AuthMeReloaded 图标

Minecraft 服务端插件

AuthMeReloaded

The best authentication plugin for the Bukkit/Spigot API!

管理类工具类bukkitbungeecordfoliapaperspigotvelocity
版本范围
1.16–26.2
下载量
7.1 万

插件介绍

AuthMeReloaded

"The best authentication plugin for the Bukkit modding API!"

Description

Prevent username stealing on your server! Use it to secure your Offline mode server or to increase your Online mode server's protection!

AuthMeReloaded disallows players who aren't authenticated to do actions like placing blocks, moving, typing commands or using the inventory. It can also kick players with uncommonly long or short player names or kick players from banned countries.

With the Session Login feature, you don't have to execute the authentication command every time you connect to the server! Each command and every feature can be enabled or disabled from our well-structured configuration file.

You can also create your own translation file and, if you want, you can share it with us! :)

Features:

Configuration

How to configure AuthMe

Dialog UI

AuthMe can display graphical login/register dialogs instead of chat-based prompts.

  • settings.registration.dialog.postJoin.enable enables the post-join dialog flow.
  • settings.registration.dialog.preJoin.enable enables the pre-join dialog flow on Paper/Folia.
  • Both options are independent: you can enable either one, both, or neither.
  • Pre-join dialogs currently require modern dialog-capable server versions such as Paper/Folia 1.21.11+.
  • Verified premium players skip the pre-join dialog entirely when premium bypass is enabled.

Premium bypass

AuthMe can let players with a legitimate Mojang account skip password authentication entirely. Identity is verified via a cryptographic handshake with Mojang's session server during the Minecraft login phase — no password prompt is ever shown.

  • Enable with settings.enablePremium: true in config.yml.
  • Players opt in with /premium and out with /freemium (must be logged in). Admins can enrol or remove players with /authme premium <player> / /authme freemium <player>.
  • Direct-connection (offline-mode, no proxy): requires PacketEvents 2.x. Without it, premium bypass is disabled at startup (fail-closed).
  • Behind an online-mode proxy (Velocity / BungeeCord): the proxy authenticates with Mojang and forwards the verified UUID — no PacketEvents needed on the backend. Set Hooks.bungeecord: true on the backend.
  • Behind an offline-mode proxy: install authme-velocity or authme-bungee on the proxy; premium players are authenticated per-player by the proxy and the verified UUID is forwarded to the backend.
  • Full documentation: docs/premium.md

Commands

Command list and usage

Permissions

How To

Links and Contacts

  • Support:

  • Dev resources:

    • JavaDocs
    • Maven Repository
      <repositories>
          <repository>
              <id>codemc-repo</id>
              <url>https://repo.codemc.org/repository/maven-public/</url>
          </repository>
      </repositories>
    
      <dependencies>
          <dependency>
              <groupId>fr.xephi</groupId>
              <artifactId>authme-core</artifactId>
              <version>6.0.0-SNAPSHOT</version>
              <scope>provided</scope>
          </dependency>
      </dependencies>
    
  • Statistics: Graph

Requirements

Compiling requirements:
  • JDK 17+ for authme-core, authme-tools, and authme-spigot-legacy
  • JDK 21+ for the full multi-module build (authme-bungee, authme-spigot-1.21, authme-paper-common, authme-paper, authme-folia, authme-velocity)
  • Maven (3.8.8+)
  • Git/GitHub (Optional)
How to compile the project:
  • Clone the project with Git/GitHub
  • Execute command mvn clean package
  • With JDK 17, Maven builds only the Java 17-compatible modules
  • With JDK 21+, Maven builds the full reactor
  • Build and tooling command reference: docs/build.md
Running requirements:
  • Use the jar matching your server platform/version:
  • Java 17+: AuthMe-*-Spigot-Legacy.jar — Spigot 1.16.x – 1.19.x
  • Java 21+: AuthMe-*-Spigot-1.21.jar — Spigot 1.20.x – 1.21.x
  • Java 21+: AuthMe-*-Paper.jar — Paper 1.21+
  • Java 21+: AuthMe-*-Folia.jar — Folia 1.21+
  • Java 21+: AuthMe-*-Bungee.jar — BungeeCord / Waterfall proxy (1.19 API)
  • Java 21+: AuthMe-*-Velocity.jar — Velocity 3.4+ proxy
  • PacketEvents 2.x (optional plugin; required for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode)

