Inactive [SEC] xAuth v2.0.10 - Extra Authentication [1.2.5-R1.3+]

Discussion in 'Inactive/Unsupported Plugins' started by CypherX, Mar 15, 2011.

Thread Status:
Not open for further replies.
  1. Offline

    CypherX

    xAuth v2.0.10 - (CraftBukkit build: [1.2.5-R1.3+])
    Download v2.0.10

    lycano is taking over the development of xAuth as I no longer have the time nor the will to continue working on it. Please see the BukkitDev page: http://dev.bukkit.org/server-mods/xauth/

    Thanks to everyone who has showed support for me and xAuth over the past 17 months. It's been 'fun'. If for any reason you need to contact me, stop by my IRC channel (irc.rizon.net #LoveDespite) or toss me a message at http://love-despite.com/forum. Until we meet again, stay gold. Bang.

    ------------------------------------------------------------------​

    xAuth is a plugin designed with a single task in mind: protect a server and its players while running in offline-mode. The basic idea of this protection is allowing players to register an account based on their player name and a supplied password. When a registered player connects to the server, that player will be prompted to authenticate his or herself by logging in. If and only if a valid password is supplied, they will regain full control of their account until their session expires.


    Features
    • Before registering/logging in, players cannot:
      • Chat, execute commands, interact with objects (levers, chests, etc.), move, or pickup items.
      • Break or place blocks
      • Receive or give damage, be targeted (followed) by hostile mobs
    • Inventory and location protection
    • In-depth setting and message configuration
    • Persistent login sessions through server restarts
    • Player name filter and password complexity configuration
    • Kick non-logged in (but registered) players after a configurable amount of time
    • Bukkit Permissions support
    • Kick or temporarily lockout the IP address of a player who fails to log in after a configurable amount of tries
    • Custom, highly secure password hashing
    • H2 and MySQL support
    • Authentication over URL (AuthURL) allows for connection to forum or website databases
    Changelog (click for full changelog)
    • Version 2.0.10
      • [Fixed] Exploit to completely bypass login system.
      • [Fixed] xAuth commands not working with Rcon
      • [Fixed] Exploiting login system to avoid fire & drowning damage.
      • [Fixed] NPE caused by player connecting & disconnecting during same server tick.
      • [Fixed] 'Table "SESSIONS" not found' error when a player uses /logout while session length is set to zero.
      • [Fixed] Exploiting location protection after dieing to return to the spot of death.
    • Version 2.0.9
      • Added several reverse single session configuration options.
      • Fixed registration.forced: false not working.
      • Updated version check and H2 download links.
    xAuth Importer
    xAuth Importer is a tool used to import accounts from previous versions of xAuth as well as other authentication plugins. Click here for more information.
     
  2. Offline

    robxu9

    Ah, wonderful idea! [flintnsteel] and [tnt] it is.
     
  3. Offline

    CypherX

    xAuth v2.0.1 is available!

    This update brings the return of H2 support for those who don't wish to use MySQL. The Upgrading guide has also been updated with better explanations and a new guide/importer for H2. MySQL users will also have to edit the new configuration node 'mysql.enabled'.
     
  4. Offline

    Nekuroi

    I'm having fun with this thread.

    btw, can you make a dev.bukkit page so we can be up to date with new releases?
     
  5. Offline

    CypherX

    Nekuroi - I refuse to touch BukkitDev/Curse.
     
    robxu9 likes this.
  6. Offline

    keiichi93

    Works like a charm. Thanks, CypherX.
     
  7. Offline

    XtenD

    The most epic auth plugin i ever seen. CypherX creating plugins Like a Boss. Keep up the good work!
     
  8. Is it needed to use mysql? I have mysql:--> enabled: false but the plugin still wants to create tables without success...
     
  9. Offline

    Danielk0703

    THX FOR THE LOCAL DATABASE!!!!
    Good job!
    I have a question:
    I dont want that "default" users are able to use "/register" AND "/login"
    What shall i do?
     
  10. Offline

    Nzer0

    Why MySQL cant be a local??????????????

    That is the most stupid community =(
     
  11. Offline

    columb

    What's wrong with it? Beta works just fine, without any problem.
    But release version isn't, smth wrong with database, but what?
    Error - http://pastebin.com/9xkG1Dj8
    Also, if non-logged player trying to move it's confict with no-cheat and spamming about HAAAX.
    Show Spoiler
    [​IMG]

    And...
     
