Just2FA
Free & Secure Two-Factor Authentication for Minecraft
Features:
Free & Secure Two-Factor Authentication for Minecraft
- Google Authenticator Support - Works with all major authenticator apps
- Map-Based QR Codes - Get an in-game map item with your QR code
- 256-bit AES Encryption - Military-grade secret storage
- WorldGuard Integration - Region-specific 2FA rules
- Movement Restrictions - Freeze players until authenticated
- Auto Map Destruction - QR maps self-destruct after setup
- Multi-Version Support - Works on 1.8 through 1.21+
Code (Text):
/2fa setup - Start 2FA setup (gives QR map)
/2fa verify <code> - Enter your 6-digit code
/2fa remove - Remove 2FA from your account
Admin Commands:
/2fa admin remove <player> - Remove player's 2FA
/2fa admin reset <player> - Fix encryption issues
/2fa admin reload - Reload config
/2fa verify <code> - Enter your 6-digit code
/2fa remove - Remove 2FA from your account
Admin Commands:
/2fa admin remove <player> - Remove player's 2FA
/2fa admin reset <player> - Fix encryption issues
/2fa admin reload - Reload config
Code (Text):
just2fa.use - Use 2FA commands (default: true)
just2fa.bypass - Skip 2FA requirement (default: false)
just2fa.admin - Admin commands (default: op)
just2fa.admin.remove - Remove other's 2FA (default: op)
just2fa.admin.reload - Reload plugin (default: op)
just2fa.bypass - Skip 2FA requirement (default: false)
just2fa.admin - Admin commands (default: op)
just2fa.admin.remove - Remove other's 2FA (default: op)
just2fa.admin.reload - Reload plugin (default: op)
WorldGuard Flags:
Code (Text):
/rg flag <region> require-2fa allow - Force 2FA in region
/rg flag <region> bypass-2fa allow - Skip 2FA in safe zones
/rg flag <region> 2fa-allow-movement deny - Freeze players here
/rg flag <region> bypass-2fa allow - Skip 2FA in safe zones
/rg flag <region> 2fa-allow-movement deny - Freeze players here
Config:
Code (Text):
# Movement Settings
restrictions:
allow-movement: true # Allow movement before auth
spawn-restriction:
enabled: false # Special spawn rules
radius: 5 # Spawn protection radius
freeze-at-spawn: false # Freeze at spawn
teleport-to-spawn: false # TP on join
# Security
security:
max-attempts: 5 # Failed attempts before lockout
lockout-time: 300 # Seconds locked out
require-2fa: false # Force all players to use 2FA
kick-on-timeout: true # Kick if not authenticated
# Authentication
authentication:
timeout: 300 # Seconds before auth expires
issuer: "Your Server" # Shows in authenticator app
restrictions:
allow-movement: true # Allow movement before auth
spawn-restriction:
enabled: false # Special spawn rules
radius: 5 # Spawn protection radius
freeze-at-spawn: false # Freeze at spawn
teleport-to-spawn: false # TP on join
# Security
security:
max-attempts: 5 # Failed attempts before lockout
lockout-time: 300 # Seconds locked out
require-2fa: false # Force all players to use 2FA
kick-on-timeout: true # Kick if not authenticated
# Authentication
authentication:
timeout: 300 # Seconds before auth expires
issuer: "Your Server" # Shows in authenticator app
How It Works:
- Player runs /2fa setup
- Gets a map with QR code in their inventory
- Scans QR with Google Authenticator (or Authy, Microsoft Authenticator)
- Types /2fa verify <code> to complete setup
- Map automatically disappears after successful setup
- Next login: just type /2fa verify <code>
️ Security:
- QR maps can't be dropped or stored in chests
- Maps self-destruct when player quits
- Wrong player holding map? It's destroyed
- Secrets encrypted with AES-256
- Blocks all actions until authenticated (damage, building, chat, etc.)
First setup? The plugin creates an encryption key. Back up your plugins/Just2FA/data/ folder to keep player 2FA data safe during updates.
Resource Information
Author:
----------
Total Downloads:
33
First Release:
Aug 4, 2025
Last Update:
Aug 4, 2025
Category:
---------------
All-Time Rating:
1 ratings
Version
-----
Released:
--------------------
Downloads:
------
Version Rating:
----------------------
-- ratings