Credits

Contributors:

Team members: developers, translators

Credits for the old version of the plugin: d4rkwarriors, fabe1337, Whoami2 and pomo4ka

Thanks also to: AS1LV3RN1NJA, Hoeze and eprimex

GeoIP License:

This product uses data from the GeoLite API created by MaxMind, available at https://www.maxmind.com

版本与下载

推荐下载

AuthMe-6.0.0-Velocity.jar版本 6.0.0 · 158.5 KBSHA-1 3a52d0543a49136767f33b419c45671f1fcf757a下载 AuthMe-6.0.0-Velocity.jar

6.0.0

正式版
加载器
velocity
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2 · 26.2
AuthMe-6.0.0-Velocity.jar158.5 KBSHA-1 3a52d0543a49136767f33b419c45671f1fcf757a获取文件 AuthMe-6.0.0-Velocity.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0

正式版
加载器
bungeecord
MC 版本
1.21.6 · 1.21.7 · 1.21.8 · 1.21.9 · 1.21.10 · 1.21.11 · 26.1 · 26.1.1 · 26.1.2 · 26.2
AuthMe-6.0.0-Bungee.jar154.9 KBSHA-1 3d0dce9584b4d1917d669c560010d733fc8b5b80获取文件 AuthMe-6.0.0-Bungee.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0

正式版
加载器
folia
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2 · 26.2
AuthMe-6.0.0-Folia.jar1.1 MBSHA-1 3b54aed0f9e839220c8d5b4d161c0b78b5210140获取文件 AuthMe-6.0.0-Folia.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0

正式版
加载器
bukkit · spigot
MC 版本
1.16 · 1.16.1 · 1.16.2 · 1.16.3 · 1.16.4 · 1.16.5 · 1.17 · 1.17.1 · 1.18 · 1.18.1 · 1.18.2 · 1.19 · 1.19.1 · 1.19.2 · 1.19.3 · 1.19.4 · 1.20 · 1.20.1 · 1.20.2 · 1.20.3 · 1.20.4 · 1.20.5 · 1.20.6 · 1.21 · 1.21.1 · 1.21.2 · 1.21.3 · 1.21.4 · 1.21.5
AuthMe-6.0.0-Spigot-Legacy.jar1 MBSHA-1 d0c43056828a3c543e5318d1672a1fa0dc66e7d8获取文件 AuthMe-6.0.0-Spigot-Legacy.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0

正式版
加载器
spigot
MC 版本
1.21.6 · 1.21.7 · 1.21.8 · 1.21.9 · 1.21.10 · 1.21.11 · 26.1 · 26.1.1 · 26.1.2 · 26.2
AuthMe-6.0.0-Spigot-1.21.jar1.1 MBSHA-1 bcdf7d3de1e95e3c3ab06cbb19e752c49da36f68获取文件 AuthMe-6.0.0-Spigot-1.21.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0

正式版
加载器
paper
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2 · 26.2
AuthMe-6.0.0-Paper.jar1.1 MBSHA-1 aefb475df26c72fe39c48e0ef9daf5e8b0574e28获取文件 AuthMe-6.0.0-Paper.jar
展开更新日志

AuthMe 6.0.0

AuthMe 6.0.0 is a major overhaul focused on modern server compatibility, a cleaner authentication experience, and broader plugin ecosystem support. This is the first stable release of the 6.x line.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21+, Paper 1.21+ (1.21.11+ recommended for Dialog), and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the player's own language.

Several quality-of-life improvements ship with the dialog system:

  • Email recovery in post-join dialogs — players with a recovery email can trigger password recovery directly from the dialog
  • "Let player in" recovery option — a new setting allows players to partially join the server to complete account recovery rather than being held at the connection screen
  • Customisable body description — the body text of login/register dialogs is configurable per server
  • Separate forgot-password dialog — the forgot-password flow has its own dedicated UI for both pre-join and post-join contexts
  • Register field validation — pre-join registration dialogs validate fields (password length, email format, etc.) before submission
  • Kick-on-cancel option — a new setting controls whether players are kicked if they dismiss the pre-join dialog

Premium bypass with cryptographic Mojang verification

Players with a legitimate Mojang account can skip password authentication entirely. AuthMe verifies their identity via a full cryptographic handshake with Mojang's session server — no password prompt, no dialog box. This closes the spoofing vector that existed when relying solely on username matching.