  12. First of all thanks for great addon :)

    Second I have problem on my server that when people first join they get teleportet correctly to spawn (/xauth location set) and are asked to register, but when they register game teleports them away to worlds spawnpoint. I use HomeSpawnPlus and have set firsttimespawn and defaultspawn in my spawnplace. What I'm doing wrong?
     
  13. Offline

    Jek29

    In what my error?
    After recalling at all the stock is empty. (When session comes to an end)
     
  14. Offline

    Dooderdo

    So far the import seems to work. Just a little thing that should be added to the upgrading page though...
    Code:
    Running the Importer
     
    Open Command Prompt (Windows), CLI (*nix), Terminal (Mac).
    Type cd path\to\importer (replace path\to\importer with the actual path on your computer) and press Enter.
    Type java -jar xAuthImporter.jar and press Enter to begin the import process.
    
    Replace "xAuthImporter" with "xAuthImporter.jar". (I already did it in the code).

    Thanks for the great plugin! Keep up the good work!
     
  15. Offline

    AHgpeu

    Code:
    2012-03-18 18:23:33 [SEVERE] [xAuth] Failed to insert player data into database!
     
    java.sql.SQLException: Parameter index out of range (5 > number of parameters, w
    hich is 4).
            at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:1073)
            at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:987)
            at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:982)
            at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:927)
            at com.mysql.jdbc.PreparedStatement.checkBounds(PreparedStatement.java:3
    709)
            at com.mysql.jdbc.PreparedStatement.setInternal(PreparedStatement.java:3
    693)
            at com.mysql.jdbc.PreparedStatement.setString(PreparedStatement.java:454
    4)
            at com.cypherx.xauth.PlayerDataHandler.storeData(PlayerDataHandler.java:
    56)
            at com.cypherx.xauth.PlayerManager.protect(PlayerManager.java:156)
            at com.cypherx.xauth.listeners.xAuthPlayerListener.onPlayerJoin(xAuthPla
    yerListener.java:71)
            at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
            at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
            at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
            at java.lang.reflect.Method.invoke(Unknown Source)
            at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.ja
    va:301)
            at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.jav
    a:62)
            at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.j
    ava:441)
            at net.minecraft.server.ServerConfigurationManager.c(ServerConfiguration
    Manager.java:135)
            at net.minecraft.server.NetLoginHandler.b(NetLoginHandler.java:128)
            at net.minecraft.server.NetLoginHandler.a(NetLoginHandler.java:94)
            at net.minecraft.server.Packet1Login.handle(SourceFile:68)
            at net.minecraft.server.NetworkManager.b(NetworkManager.java:229)
            at net.minecraft.server.NetLoginHandler.a(NetLoginHandler.java:48)
            at net.minecraft.server.NetworkListenThread.a(NetworkListenThread.java:6
    1)
            at net.minecraft.server.MinecraftServer.w(MinecraftServer.java:554)
            at net.minecraft.server.MinecraftServer.run(MinecraftServer.java:452)
            at net.minecraft.server.ThreadServerApplication.run(SourceFile:490)
     
  16. Offline

    Hydrosis

    Jek29 and AHgpeu
    Are you guys using a database from before 2.0?
     
  17. Offline

    316peti

    Players lose their inventory if they disconnect and login. Error:
    Code:
    2012-03-18 17:06:01 [SEVERE] [xAuth] Failed to insert player data into database!
    java.sql.SQLException: Parameter index out of range (5 > number of parameters, which is 4).
        at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:1073)
        at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:987)
        at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:982)
        at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:927)
        at com.mysql.jdbc.PreparedStatement.checkBounds(PreparedStatement.java:3709)
        at com.mysql.jdbc.PreparedStatement.setInternal(PreparedStatement.java:3693)
        at com.mysql.jdbc.PreparedStatement.setString(PreparedStatement.java:4544)
        at com.cypherx.xauth.PlayerDataHandler.storeData(PlayerDataHandler.java:56)
        at com.cypherx.xauth.PlayerManager.protect(PlayerManager.java:156)
        at com.cypherx.xauth.listeners.xAuthPlayerListener.onPlayerJoin(xAuthPlayerListener.java:71)
        at sun.reflect.GeneratedMethodAccessor294.invoke(Unknown Source)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.lang.reflect.Method.invoke(Method.java:616)
        at org.bukkit.plugin.java.JavaPluginLoader$1.execute(JavaPluginLoader.java:301)
        at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:62)
        at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:441)
        at net.minecraft.server.ServerConfigurationManager.c(ServerConfigurationManager.java:132)
        at net.minecraft.server.NetLoginHandler.b(NetLoginHandler.java:121)
        at net.minecraft.server.NetLoginHandler.a(NetLoginHandler.java:87)
        at net.minecraft.server.Packet1Login.handle(SourceFile:68)
        at net.minecraft.server.NetworkManager.b(NetworkManager.java:229)
        at net.minecraft.server.NetLoginHandler.a(NetLoginHandler.java:47)
        at net.minecraft.server.NetworkListenThread.a(NetworkListenThread.java:61)
        at net.minecraft.server.MinecraftServer.w(MinecraftServer.java:554)
        at net.minecraft.server.MinecraftServer.run(MinecraftServer.java:452)
        at net.minecraft.server.ThreadServerApplication.run(SourceFile:490)
    
