|
|
| (未显示6个用户的18个中间版本) |
| 第1行: |
第1行: |
| {{Bukkit Plugin Infobox | | {{Bukkit Plugin Infobox |
| |版本=2.13.1 | | |image=[[文件:CLogin.png]] |
| | |版本=7.24.2 |
| |前置插件=CrazyCore | | |前置插件=CrazyCore |
| |兼容服务端版本=1.4.5-1.7.2 | | |兼容服务端版本=1.2.3-1.13 |
| | |源地址=https://dev.bukkit.org/bukkit-plugins/crazylogin/ |
| }} | | }} |
| CrazyLogin是一款支持Cauldron(旧称mcpc-plus)的登录插件。(未完成)
| | '''CrazyLogin'''是一款服务器密码安全Bukkit插件。 |
|
| |
|
| == 关于配置文件config.yml == | | == 概述 == |
| version: X.Y
| | 给每个玩家添加属于他们自己的密码。这样可以使你的服务器远离攻击。 |
| 此插件的版本可以在这里找到
| | |
| https://github.com/ST-DDT/CrazyLogin/blob/master/src/main/resources/plugin.yml
| | 请注意: |
| 提示信息头部 (它不能被任意一种reload所改变(也就是说,只能重启))
| | * 那些保护的安全性只跟密码的安全性一样。 |
| chatHeader: '&C[&ACrazyLogin&C] &F'
| | * 那些没有开正版验证的服务器还是没有那么安全的。 |
| database:
| | * 我的插件不对非正版验证的服务器有限制,因此你可以安装这个插件在两种类型的服务器上。(正版验证和非正版验证的服务器) |
| 保存类型↓ 可以为: 'MYSQL'(MYSQL数据库),'FLAT'(文件name.db),'CONFIG'(不明) | | |
| saveType: FLAT
| | ==特性== |
| 是否在关服时写入数据
| | * 这个插件支持两种模式。二级密码和必须输入密码。 |
| saveOnShutdown: true
| | * 二级密码:玩家可以自行创建一个二级密码,如果需要的话(一个保护重要权限操作的密码) |
| CONFIG 数据记录模式配置 | | * 必须输入密码:玩家在登录的时候必须输入密码。 |
| CONFIG:
| | * 任何没有登录的玩家都不能聊天,建造,PVP,丢弃物品,移动和传送。 |
| path inside config.yml
| | * (可选)可以设置为显示或隐藏加入和退出消息,还可以隐藏那些还没有登录的玩家。 |
| path: accounts
| | * 给予密码多重的加密算法 |
| columns:
| | * 支持AuthMe和xAuth插件 |
| name: name
| | * 整合好的配置文件,并且支持MySQL和SQLite-Database. |
| password: password
| | * 整合好的登录支持。 |
| ips: ips
| | * 整合好的并且支持CrazyPipes. |
| lastAction: lastAction
| | * 支持会话(登录会话) |
| FLAT 数据记录模式配置
| | * 支持单独的会话 |
| FLAT:
| | * 安全的登录(传送到主城直到玩家登录). |
| 数据库文件在插件config.yml所在目录中,下面可以更改文件名
| | * 如果你没有登出并且“自动登录”是禁止的,你可以从同一个IP重连服务器。 |
| filePath: accounts.db
| | * 可以在游戏种选择和使用权限来阻止玩家注册。 |
| MYSQL 数据库记录配置
| | * 可以选择强制隐藏玩家的确实位置直到登录成功。 |
| 更多MYSQL配置戳这里 → [http://dev.bukkit.org/bukkit-plugins/crazycore/pages/mys-ql/ 这里]
| | * 这些可以修复玩家在没登录的时候就因为飞行或者异常的移动而被AntiCheat插件踢出服务器。 |
| MYSQL:
| | * 可以设置在同一个IP下面最大的用户注册数量和最大的用户在线数量 |
| connection:
| | * 指令被完全禁止直到登录成功(白名单可以设置不禁止) |
| host: localhost 链接数据库地址
| | * 可以禁止访客指令、访客聊天和访客加入。 |
| port: '3306' 端口
| | * 可以用权限来警告玩家,如果有些人登录失败或者执行了某个他不能执行的命令。 |
| dbname: Crazy 数据库名
| | * 可以设置踢出不注册、不登录、登录失败或者尝试执行一个命令的玩家。 |
| user: root 用户名
| | * 可以设置临时Ban某个玩家如果他没有登录或者登录失败。 |
| password: '' 密码
| | * 支持管理员登录和Token登录。 |
| tableName: CrazyLogin_accounts 表的名字
| | * 当玩家离开服务器时,自动使用登出指令。 |
| 是否在没有玩家在线时让数据加载(这会消耗RAM!).
