Security Notice: If you use a version 0.16.X version, update immediately to 0.16.5+ or disable the change password command. 0.16.X fixed this security bug. Older versions of 0.16.X are not affected.
A Sponge minecraft server plugin for second authentication. It has a built-in
Do you want to let your players protect their account (from hackers/login stealers) and keep playing while the session server is down. You can use this little plugin. You can protect your account with a password you choose or with a time based password created from a secret key, generated just for you.
/register <password> <password> - Registers using a specific password
/register - Generates your secret code for TOTP
/login <password/code> - Login using your password or time based code
/logout - Logs you out
/flexiblelogin - Displays plugin name and version
# Algorithms for hashing user passwords. You can also choose totp
# Should the plugin login users automatically if it's the same account from the same IP
# Database configuration
# Database name
# Password in order to login
# Path where the database is located. This can be a file path (h2/SQLite) or an IP/Domain(MySQL)
# Port for example MySQL connections
# SQL server type. You can choose between h2, SQLite and MySQL
# Username to login the database system
Github - Source Code
Please leave star on Github. Feel free to clone, fork or contribute to this repository.
This is a complete new project, so many features can be added.
TOTP Key generation (/register)
Android App Google Authenticator (IOS App exists too)
You can see there a time generated code which can be used for the login process. (/login
Additionally it display your user account name and the server ip.