The best authentication plugin for the Bukkit/Spigot API!
Go to file
Ghost_chu 25cf85a7dc
Execute simple check before enable BungeeCord hook.
This commit added a simple check that check spigot.yml -> settings.bungeecord status by using AuthMe built-in method bukkitService.isBungeeCordConfiguredForSpigot() and disable hook if it enabled and not behind an BungeeCord proxy.

Register plugin message channel without BungeeCord proxy will allow attacker send fake login payload to treat AuthMe login with Plugin Message for him and bypass the user login.

This commit also updated SettingsWarner for new behavior.
2022-07-06 15:39:06 +08:00
.github Ignore HikariCP in dependabot 2022-04-10 20:56:17 +02:00
.idea Remove intellij dictionaries 2016-10-07 19:51:10 +02:00
docs Update config.md 2021-12-25 15:40:40 +01:00
samples Added password change (#2239) 2020-12-12 19:15:50 +01:00
src Execute simple check before enable BungeeCord hook. 2022-07-06 15:39:06 +08:00
.checkstyle.xml Fix some Checkstyle issues 2022-01-30 10:32:49 +01:00
.codeclimate.yml #1627 Replace BCryptService with Maven dependency (#1629) 2018-09-03 23:13:48 +02:00
.editorconfig Added basic .editorconfig configuration 2015-11-23 20:43:25 +01:00
.gitignore Ignore intellij tmp files 2017-09-16 14:45:03 +02:00
.travis.yml Fix the TravisCI pipeline (#2527) 2022-04-10 19:57:53 +02:00
LICENSE Update LICENSE 2015-08-12 20:18:38 +02:00
pom.xml Bump mockito-core from 4.4.0 to 4.6.1 (#2551) 2022-06-04 02:13:01 +02:00
README.md Update to Spigot 1.18 api 2021-11-28 18:17:10 +01:00
wallpaper.png Uploader wallpaper image 2020-11-22 14:21:54 +01:00

AuthMeReloaded

"The best authentication plugin for the Bukkit modding API!"

AuthMeLogo
Type Badges
General:
Code quality: Code Climate Coverage status
Jenkins CI: Jenkins Status Build Status Build Tests
Other CIs: Build Status

Description

Prevent username stealing on your server!
Use it to secure your Offline mode server or to increase your Online mode server's protection!

AuthMeReloaded disallows players who aren't authenticated to do actions like placing blocks, moving,
typing commands or using the inventory. It can also kick players with uncommonly long or short player names or kick players from banned countries.

With the Session Login feature you don't have to execute the authentication command every time you connect to the server! Each command and every feature can be enabled or disabled from our well structured configuration file.

You can also create your own translation file and, if you want, you can share it with us! :)

Features:

  • E-Mail Recovery System!
  • Username spoofing protection.
  • Countries Whitelist/Blacklist! (country codes)
  • Built-in AntiBot System!
  • ForceLogin Feature: Admins can login with all account via console command!
  • Avoid the "Logged in from another location" message!
  • Two-factor (2FA) support!
  • Session Login!
  • Editable translations and messages!
  • MySQL and SQLite Backend support!
  • Supported password encryption algorithms: SHA256, ARGON2, BCRYPT, PBKDF2, xAuth
  • Supported alternative registration methods:
    • PHPBB, VBulletin: PHPBB - MD5VB
    • Xenforo: XFBCRYPT
    • MyBB: MYBB
    • IPB3: IPB3
    • IPB4: IPB4
    • PhpFusion: PHPFUSION
    • Joomla: JOOMLA
    • WBB3: WBB3*
    • SHA512: SALTEDSHA512
    • DoubleSaltedMD5: SALTED2MD5
    • WordPress: WORDPRESS
    • List of all supported hashes
  • Custom MySQL tables/columns names (useful with forum databases)
  • Cached database queries!
  • Fully compatible with Citizens2, CombatTag, CombatTagPlus!
  • Compatible with Minecraft mods like BuildCraft or RedstoneCraft
  • Restricted users (associate a username with an IP)
  • Protect player's inventory until correct authentication (requires ProtocolLib)
  • Saves the quit location of the player
  • Automatic database backup
  • Available languages: translations
  • Built-in Deprecated FlatFile (auths.db) to SQL (authme.sql) converter!
  • Import your old database from other plugins like Rakamak, xAuth, CrazyLogin, RoyalAuth and vAuth!

Configuration

How to configure AuthMe

Commands

Command list and usage

Permissions

How To

  • Support:

  • Dev resources:

      <repositories>
          <repository>
              <id>codemc-repo</id>
              <url>https://repo.codemc.org/repository/maven-public/</url>
          </repository>
      </repositories>
    
      <dependencies>
          <dependency>
              <groupId>fr.xephi</groupId>
              <artifactId>authme</artifactId>
              <version>5.6.0-SNAPSHOT</version>
              <scope>provided</scope>
          </dependency>
      </dependencies>
    
  • Statistics: Graph

Requirements

Compiling requirements:
  • JDK 8 (JDK 17 is recommended)
  • Maven
  • Git/Github (Optional)
How to compile the project:
  • Clone the project with Git/Github
  • Execute command "mvn clean package"
Running requirements:

Credits

Contributors:

Team members: developers, translators

Credits for the old version of the plugin: d4rkwarriors, fabe1337, Whoami2 and pomo4ka

Thanks also to: AS1LV3RN1NJA, Hoeze and eprimex

GeoIP License:

This product uses data from the GeoLite API created by MaxMind, available at https://www.maxmind.com