[INACTIVE] AuthMe v0.72 - High Performance Authorization plugin - MySQL/flatfile support[740]

Discussion in 'Inactive/Unsupported Plugins' started by fabe, Jan 22, 2011.

  1. Offline

    fabe

    Hello guys,

    the last days I have made an alternative authorization plugin for Bukkit, called AuthMe.
    AuthMe prevents people, which aren't logged in, from doing stuff like placing blocks, moving, typing commands or seeing the inventory of the current player.
    The possibility to set up name spoof protection kicks players with uncommon long or short playernames before they could actually join.
    Login Sessions make it possible that you don't have to login within a given time period.

    Each command and every setting can be enabled or disabled by a easy structured config file.
    And if you don't prefer English or don't like my translations ;) you can easily edit nearly every message sent by AuthMe!

    Nearly every version gots tested for stability and lag-ness on my 50+ player server.

    In the next coming days I will add some new features, just make some suggestions!

    Features:
    • Following protections are activated, when a player is not logged in:
      • Movement protection
      • Block placement & damage protection
      • Inventory protection
      • Interaction protection (blocks usage of doors, chests)
      • Health protection
      • Commands & chat protection
    • Playername spoof protection
    • Protection against "Logged in from another location" messages
    • Login sessions
    • Editable settings & messages
    • MySQL and flatfile support
    • Custom MySQL tables/columns (useable for forums, other scripts)
    • Two data caches for best performance
    Commands:
    • Player side:
      • /register <password>
      • /login <password> -Alias: /l <password>
      • /logout
      • /changepassword <oldpassword> <newpassword>
      • /unregister <password>
    • Op and Console (without / ) side:
      • /authme reloadconfig
      • /authme reloadcache
      • /authme toggleregs
      • /authme deleteauth <playername>
    Installation:
    1. Download it.
    2. Put the downloaded jar file into your /plugins folder
    3. Run the server to generate configs.
    4. Edit the config on any way you wish.
    5. Following datasources are possible: flatfile or mysql
    6. Restart the server.
    7. If you have choosen MySQL as datasource, your table will be generated automatically, if it doesn't exist yet
    8. Done!
    Version History:

    0.72
    o Fixed issues occuring on CB #670
    o Added /logout command
    o Added the possibility to disable joining of players that aren't registered

    0.71
    o Cleaned up player cache code (performance!)
    o Changed the way of fixing the continuous player falling
    o Fixed BlockIgnite error messages
    o Fixed door/chest protection
    o It's now impossible to register/update/remove an account when updating the datasource had failed
    o Added editable messages
    o Default colors of messages are now stored in message file and can easily be changed

    Older versions (open)

    0.7
    o Compatibility with CraftBukkit version 602
    o Op commands are now included in a general /authme command
    o Possibility to reload config under runtime
    o Fixed errors on reloading the plugin
    o Prevention against "Logged in from another location" messages
    o Fixed NullPointerException Errors
    o Possibility to add NPC names to config (to add compatibilty with NPC plugins)
    o Registrations can now be toggled by Ops
    o More debug messages on MySQL errors
    o Player sessions will now be created on player disconnect
    o Possibility to allow commands for non-registered/non-loggedin players
    o Custom fields on /register when using MySQL as datasource e.g. E-Mail
    o Kick player after x seconds, if he is not logged in
    o Op-Commands are now accessable via console
    o Commented config
    o Fixed players stuck in blocks on join
    o A lot more minor bug fixes
    0.61
    o Fixed MySQL loading users wrongly and making them unregistered
    o Fixed continuously falling players on non-authenticated state
    0.6
    o Whole new cache system for online players and offline players (performance boost!)
    o New datasource: MySQL support (beta)
    o MySQL can use custom tables, colums
    o Log messages on command/login/registration/session-login
    o Non-authenticated player can't use doors, chests or get drops
    o Fixed surviving bug
    o Fixed player health protection
    o Alias for /login command: /l <password>
    o Settable interval between alerts
    o Settable kick on wrong password
    o Settings for unregistered players (allow chat, allow walk around spawn)
    o Possibility to disable cache (useful for live-editing the datasource)
    o CraftBukkitUpToDate support (soon!)
    0.5
    o Editable messages
    o Added /changepassword command
    o Added /unregister command
    o Added /resetauth command
    o Added /reloadauths command
    o Added option to disable forced registration
    0.42pre (unreleased)
    o Login/Register commands don't show up on console anymore
    o Waaay better performance with 50+ players online
    o Login sessions
    o Config settings
    0.41pre
    o Fixed incompatibility with plugins that use the onPlayerMove Event
    o Better performance
    0.40pre
    o Location of auth.db has changed
    o New Authentication Cache (Maybe fixes memory issues)
    o Fixed possible missing inventories after server restarts
    0.3
    o Compatibility with newer Bukkit versions
    o Fixed possible item duplication bug
    o Fixed command protection
    0.2
    o Fixed some error messages, when a player is leaving
    0.1
    o Release



    If you like my plugin and want support my work, fell free to donate. Thanks.
    [​IMG]

    Download AuthMe V0.72
    Help developing AuthMe via GitHub
     
    Fuppiz, tombik, sbeex and 6 others like this.
  2. Offline

    ksevelyar

    Could you please add sessions' saving after server restart?
     