| | * 可以使用删除某玩家的密码的指令(这样会强制让玩家换密码) |
| 设置为false来使插件RAM占用减少
| | * 可过滤和可排序的用户列表 |
| cached: true
| | * 玩家信息(名字,IP地址,连接状况等等) |
| 如果下面的选项设置为true,那么在玩家登陆时将不会更新数据库,
| | * 可以删除没有激活的用户(没有注册密码的账户) |
| 通常在多个服务器使用同一数据库时派上用场
| | * 提供PluginAPI(插件开源) |
| static: false
| | * 支持外置登录(可以禁止) |
| columns:
| | |
| name: name
| | == 配置&选项 == |
| password: password
| | 由于内容过多,请前往[[http://mineplugin.org/CrazyLogin/配置文件 CrazyLogin配置文件]] |
| ips: ips
| | |
| lastAction: lastAction
| | == 指令及其权限 == |
| SQLITE 数据库配置
| | 有问题? |
| SQLITE:
| | 看一看这个指令帮手CommandHelper Extension |
| connection:
| | |
| path: plugins/CrazyLogin/accounts.sqlite sqlite路径
| | == Factions(帮派)== |
| tableName: CrazyLogin_accounts 表名
| | 帮派用了一些非常特殊的命令,有些甚至可以忽略默认的指令保护。使用这个插件直到帮派插件修复了那个漏洞:CrazyLogin_FactionProtection |
| 是否在没有玩家在线时让数据加载(这会消耗RAM!).
| | |
| 设置为false来使插件RAM占用减少
| | == 迁移数据库 == |
| cached: true
| | 你可以用"/crazylogin mode database <Type>"来转换你的数据库。这可能要很多时间如果你的数据非常庞大。你可以用这个插件来转换你的数据库到一个Mysql数据库脚本:CrazyLogin_Flat_2_MySQL(注意:这个文件至今为止没有被任何Bukkit服务端核心的工作人员使用!)你只用复制这个.jar到你的accounts.db文件然后执行这个.jar插件。这样你可以创建一个accounts.db的Sql数据库文件。 |
| 如果下面的选项设置为true,那么在玩家登陆时将不会更新数据库,
| | |
| 通常在多个服务器使用同一数据库时派上用场
| | == 相关插件 == |
| static: false
| | * [http://dev.bukkit.org/client-mods/crazyloginautologin/ CrazyLoginAutoLogin] (外置登录) |
| columns:
| | * [http://dev.bukkit.org/bukkit-plugins/crazycaptcha/ CrazyCapcha] (验证码) |
| name: name
| | * [http://dev.bukkit.org/bukkit-plugins/crazyloginfilter/ CrazyLoginFilter] (IP地址加入过滤器) |
| password: password
| | * [http://dev.bukkit.org/bukkit-plugins/crazycore/pages/crazy-login-rank/ CrazyLoginRank] (Join Ranking) |
| ips: ips
| | |
| lastAction: lastAction
| | [[Category:安全]] |
| 设置在登录时是否一定需要密码或令玩家在想登陆时输入密码,玩家没有登录(或注册)时不能聊天、合成、破坏/创建方块、扔掉/拾取物品、移动/传送或瞬移、打开容器
| |
| 权限节点无效,op或者玩家一定需要输入密码或可选地输入密码
| |
| alwaysNeedPassword: true
| |
| if true you have to repeat the new password if you want to change it.
| |
| Ex: /register {OldPassword} <NewPassword> <NewPassword>
| |
| confirmNewPassword: false
| |
| if true you have to insert your old password if you want to change it.
