OpLogin keeps operator accounts safe by locking admin privileges until the real player authenticates. It adds a simple extra layer of protection against stolen accounts, shared access, and accidental permission abuse.
OpLogin is a Paper plugin that keeps operator accounts usable for normal gameplay while locking operator privileges behind authentication. Operators join in a locked state, unlock only when needed, and return to a protected state automatically or manually.
/oplogin starts login and the next chat message is captured privately./oplogout support that immediately locks privileges and clears trusted IP auto-login state./oplockdown command to force all online operators back into the locked state./opsetpass <player> <password>/oplogin/oplogout/resetop <player>/opreload/oplockdown/oplogin, then type their password in chat.security.min-password-length./oplogin and receive a randomized keypad GUI.security.pin-mode.length.
/opreload.plugins directory.config.yml and whitelist.yml.config.ymlRelevant options:
security:
min-password-length: 8
max-login-attempts: 3
block-duration: 15
enable-ip-auto-login: true
unlock-duration-seconds: 300
auto-lock-ops-on-join: true
pin-mode:
enabled: false
length: 4
title: '&8OpLogin PIN'
Notes:
enable-ip-auto-login remembers the IP only after a successful authenticated login./oplogout clears the remembered IP for that operator immediately./opsetpass must be numeric and match the configured PIN length.whitelist.ymlCommands listed here can still be used while locked, except for sensitive commands that are always blocked until authentication.
Default example:
whitelisted-commands:
- help
- oplogin
- list
- ping
Use /opsetpass <player> <password> from the console.
Use /oplogin.
Use /oplogout to re-lock privileges without leaving the server.
Use /resetop <player> from the console.