)
enableProtection: false
# Apply the protection also to registered usernames
enableProtectionRegistered: true
2016-10-23 21:12:49 +02:00
# Countries allowed to join the server and register. For country codes, see
2018-04-22 11:13:27 +02:00
# https://dev.maxmind.com/geoip/legacy/codes/iso3166/
2019-01-29 00:00:38 +01:00
# Use "LOCALHOST" for local addresses.
2016-10-23 18:29:00 +02:00
# PLEASE USE QUOTES!
2017-11-28 12:57:39 +01:00
countries:
2019-01-29 00:00:38 +01:00
- US
- GB
- LOCALHOST
2016-10-23 18:29:00 +02:00
# Countries not allowed to join the server and register
# PLEASE USE QUOTES!
2017-11-28 12:57:39 +01:00
countriesBlacklist:
2019-01-29 00:00:38 +01:00
- A1
2016-10-23 18:29:00 +02:00
# Do we need to enable automatic antibot system?
enableAntiBot: true
2016-10-30 13:01:22 +01:00
# The interval in seconds
antiBotInterval: 5
# Max number of players allowed to login in the interval
2016-10-23 21:12:49 +02:00
# before the AntiBot system is enabled automatically
2016-10-23 18:29:00 +02:00
antiBotSensibility: 10
# Duration in minutes of the antibot automatic system
antiBotDuration: 10
# Delay in seconds before the antibot activation
antiBotDelay: 60
2018-04-22 11:13:27 +02:00
quickCommands:
# Kicks the player that issued a command before the defined time after the join process
denyCommandsBeforeMilliseconds: 1000
2016-10-23 18:29:00 +02:00
Purge:
# If enabled, AuthMe automatically purges old, unused accounts
useAutoPurge: false
2016-10-23 21:12:49 +02:00
# Number of days after which an account should be purged
2016-10-23 18:29:00 +02:00
daysBeforeRemovePlayer: 60
# Do we need to remove the player.dat file during purge process?
removePlayerDat: false
# Do we need to remove the Essentials/userdata/player.yml file during purge process?
removeEssentialsFile: false
2017-04-29 18:31:37 +02:00
# World in which the players.dat are stored
2019-01-29 00:00:38 +01:00
defaultWorld: world
2016-10-23 21:12:49 +02:00
# Remove LimitedCreative/inventories/player.yml, player_creative.yml files during purge?
2016-10-23 18:29:00 +02:00
removeLimitedCreativesInventories: false
# Do we need to remove the AntiXRayData/PlayerData/player file during purge process?
removeAntiXRayFile: false
# Do we need to remove permissions?
removePermissions: false
Security:
SQLProblem:
# Stop the server if we can't contact the sql database
# Take care with this, if you set this to false,
# AuthMe will automatically disable and the server won't be protected!
stopServer: true
console:
# Copy AuthMe log output in a separate file as well?
logConsole: true
captcha:
# Enable captcha when a player uses wrong password too many times
useCaptcha: false
# Max allowed tries before a captcha is required
maxLoginTry: 5
# Captcha length
captchaLength: 5
2017-02-25 22:42:23 +01:00
# Minutes after which login attempts count is reset for a player
captchaCountReset: 60
2018-01-21 18:58:20 +01:00
# Require captcha before a player may register?
requireForRegistration: false
2016-10-23 18:29:00 +02:00
tempban:
# Tempban a user's IP address if they enter the wrong password too many times
enableTempban: false
# How many times a user can attempt to login before their IP being tempbanned
maxLoginTries: 10
# The length of time a IP address will be tempbanned in minutes
# Default: 480 minutes, or 8 hours
tempbanLength: 480
# How many minutes before resetting the count for failed logins by IP and username
# Default: 480 minutes (8 hours)
minutesBeforeCounterReset: 480
2017-10-09 09:25:20 +02:00
# The command to execute instead of using the internal ban system, empty if disabled.
2017-09-30 19:57:27 +02:00
# Available placeholders: %player%, %ip%
customCommand: ''
2016-10-23 18:29:00 +02:00
recoveryCode:
# Number of characters a recovery code should have (0 to disable)
length: 8
# How many hours is a recovery code valid for?
validForHours: 4
2017-03-06 19:54:46 +01:00
# Max number of tries to enter recovery code
maxTries: 3
2017-03-14 23:26:32 +01:00
# How long a player has after password recovery to change their password
# without logging in. This is in minutes.
# Default: 2 minutes
passwordChangeTimeout: 2
2017-02-25 22:42:23 +01:00
emailRecovery:
# Seconds a user has to wait for before a password recovery mail may be sent again
# This prevents an attacker from abusing AuthMe's email feature.
cooldown: 60
2017-08-12 16:20:06 +02:00
privacy:
2017-09-17 11:32:12 +02:00
# The mail shown using /email show will be partially hidden
2017-08-12 16:20:06 +02:00
# E.g. (if enabled)
# original email: my.email@example.com
# hidden email: my.***@***mple.com
enableEmailMasking: false
2017-10-28 12:23:14 +02:00
# Minutes after which a verification code will expire
verificationCodeExpiration: 10
2017-03-12 13:51:03 +01:00
# Before a user logs in, various properties are temporarily removed from the player,
# such as OP status, ability to fly, and walk/fly speed.
# Once the user is logged in, we add back the properties we previously saved.
2017-03-22 23:14:02 +01:00
# In this section, you may define how these properties should be handled.
2017-03-28 21:42:01 +02:00
# Read more at https://github.com/AuthMe/AuthMeReloaded/wiki/Limbo-players
2017-03-12 13:51:03 +01:00
limbo:
2017-03-22 23:14:02 +01:00
persistence:
# Besides storing the data in memory, you can define if/how the data should be persisted
# on disk. This is useful in case of a server crash, so next time the server starts we can
# properly restore things like OP status, ability to fly, and walk/fly speed.
2017-03-28 21:42:01 +02:00
# DISABLED: no disk storage,
# INDIVIDUAL_FILES: each player data in its own file,
# DISTRIBUTED_FILES: distributes players into different files based on their UUID, see below
2019-01-29 00:00:38 +01:00
type: INDIVIDUAL_FILES
2017-03-28 21:49:28 +02:00
# This setting only affects DISTRIBUTED_FILES persistence. The distributed file
2017-03-22 23:14:02 +01:00
# persistence attempts to reduce the number of files by distributing players into various
# buckets based on their UUID. This setting defines into how many files the players should
# be distributed. Possible values: ONE, FOUR, EIGHT, SIXTEEN, THIRTY_TWO, SIXTY_FOUR,
# ONE_TWENTY for 128, TWO_FIFTY for 256.
# For example, if you expect 100 non-logged in players, setting to SIXTEEN will average
2017-03-28 21:49:28 +02:00
# 6.25 players per file (100 / 16).
2017-03-22 23:14:02 +01:00
# Note: if you change this setting all data will be migrated. If you have a lot of data,
# change this setting only on server restart, not with /authme reload.
2019-01-29 00:00:38 +01:00
distributionSize: SIXTEEN
2017-07-10 21:40:14 +02:00
# Whether the player is allowed to fly: RESTORE, ENABLE, DISABLE, NOTHING.
# RESTORE sets back the old property from the player. NOTHING will prevent AuthMe
# from modifying the 'allow flight' property on the player.
2019-01-29 00:00:38 +01:00
restoreAllowFlight: RESTORE
2017-03-12 13:51:03 +01:00
# Restore fly speed: RESTORE, DEFAULT, MAX_RESTORE, RESTORE_NO_ZERO.
# RESTORE: restore the speed the player had;
# DEFAULT: always set to default speed;
# MAX_RESTORE: take the maximum of the player's current speed and the previous one
# RESTORE_NO_ZERO: Like 'restore' but sets speed to default if the player's speed was 0
2019-01-29 00:00:38 +01:00
restoreFlySpeed: RESTORE_NO_ZERO
2017-03-12 13:51:03 +01:00
# Restore walk speed: RESTORE, DEFAULT, MAX_RESTORE, RESTORE_NO_ZERO.
# See above for a description of the values.
2019-01-29 00:00:38 +01:00
restoreWalkSpeed: RESTORE_NO_ZERO
2016-10-23 18:29:00 +02:00
BackupSystem:
2017-04-23 20:23:40 +02:00
# General configuration for backups: if false, no backups are possible
2016-10-23 18:29:00 +02:00
ActivateBackup: false
2017-04-23 20:23:40 +02:00
# Create backup at every start of server
2016-10-23 18:29:00 +02:00
OnServerStart: false
2017-04-23 20:23:40 +02:00
# Create backup at every stop of server
2016-10-23 18:29:00 +02:00
OnServerStop: true
2017-04-23 20:23:40 +02:00
# Windows only: MySQL installation path
2019-01-29 00:00:38 +01:00
MysqlWindowsPath: C:\Program Files\MySQL\MySQL Server 5.1\
2017-05-21 12:28:35 +02:00
# Converter settings: see https://github.com/AuthMe/AuthMeReloaded/wiki/Converters
2017-03-12 13:51:03 +01:00
Converter:
Rakamak:
# Rakamak file name
2019-01-29 00:00:38 +01:00
fileName: users.rak
2017-03-12 13:51:03 +01:00
# Rakamak use IP?
useIP: false
# Rakamak IP file name
2019-01-29 00:00:38 +01:00
ipFileName: UsersIp.rak
2017-03-12 13:51:03 +01:00
CrazyLogin:
# CrazyLogin database file name
2019-01-29 00:00:38 +01:00
fileName: accounts.db
2017-05-21 12:28:35 +02:00
loginSecurity:
# LoginSecurity: convert from SQLite; if false we use MySQL
useSqlite: true
mySql:
# LoginSecurity MySQL: database host
host: ''
# LoginSecurity MySQL: database name
database: ''
# LoginSecurity MySQL: database user
user: ''
# LoginSecurity MySQL: password for database user
password: ''
2016-10-23 18:29:00 +02:00
```
2017-11-28 12:57:39 +01:00
To change settings on a running server, save your changes to config.yml and use
2016-10-23 18:29:00 +02:00
`/authme reload` .
---
2019-01-29 00:00:38 +01:00
This page was automatically generated on the [AuthMe/AuthMeReloaded repository ](https://github.com/AuthMe/AuthMeReloaded/tree/master/docs/ ) on Mon Jan 28 23:57:12 CET 2019