Three verification modes are supported automatically depending on your setup: direct offline-mode (requires PacketEvents), online-mode proxy (UUID forwarded by the proxy), and offline-mode proxy with the AuthMe proxy plugin. Premium player lists are synchronised automatically and sent in chunks for large servers.

See the premium bypass guide for full setup instructions.

Messages in the player's own language

AuthMe serves each player messages in their Minecraft client language, including login/register prompts, help output, and dialogs. When a player's locale is not available it falls back to the server's configured default. See the translations reference for the full list of supported languages. New in this release: Tatar and Spanish translations.

Eight new account importers

The converter system now covers a wide range of authentication plugins. You can migrate accounts from:

  • Auth+, LibreLogin, LimboAuth, nLogin (including SQLite auto-detection), OpeNLogin, tiAuth

All importers reuse the AuthMe connection pool and apply consistent UUID handling. See the converters guide for usage.

New server spawn priority

A new server value is available for the spawn priority setting. The spawn location is determined by the configured server spawn point with an optional radius so players don't stack on the same block. Falls back to the default spawn location if none is available.

Email confirmation on change

/email add and /email change now require the player to confirm the new address before it is saved, preventing typos from locking players out of account recovery.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm: PBKDF2BASE64

A new PBKDF2BASE64 hash algorithm is now supported. See the hash algorithms reference for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login rather than being lost. Configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.


Breaking changes

Java 17 is now the minimum required version for spigot-legacy. Servers still running Java 8 or Java 11 must upgrade before installing this release.

Java 21 is now the minimum required version for other platforms (Spigot 1.21, Paper, Folia).

PacketEvents replaces ProtocolLib for inventory protection, tab-complete blocking, and premium bypass in direct-connection mode. Install PacketEvents 2.x if you use any of these features — ProtocolLib is no longer used for this purpose.


Bug fixes

  • Quit location is now correctly saved on disconnect
  • Walk and fly speed are properly reset on auto-login via premium, session, or proxy
  • Admin force-login commands correctly dismiss any open dialog for the target player
  • Proxy auto-login works correctly when the target player is already online
  • Email format is validated before any processing is attempted
  • Email recovery UI is only shown when the email sending system is properly configured
  • TOTP QR codes are generated with a default margin
  • BungeeCord plugin messaging channel is correctly registered on startup
  • Brigadier command registration handles @ characters and awaits proper type resolution
  • Converters correctly insert and update player UUIDs
  • Spawn location Y coordinate is correctly selected in server spawn mode

Additional resources

6.0.0-R1

测试版
加载器
bungeecord
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-6.0.0-R1-Bungee.jar152.5 KBSHA-1 99f265822c3c8726a1fb7c9d2648280955c12fb1获取文件 AuthMe-6.0.0-R1-Bungee.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

6.0.0-R1

测试版
加载器
velocity
MC 版本
1.21.6 · 1.21.7 · 1.21.8 · 1.21.9 · 1.21.10 · 1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-6.0.0-R1-Velocity.jar156.1 KBSHA-1 433f51cf8163291a8bb7111384b01ce8f0b6079f获取文件 AuthMe-6.0.0-R1-Velocity.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

6.0.0-R1

测试版
加载器
bukkit · spigot
MC 版本
1.16 · 1.16.1 · 1.16.2 · 1.16.3 · 1.16.4 · 1.16.5 · 1.17 · 1.17.1 · 1.18 · 1.18.1 · 1.18.2 · 1.19 · 1.19.1 · 1.19.2 · 1.19.3 · 1.19.4 · 1.20 · 1.20.1 · 1.20.2 · 1.20.3 · 1.20.4 · 1.20.5 · 1.20.6 · 1.21 · 1.21.1 · 1.21.2 · 1.21.3 · 1.21.4 · 1.21.5
AuthMe-6.0.0-R1-Spigot-Legacy.jar957.9 KBSHA-1 fb4c4c207e110ace0a18b93c3de3973bb9857758获取文件 AuthMe-6.0.0-R1-Spigot-Legacy.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