| |
| Ex: /register <OldPassword> <NewPassword> {NewPassword}
| |
| confirmWithOldPassword: false
| |
| if true if everyone is logged in protection will be disabled to decrease overall performance usage,
| |
| but increase join, login and quit performance
| |
| dynamicProtection: false
| |
| hides LOGIN.FAILEDWARN & COMMAND.EXPLOITWARN messages
| |
| INFO: some other warn messages will be hidden in the future too.
| |
| WARNING: you won't notice any (blocked) attempt to hack the server (until he managed to do so).
| |
| hideWarnings: false
| |
| you have to login again after being inactive/offline for at least x seconds
| |
| when using a new ip you are logged out automatically
| |
| autoLogout: 3600
| |
| when enabled you are kicked when having an account and you did not login after x seconds (-1=disabled)
| |
| autoKick: -1
| |
| when enabled you are banned for x seconds after being kicked for waiting to long to login (-1=disabled)
| |
| autoTempBan: -1
| |
| when enabled you are kicked when not having an account after x seconds (-1=disabled)
| |
| autoKickUnregistered: -1
| |
| when enabled you are kicked when failing login x times (-1=disabled)
| |
| autoKickLoginFailer: 3
| |
| when enabled you are banned for x seconds for failing to login (-1=disabled)
| |
| autoTempBanLoginFailer: -1
| |
| when enabled you are kicked when using a none whitelisted command x times. (-1=disabled)
| |
| autoKickCommandUsers: false
| |
| when enabled you are banned for x seconds for executing none whitelisted commands. (-1=disabled)
| |
| autoTempBanCommandUsers:
| |
| when enabled you cannot execute a command without having registered. (works with autoKickCommandUsers) (true/false)
| |
| blockGuestCommands: true
| |
| when enabled you cannot chat without having registered. (true/false)
| |
| blockGuestChat: false
| |
| when enabled you cannot join without having registered an account (use with mysql databases) (true/false)
| |
| blockGuestJoin: false
| |
| guest data are removed when leaving the server
| |
| this include all CrazyPlugins, playerfile (if enabled), +more (if commands are setup)
| |
| after removing searching for the playersname in all files of that server will have 0 results. (Best Case)
| |
| removeGuestData: false
| |
| if set to true ingame registrations are disabled (command and pluginChannel) (true/false)
| |
| disableRegistrations: false
| |
| if set to true you cannot use adminlogin command (true/false)
| |
| disableAdminLogin: false
| |
| if set to true you cannot use tokenlogin command (true/false)
| |
| disableTokenLogin: false
| |
| when disabled request login/register messages are spammed every cancelled action, when enabled only every 5 or more seconds (true/false)
| |
| doNotSpamAuthRequests: false
| |
| only ask the player once to create a password (if alwaysNeedPassword=false) (true/false)
| |
| doNotSpamRegisterRequests: false
| |
| auth request are delayed for x ticks to prevent it from being displaced by other messages.
| |
| delayAuthRequests: 0
| |
| repeat requests every x ticks to prevent it from being displaced by other messages.
| |
| repeatAuthRequests: 200
| |
| these commands can be executed as guest (even if blockGuestCommands is enabled) or when not logged in
| |
| commandWhitelist:
| |
| - /l(ogin)?(\z| .*)
| |
| - /register(\z| .*)
| |
| - /language(\z| [a-z]{2,3}_[a-z]{2,3})
| |
| - /language select(\z| .*)
| |
| - /language list(\z| .*)
| |
| - /worldedit cui
| |
| the encryption alogrithm used to encrypt your passwords. http://dev.bukkit.org/server-mods/crazylogin/pages/encryption/
| |
| encryptor:
| |
| name: CrazyCrypt1
| |
| the minimum allowed password length.
| |
| minPasswordLength: 3
| |
| the minimum allowed password length for players with permissions.
| |
| protectedAccountMinPasswordLength: 7
| |
| block player join with an online players name (prevents Logged in from another location messages) (true/false)
| |
| forceSingleSession: true
| |
| bypass forceSingleSession when using the same ip (true/false)
| |
| forceSingleSessionSameIPBypass: true
| |
| activates the preLoginSecurity x ticks later (hideInventory / forceSaveLogin) (false/0, 1 , ...)
