LoginK
Enterprise-grade authentication system for offline and online Minecraft servers.
Paper / Spigot 1.18+ Java 17+ BungeeCord & Velocity Floodgate / Geyser SQLite · MySQL · PostgreSQL
[RULE]
01 — Built-in Web Admin Panel
Embedded directly inside the
.jar — no Node.js, no external hosting, no extra setup. Just open a port and access it from any browser.- Player management: ban, block or kick players in real time without ever entering the server.
- Password management: securely reset player passwords from the panel using Argon2id hashing.
- Advanced search: look up players by name or UUID, view detailed profiles, session history and account status.
- Live statistics: monitor active sessions, security metrics and system health in real time.
- Full protection: JWT login, rate limiting and configurable IP whitelist.
02 — In-Game 2FA via QR Map
The QR code is generated directly inside Minecraft as a map item. Players scan it with Google Authenticator or Authy without ever leaving the client. The map self-destructs after use and cannot be duplicated or shared.
[RULE]
03 — Enterprise-Level Security
- Argon2id: PHC winner algorithm, resistant to brute-force and GPU attacks. Industry standard.
- Visual captcha: players must complete a captcha on registration to block automated account creation.
- Antibot with auto-lockdown: detects automated behavior and activates lockdown mode to protect your server.
- CIDR/ASN blocking: block entire IP ranges or autonomous systems, not just individual addresses.
- Dynamic trust score: each player has a trust score from 0 to 100% that adjusts based on their behavior.
- UUID protection: prevents identity spoofing for Premium and Bedrock players via real-time UUID validation.
04 — Multi-Device Sessions
Players can see every device connected to their account and revoke individual sessions or all of them at once. Full account access control, just like Netflix or Google.
05 — Email Account Recovery
Native SMTP integration compatible with Gmail, Outlook or any custom mail server. When a player loses access to their account, they receive an OTP code by email and recover it without any admin intervention.
06 — Login Streak Rewards
Automatically rewards players who log in on consecutive days. Fully configurable — define the command that runs for each reward: economy, permissions, messages or anything else.
07 — Automatic Premium & Bedrock Login
Mojang Premium players and Bedrock players (Floodgate/Geyser) authenticate instantly and transparently. No password prompt, no extra steps, maximum security.
08 — Player Commands
| Command | Description |
|---|---|
| /register | Create a new account |
| /login | Log in to your account |
| /changepassword | Change your current password |
| /2fa setup | Enable 2FA — receive the QR code as an in-game map |
| /2fa verify | Verify your 2FA code |
| /2fa disable | Disable two-factor authentication |
| /sessions list | View all active sessions |
| /sessions revoke | Revoke a specific session |
| /sessions revoke-all | Revoke all active sessions |
| /email add | Link an email address to your account |
| /email verify | Verify your linked email address |
| /email recover | Recover your account via email |
09 — Admin Commands
| Command | Description |
|---|---|
| /logink admin panel | Open the in-game admin panel (GUI) |
| /logink admin info | View a player's detailed profile |
| /logink admin reset-pass | Reset a player's password |
| /logink admin reset-2fa | Disable a player's 2FA |
| /logink admin ban | Ban a player |
| /logink admin unban | Unban a player |
| /logink admin sessions | View a player's active sessions |
| /logink admin lockdown | Toggle lockdown mode on or off |
| /logink admin block-cidr | Block an IP range (CIDR notation) |
| /logink admin bedrock-list | List all registered Bedrock players |
| /logink reload | Reload the plugin configuration |
[RULE]
10 — Permissions
| Permission node | Description |
|---|---|
| logink.admin | Full access to all admin commands |
| logink.command.login | Allow use of /login |
| logink.command.register | Allow use of /register |
| logink.command.2fa | Allow use of /2fa |
| logink.command.sessions | Allow use of /sessions |
| logink.command.email | Allow use of /email |
| logink.bypass.auth | Bypass authentication entirely |
11 — Compatibility
| Category | Support |
|---|---|
| Platform | Paper / Spigot 1.18+ |
| Java | 17+ |
| Database | SQLite · MySQL · PostgreSQL |
| Proxy | BungeeCord · Velocity (with Redis) |
| Bedrock | Floodgate · Geyser |