     
  18. Offline

    Jordydaman

    This plugin stops my client side world edit mod working?
     
  19. Offline

    CypherX

    Updated to version 2.0.2 to fix the "Parameter index out of range (5 > number of parameters, which is 4)" error message. Blame the idiots who wanted an alternative to MySQL.

    Dooderdo - Good eye.
     
  20. Offline

    aehoooo

    Funniest thread on this forum.
     
  21. Offline

    Zachary_

    Hey CypherX,
    How can I change the hashing algorithm? I see it's like Default(0) Whirlpool(1) Sha(2) etc in the code. I'm trying to import my AuthMe SHA256 database and noticed you had it in your todo list. Is there an option to enable this SHA256 used by AuthMe?
    Regards,
    Zachary

    EDIT I can recompile if there's an easy way to enable it in PasswordType.java :)
     
  22. Offline

    Danielk0703

    @CypherX Sry but i dont want a MySQL database... the h2 is easier and very comfortable! (and this is the only plugin who has this local database)
     
  23. Offline

    CypherX

    If you want to do it manually, the accounts table in the database has a `pwtype` column where the hashing algorithm for the password is stored. So what you would do is import the player names and passwords from AuthMe and set `pwtype` to 4 for every row. An automatic importer will be made available when I have time to create one.

    Also, thanks for editing your post.
     
  24. Offline

    AHgpeu

  25. Offline

    ChemicallyGodly

    Linux MySQL + administrating MySQL
    Windows MySQL is dumb easy

    im not updating im using as a new plugin and it throws a error trying to access the sessions table in mysql but it didn't create one also theres an event error when it cant get food level change

    if you wanna see errors ask

    EDIT by Moderator: merged posts, please use the edit button instead of double posting.
     
    Last edited by a moderator: Jul 17, 2016
  26. Offline

    Hydrosis

    He's gunna have to see the error log to help you fix it :p It helps him pinpoint the location of the error.
     
  27. Offline

    winter4w

    This did not work when I went to 1.2.3 it came with this SQL error and did not work at all the server got hacked and greifed let me know when you fix it so I can update :)
     
  28. Offline

    CypherX

    Just because it doesn't work for you doesn't mean it's broken. It means you failed to set it up correctly.
     
    sharkale likes this.
  29. Offline

    Noozen

    I would be grateful if You, or someone else could explain why it just doesn't want to work for me.

    When I install the plugin, create the database, and change default values in config file to correct ones, after I start the server for the first time (or any time) it just claims that it couldn't connect to MySQL (Wrong password, even though I am absulutely sure that it is correct). Additionally, since it may be important: I am running WAMP using mysql already so maybe it is just in conflict with that? + this isn't only error, it is just the one that looks like a cause to the plenty of others.

    While wrting this post, another thing happend, I tried reinstalling xAuth, and forgot to configure it, and it worked just like that! Not in MySQL mode, but h2 (which isn't familiar to me at all). Even though it works, I still would liek to know why MySQL couldn't?
     
  30. Offline

    winter4w

    Ok well the 1.1 works but when I go to 1.2.3 it dont :( I did make a second test server to see if it works and it does but when I upload it to the host it dont :( I will try again later and also where do I download h2 because I think it is outdated
     
  31. Offline

    ChemicallyGodly

Thread Status:
Not open for further replies.

Share This Page