  3. Offline

    fabe

    Thanks for informing. I will consider that in the next versions.
    This is hard to add except bukkit will make it possible to add variables, that won't be cleaned on restart.
     
  4. Offline

    Umbra

    Thanks for this update. Will check this asap.
     
  5. Offline

    snatch182

    V 0.72 works fine with newest bukkit version?
     
  6. Offline

    lolligertyp

    *facepalm*
     
  7. Offline

    contex

    You do have Persistance that you can use now, it saves data between restart and so on.
     
  8. Offline

    snatch182

    :D raports not always get ok with reality
     
  9. Offline

    Netto Hikari

    Thanks for your effort. Confirming it works as it should on #670.
     
  10. Offline

    Teteros

    Thanks for this great plugin!
     
  11. Offline

    Malzbier

    Testing on 670 build and it and it do not work propperly.
    A non registert player can use commands while server is on prtecting the chat and the commands .

    Code:
    2011-04-10 07:03:26 [INFO] Loaded world: City
    2011-04-10 07:03:29 [INFO] [Minecart Mania] Loading Sensor Data.
    2011-04-10 07:03:37 [SEVERE] Nag author: 'Hybris95' of 'MultiChannel' about the following: onPlayerCommandPreprocess has been replaced with a new signature, (PlayerCommandPreprocessEvent)
    2011-04-10 07:03:38 [INFO] [AuthMe] Player Malzbier logged in!
    2011-04-10 07:03:38 [INFO] [AuthMe] Player 321bjoern logged in!
    2011-04-10 07:03:54 [INFO] ?9[PLAYER_COMMAND] Giuseppe1990: /time night
    2011-04-10 07:03:59 [INFO] ?9[PLAYER_COMMAND] Giuseppe1990: /time day
    
     
  12. Offline

    fabe

    I tested command on an non registered account and everyone was blocked. Maybe you should give it a try and disable the MultiChannel plugin.
     
  13. Offline

    Schlumpf

    Thx, for updating!
    Works fine on Bukkit Version #670 at my Server:)
     
  14. I get these errors while attacking a NPC (plugin: http://forums.bukkit.org/threads/fu...paths-aggro-loot-guard-shops-quest-chat.9186/)

    Show Spoiler
    2011-04-11 02:34:21 [SEVERE] Could not pass event ENTITY_DAMAGE to AuthMe
    java.lang.NullPointerException
    at com.bukkit.fabe.AuthMe.PlayerCache.PlayerCache.getLastAlert(PlayerCache.java:68)
    at com.bukkit.fabe.AuthMe.PlayerCache.PlayerCache.isAlertNeeded(PlayerCache.java:76)
    at com.bukkit.fabe.AuthMe.AuthMe.checkAuth(AuthMe.java:611)
    at com.bukkit.fabe.AuthMe.Listener.AuthMeEntityListener.onEntityDamage(AuthMeEntityListener.java:30)
    at org.bukkit.plugin.java.JavaPluginLoader$41.execute(JavaPluginLoader.java:452)
    at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:59)
    at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:255)
    at net.minecraft.server.EntityHuman.d(EntityHuman.java:504)
    at net.minecraft.server.NetServerHandler.a(NetServerHandler.java:722)
    at net.minecraft.server.Packet7UseEntity.a(SourceFile:33)
    at net.minecraft.server.NetworkManager.a(NetworkManager.java:198)
    at net.minecraft.server.NetServerHandler.a(NetServerHandler.java:72)
    at net.minecraft.server.NetworkListenThread.a(SourceFile:100)
    at net.minecraft.server.MinecraftServer.h(MinecraftServer.java:368)
    at net.minecraft.server.MinecraftServer.run(MinecraftServer.java:283)
    at net.minecraft.server.ThreadServerApplication.run(SourceFile:375)
     
  15. Offline

    WolwX

    there is any possibilities to have the source code ?

