Changed
- Updated the bStats statistics library from
3.1.0to3.2.1Fixed
- Fixed a startup crash that could happen when other plugins on your server also use the bStats statistics library.
Added
- Added support for AuthMe TOTP 2FA. Players who have TOTP enabled through AuthMe will now be asked to enter their 6-digit authenticator code after entering the correct password.
- Added a new TOTP verification dialog for players using two-factor authentication.
- Added new TOTP text options in
config.yml:
totp.titletotp.bodytotp.labeltotp.verify-buttontotp.cancel-button- Added new translation messages for TOTP errors:
totp.empty-codetotp.invalid-codetotp.service-unavailable- Added TOTP-related translations to all 10 supported language files.
- Added separate version tracking for translation files, so
messages-versionis now handled separately fromconfig-version- Updated
config-versionfrom7to9- Updated
messages-versionfrom6to7Changed
- Renamed
compatibility.authme6.modevalues to make them shorter and easier to read:
disable-authui-dialogs→disableforce-authui→force- Old config values are still supported as aliases for backward compatibility.
- Updated AuthMe 6 compatibility warnings, config comments, and debug logs to use the new
disableandforcenames.- Deprecated values are still accepted, but server owners are recommended to update them to the new shorter names.
- Improved version checking so translation files and main config files are checked using their own correct version keys.
Improved
- Improved login flow for players using AuthMe TOTP 2FA.
- Improved cleanup when players disconnect during the TOTP login step to help prevent unnecessary stored login state.
- Improved config/version warning messages to show the actual filename and version key instead of using a generic warning message.
- Improved backward compatibility for existing AuthMe 6 compatibility settings.
Fixed
- Fixed a security issue where players with AuthMe TOTP 2FA enabled could previously log in through AuthUI without entering their authenticator code.
- Fixed the login flow so players with TOTP enabled must successfully verify their 6-digit code before being logged in.
- Fixed incorrect version warnings such as
Config version is outdated: 7 (current: 8)appearing for translation files even when the main config version was correct.- Fixed translation files being compared against the wrong current version value.
Added
- Added compatibility support for AuthMe 6.0.0+, which includes its own native login/register dialog system.
- AuthUI can now detect whether the server is using AuthMe 5.x, AuthMe ReReloaded Fork, or AuthMe 6.0.0+.
- Added a startup console message showing which AuthMe variant was detected.
- Added a new config option to control how AuthUI should behave when AuthMe 6.0.0+ native dialogs are detected:
compatibility.authme6.mode: warn- AuthUI dialogs will still be shown normally, but a warning will be logged on server startup/reload so admins can choose which dialog system to use.compatibility.authme6.mode: disable-authui-dialogs- AuthUI will not automatically show its login/register dialogs, allowing AuthMe native dialogs to handle the login/register flow instead. Other AuthUI features such as jukebox, teleport, and audit logging will continue to work.compatibility.authme6.mode: force-authui- AuthUI dialogs will continue to be used normally, with a warning recommending admins to disable AuthMe native dialogs.- Added validation for the new AuthMe 6 compatibility mode config. Accepted values are
warn,disable-authui-dialogs, andforce-authui.- Updated the configuration version from
6to7.Changed
- Improved compatibility handling when AuthMe 6.0.0+ is installed, helping prevent duplicate login/register dialogs from appearing at the same time.
- AuthUI will now show a clearer compatibility warning during server startup or plugin reload when AuthMe 6.0.0+ is detected.
- The warning is only shown on startup/reload and will not spam the console every time a player joins.
- Existing login and register behavior remains unchanged in this version to avoid breaking current server setups.
- Added internal preparation for future AuthMe 6 improvements once a safer public integration method is available from AuthMe.
Fixed
- Plugin crash on startup when using AuthMe ReReloaded Fork: AuthUI now loads correctly alongside AuthMe ReReloaded Fork — previously the plugin would fail to enable entirely on servers running this specific AuthMe variant
Added
- AuthMe ReReloaded Fork Support: Now compatible with AuthMe ReReloaded (Fork) — automatically detected via version string at startup, fully compatible with no API changes required
- ItemsAdder Font Images in Dialogs: You can now use
:image_name:/%img_image_name%in all dialog text fields including title, body, labels, and buttons across Login/Register/Recovery DialogsFixed
NoClassDefFoundErrorwith AuthMe ReReloaded (Critical): The fork loadsch.jalu:injectorthrough an isolated classloader inaccessible to AuthUI — fixed by rewritingAuthMeServiceAccessorto use pure Reflection instead of a direct import- Folia Incompatibility (Critical): Several files were still calling
Bukkit.getScheduler()directly, causingUnsupportedOperationExceptionon all Folia servers — fully resolved acrossLoginDialogFactory,RegisterDialogFactory,AuthMeListener,LogoutListener,AsyncExecutor, andEmailCooldownListener- Config Structure Verification Bug: Fixed variable format issues in
ConfigLoader/ConfigManagerand removed non-functional translation stubs from all 10 language files — bumpedmessages-version: 5 → 6
Fixed
- Bug in the config.yml file during structure verification loading.
Changed
- Modify the code to change the variable format.
- Update messages-version and config-version: 5 > 6
Removed
- Removed some functions in the translation file that do not work correctly.
Added
- Added a config option
autoShow.disableDialogForLegacyPlayersto automatically disable dialogs for players below version 1.21.7 when we detect ViaVersion, ViaBackwards, and ViaRewind- Added audit logs for blocked registrations and included the
register.ip_limit_reachedmessage across all languages.Fixed
- Enforced AuthMe's IP registration limits to block bypass attempts.
Added
- Folia Support
- 4 New Languages (German, Russian, Japanese, Korean)
Improved
- Includes a platform detection system.
- Automatically integrate the rate-limit system with AuthMe. You can adjust it directly from the AuthMeReloaded
config.ymlfile.Removed
- Remove the rate-limiter system from
config.ymland translations file.