| |
| this is intended to allow customSpawns and joinRewards
| |
| delayPreRegisterSecurity: 5
| |
| activates the preLoginSecurity x ticks later (hideInventory / forceSaveLogin) (false/0, 1 , ...)
| |
| this is intended to allow customSpawns and joinRewards
| |
| WARNING: some hacked clients may be able to use that time to read the inventory/location
| |
| delayPreLoginSecurity: false
| |
| when enabled you are teleported to spawn until login if recieving damage. (true/false)
| |
| saveLoginEnabled: true
| |
| when enabled you are teleported to spawn until login. (true/false)
| |
| this fixes issues with AntiCheatPlugins whilte not logged in and being in mid air.
| |
| forceSaveLogin: false
| |
| custom saveLogin locations for each world
| |
| saveLoginLocations: {}
| |
| world:
| |
| x: 1500
| |
| y: -300
| |
| z: 0.1
| |
| this parameters are optional
| |
| world: world
| |
| yaw: 0
| |
| pitch: 0
| |
| when enabled your inventory is hidden until login. (true/false)
| |
| hideInventory: false
| |
| hide every player which isn't logged in. (true/false)
| |
| hidePlayer: false
| |
| hide chat from players who aren't logged in to avoid espionage. (true/false)
| |
| hideChat: false
| |
| Delay Join messages until login / hide Quit messages if not logged in. (true/false)
| |
| delayJoinQuitMessages: false
| |
| use the multilingual messages defined in the lang files. (true/false)
| |
| useCustomJoinQuitMessages: true
| |
| hide Password from Console (Player issues command: /login Password) (true/false)
| |
| INFO: This could bypass some command protections/mechanics from other plugins in very rare cases.
| |
| hidePasswordsFromConsole: false
| |
| maximum count of ips stored per player
| |
| maxStoredIPs: 5
| |
| maximum players allowed to play on your server at once
| |
| maxOnlinesPerIP: 3
| |
| maximum players allowed to register an account using the same ip on your server
| |
| maxRegistrationsPerIP: 3
| |
| automatically delete accounts that haven't been used for x days(-1=disabled)
| |
| WARNING: deletes all data belonging to this player (including those saved in other plugins; equals "/crazycore player delete <Player>")
| |
| autoDelete: -1
| |
| call special events (do not enable it, if you don't need it)
| |
| send raw passwords to other plugins when changing passwords
| |
| pluginCommunicationEnabled: false
| |
| you can move x blocks from the location you joined when not logged in
| |
| when set to 0 you cannot move/rotate
| |
| moveRange: 5.0
| |
| when enabled only default chars are allowed in a players name (true/false/[a-zA-Z0-9_]/...)
| |
| filterNames: true
| |
| check a players name case for its char case (true/false)
| |
| when enabled a player cannot join as "PLaYer" when he registered as "Player"
| |
| some encryptions may fail when a player has different char cases.
| |
| INFO: a player cannot bypass login by using an different name case at any time.
| |
| blockDifferentNameCases: false
| |
| minimun length of player names
| |
| minNameLength: 3
| |
| maximum length of player names (minecraft max is 16)
| |
| maxNameLength: 16
| |
| additional information about logging can be found here http://dev.bukkit.org/server-mods/crazycore/pages/logging/
| |
| logs:
| |
| Join:
| |
| path: false
| |
| console: false
| |
| Quit:
| |
| path: false
| |
| console: false
| |
| Login:
| |
| path: false
| |
| console: false
| |
| Account:
| |
| path: false
| |
| console: false
| |
| Logout:
| |
| path: false
| |
| console: false
| |
| LoginFail:
| |
| path: false
| |
| console: false
| |
| ChatBlocked:
| |
| path: false
| |
| console: false
| |
| CommandBlocked:
| |
| path: false
| |
| console: false
| |
| AccessDenied:
| |
| path: false
| |
| console: false
| |
| [[category:安全]] | |