    I want to learn by checking it, and I want to add a function of immunity for x secondes after login, so your immunity into this plugin will help me
     
  16. Offline

    antfry256

    Is it possible you could update to include ban if to many bad attempts of the password instead of kick
    so like an option of which one we would like
     
  17. Offline

    fabe

    Try to add the name of the bot as an unrestricted player in config.
    Due to the huge amount of requests, I decided to publish the source code (see mainpost). Anyway, in the coming months I won't have time to make further developments. Learn from the source and make the best out of it. ;)
     
    WolwX likes this.
  18. Offline

    The PC Tech Guy

    I don't think it's possible to ban using Bukkit yet... And what good would that do? Just because someone else attempted to use his/her account, he/she no longer can play on that server? Unless you are talking about an IP ban - but people make mistakes, so he'd have to implement a strike system...

    If it's an IP ban you're talking about, it's a little too easy to get around that. Unless the developer has time, I don't need (nor want to see, seeing that this plugin is complex enough in its configuring) a IP-based strike system. Having to login and get kicked repeatedly just to brute force someone's password is tiresome enough.
     
  19. Oh right, forgot about that...
    Still, can't you just detect bots automatically ? I think mcMMO does it automatically.
     
  20. Offline

    tonihoks

    authme is posting me in server logevery time i use a plugin comman from izone citizen or command book or world edit please halp or give me a better login plugin but the other are shit this was the best xauth is the biggest shit
    2011-04-11 22:09:40 [SEVERE] Could not pass event ENTITY_DAMAGE to AuthMe
    java.lang.NullPointerException
    at com.bukkit.fabe.AuthMe.PlayerCache.PlayerCache.getLastAlert(PlayerCache.java:68)
    at com.bukkit.fabe.AuthMe.PlayerCache.PlayerCache.isAlertNeeded(PlayerCache.java:76)
    at com.bukkit.fabe.AuthMe.AuthMe.checkAuth(AuthMe.java:611)
    at com.bukkit.fabe.AuthMe.Listener.AuthMeEntityListener.onEntityDamage(AuthMeEntityListener.java:30)
    at org.bukkit.plugin.java.JavaPluginLoader$41.execute(JavaPluginLoader.java:452)
    at org.bukkit.plugin.RegisteredListener.callEvent(RegisteredListener.java:59)
    at org.bukkit.plugin.SimplePluginManager.callEvent(SimplePluginManager.java:255)
    at net.minecraft.server.EntityHuman.d(EntityHuman.java:504)
    at net.minecraft.server.NetServerHandler.a(NetServerHandler.java:722)
    at net.minecraft.server.Packet7UseEntity.a(SourceFile:33)
    at net.minecraft.server.NetworkManager.a(NetworkManager.java:198)
    at net.minecraft.server.NetServerHandler.a(NetServerHandler.java:72)
    at net.minecraft.server.NetworkListenThread.a(SourceFile:100)
    at net.minecraft.server.MinecraftServer.h(MinecraftServer.java:368)
    at net.minecraft.server.MinecraftServer.run(MinecraftServer.java:283)
    at net.minecraft.server.ThreadServerApplication.run(SourceFile:375)
     
  21. Offline

    antfry256

    IPBan because xAuth has that feature
     
  22. Offline

    Black_Jack

    how to restrict | chars in nickname?
     
  23. Offline

    SpeAroX

    hello, i have some problem with this plugin.
    First i set up the plugin and i make register php to mysql the register work fine
    here the 1st problem when i register and have user on mysql the plugin no make refresh and i no can log in only afther reload server
    2nd problem: i write the password ojkl and when i write this pass on game ojkl i get invalid password...

    any one can help me?
     
  24. The passwords are stored encrypted, I belive it's md5, if you're using PHP to register, use md5() function on the password before inserting it into mysql.
     
  25. Offline

    SpeAroX

    Very thanks i edited the php. And for the faster refresh? you can help when i register i no can log in only afther reload server
     
  26. Offline

    Donny

    any way to convert xauth's auths.txt to a compatible?
     
  27. Offline

    DerET

  28. The message is sent on intervals, if you don't login it will keep on sending it... you can change the interval in config.
     
  29. Offline

    fabe

    I think it's possible to detect them automatically, but the plugin creators won't open other developers the possibility for checking bots in a much more easier and efficient way. Until there are no acceptable checks, I won't change something.
    In my opinion ip bans are needless. How many people will brute a password in the Minecraft client itself?!
    Such character should be restricted by default.
    If you had a more exact look on the config file, you would know, that you have to disable the cache.
    Just give it a try and rename the auths.txt file to auths.db, if you've luck, it is in the same file format.
     
  30. Offline

    Donny

    NVM got it. Let me try =o

    edit: no luck
     
  31. Offline

    DerET

    It was sent without my given interval (15 seconds) between. So I think it's a bug caused by motd plugins.
     

Share This Page