6.0.0-R1

测试版
加载器
folia
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-6.0.0-R1-Folia.jar984.6 KBSHA-1 756d80edd6de8a2be9c062c7fcdaa3fa8b31b36a获取文件 AuthMe-6.0.0-R1-Folia.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

6.0.0-R1

测试版
加载器
paper
MC 版本
1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-6.0.0-R1-Paper.jar983 KBSHA-1 686eaba85c6c3211b9c7eb731cce2434530c4cc0获取文件 AuthMe-6.0.0-R1-Paper.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

6.0.0-R1

测试版
加载器
bukkit · spigot
MC 版本
1.21.6 · 1.21.7 · 1.21.8 · 1.21.9 · 1.21.10 · 1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-6.0.0-R1-Spigot-1.21.jar961.8 KBSHA-1 00bb8bc2d6f1b671d4dd006a6f3fcb479d6de6ad获取文件 AuthMe-6.0.0-R1-Spigot-1.21.jar
展开更新日志

AuthMe 6.0.0-R1 - Release Candidate

This update brings a smoother, more modern AuthMe experience for both server owners and players. The focus of this release is simple: better support for modern server setups, a cleaner login flow, and more flexibility for server customization.

Highlights

Dedicated builds for every platform

AuthMe now ships as separate, purpose-built jars for each server platform: Spigot 1.16–1.19, Spigot 1.20–1.21, Paper 1.21+, and Folia 1.21+. Install the jar that matches your server — no further configuration needed to get the right behaviour for your platform.

Native proxy plugins for BungeeCord and Velocity

Two new dedicated proxy plugins are now available, one for BungeeCord and one for Velocity. They handle authentication state synchronisation between the proxy and your backend servers automatically, replacing the previous approach that relied solely on backend-side configuration. See the proxy configuration guide for setup instructions.

Dialog-based login and registration

On Spigot 1.21.6+ and Paper / Folia 1.21.11+, players are presented with a graphical dialog to log in or register — displayed right as they connect, before they even fully join the server. The dialog is shown in the server's configured language.

Messages in the player's own language

AuthMe can now automatically serve each player messages in their Minecraft client language. When a player's locale is not available, it falls back cleanly to the server's configured default. See the translations reference for the full list of supported languages.

Separate login and registration timeouts

The single timeout setting has been split into two independent values: loginTimeout and registerTimeout. Existing configurations are migrated automatically — no action required. Full details are in the configuration reference.

New hash algorithm and Auth+ account importer

A new PBKDF2BASE64 hash algorithm is now supported. An importer for accounts from the Auth+ plugin is also included. See the hash algorithms reference and the converters guide for details.

Ender pearls returned on login

Ender pearls thrown before authentication are held and returned to the player's inventory on successful login, rather than being lost. This behaviour is configurable via settings.restrictions.cancelThrownEnderPearlOnJoin.

Breaking changes

Java 17 is now the minimum required version. Servers still running Java 8 or Java 11 must upgrade before installing this release.

PacketEvents replaces ProtocolLib for inventory protection and tab-complete blocking. If you used those features with ProtocolLib, install PacketEvents as an optional dependency instead — ProtocolLib is no longer used for this purpose.

Additional resources

5.7.0

正式版
加载器
bukkit · paper · spigot
MC 版本
1.16 · 1.16.1 · 1.16.2 · 1.16.3 · 1.16.4 · 1.16.5 · 1.17 · 1.17.1 · 1.18 · 1.18.1 · 1.18.2 · 1.19 · 1.19.1 · 1.19.2 · 1.19.3 · 1.19.4 · 1.20 · 1.20.1 · 1.20.2 · 1.20.3 · 1.20.4 · 1.20.5 · 1.20.6 · 1.21 · 1.21.1 · 1.21.2 · 1.21.3 · 1.21.4 · 1.21.5 · 1.21.6 · 1.21.7 · 1.21.8 · 1.21.9 · 1.21.10 · 1.21.11 · 26.1 · 26.1.1 · 26.1.2
AuthMe-5.7.0.jar922.6 KBSHA-1 e3bde3ef42e03453e6de31ea74df60ef05a66d67获取文件 AuthMe-5.7.0.jar
展开更新日志

AuthMe 5.7.0

This release focuses on stability, reconnect handling, mail reliability, and cleanup of long-deprecated code, while also improving localization support across commands.

Breaking changes

  • Java 17 is now required for AuthMe 5.7.0.
  • Legacy xAuth and Whirlpool support has been removed. If your server still depends on those old hash formats, migrate before upgrading.

Improvements

  • Replaced hardcoded command strings with translatable MessageKey entries, improving localization coverage.
  • Restored thrown ender pearls and mounted vehicles more reliably after reconnect.
  • Enforced name/IP restrictions earlier during AsyncPlayerPreLoginEvent for better protection.

Fixes

  • Fixed stale disk limbo data when a player quits before limbo is fully created.
  • Fixed concurrent access issues affecting SQLite, timed counters, logout flow, and mail handling.
  • Prevented SMTP sending from freezing the main server thread by dispatching mail work asynchronously.
  • Corrected SSL/TLS handling for mail delivery and added the Email.sslCheckServerIdentity setting.
  • Fixed teleport edge cases, including the y = 0 bug and spawn handling for unregistered players when registration is not forced.
  • Fixed AccountsCommand self-lookup to use the correct self-owned accounts message.

Maintenance

  • Updated dependencies and build tooling.
  • Refreshed CI compatibility, including ProtocolLib 5.3.0 and Multiverse 4.3.16 updates

5.6.0

正式版
加载器
paper · spigot
MC 版本
1.18.2 · 1.19.4 · 1.20.4 · 1.20.6 · 1.21
AuthMe-5.6.0.jar14.4 MBSHA-1 98345789a380814aa3d42277497114494ae5aea5获取文件 AuthMe-5.6.0.jar
展开更新日志

AuthMeReloaded 5.6.0 Release Notes

We're excited to announce the release of AuthMeReloaded 5.6.0! This update brings significant improvements and new features, enhancing compatibility, security, and overall functionality. Below is a detailed breakdown of what's new, updated, and fixed in this version.

Thank you for your continued support and contributions to AuthMeReloaded! We hope you enjoy the new features and improvements in this release.

Changelog

New Features

  • Minecraft Compatibility: Now supports Minecraft versions 1.8 through 1.21.
  • Java Compatibility: Supports Java versions 8 through 21. PR#2342
  • Legacy Jar: Provided a legacy jar for Minecraft versions older than 1.18. Issue#1779
  • GeoIP Database Option: Added config option to disable the GeoIP database. PR#2720
  • MariaDB Support: Added support for the MariaDB driver. Issue#2556
  • MySQL 8 Support: Updated connectors to support MySQL 8. Issue#1779

Updated Features

  • /authme about Command: Enhancements to provide more detailed information. Commit||
  • Security Enhancements: Increased the BCrypt default cost factor to reflect current computing power. PR#2360||
  • Integration with LuckPerm: Keep contexts active after reloading groups. PR#2186
  • Legacy Hashes Hint: Added a hint for legacy hashes in the LoginSecurity converter. Issue#2449

Bug Fixes

  • SQLite Issue: Resolved a file not found issue with SQLite. PR#2371
  • Player Data Saving: Fixed an issue preventing player data from being saved correctly. Commit
  • Turkish Locale Support: Corrected issues affecting the Turkish locale. Commit
  • Automatic Anti-bot: Addressed issues with the automatic anti-bot feature. PR#2611
  • BungeeCord Integration: Checks before enabling BungeeCord hook and various integration-related fixes. PR#2572
  • LOGIN Plugin Message: Now sends a LOGIN plugin message on join if a player is not registered. PR#2275
  • Join Message Listener: Changed priority to fix compatibility with EssentialsX. Commit
  • IP-Username Check: Prevent unrestricted usernames from bypassing IP restrictions. Commit
  • Column Check: Fixed an issue with database column checks. Issue#2543
  • Disable BungeeCord Hook when not in use: Disabled BungeeCord hook if the proxy is disabled in Spigot settings. Commit

Enhancements, Documentation and Miscellaneous

  • Updated Dependencies: Enhanced stability and security with the latest dependency updates.
  • Documentation: Updated documentation to reflect all the changes.
  • Translations: Updated translations for better accessibility and user experience.
  • Other Minor Fixes: Addressed various small issues to improve overall functionality and reliability.