#luckperms-web

me

no

who will help

no one

why

because you haven't even said what you need help with

lol

and i doubt you're in the right channel

@odd temple :)

Hey ANutley! Please don't tag helpful/staff members directly.

it's a fake Steam sign in page lol

Thanks whoever did that

Thanks, citizen

For doing your civil duty

did you see Emily

3 of us pinged 3 different people in 3 different channels lol

I didn't

Well, I shared some other servers with the banned user, got them banned there too. Yeet. Don't mess with lp people

No problem :)

@stoic current

hi Aber!

soooo much better 😅

the whole thing was white before

didn't realise it was fixable - but it is!

Neat

Who are you?

||jk||

I'm a terrible web developer who only tests on Chrome 😂😂

Neat

the only browser that matters

Tbh I use edge now

Ok

Neat

ikr?

Just taking out the trash

edge and chrome use the same browser engine, so it makes no difference

kinda what i meant lol

edge is a better chrome imo

vertical tabs got me all 🥵

I've been using FireFox lately lol

yeah i switched to firefox as my main on my work computer but the dev tools on there is so whack sometimes

chromium dev tools are far superior lol

Lol, I haven't looked at the dev tools for it yet, Too busy with Game Development now 😛

I tried using edge as my main browser but the "This file may harm your computer" messages with no way to turn them off started to piss me off

i don't get those but i never download weird files so i guess that helps :P

wow what

cool thank you dependabot

lets not use this channel for commands, yeah?

https://tenor.com/view/dont-need-you-angry-throw-trash-garbage-gif-15769455

ok then

https://haste.nycode.de/xomayihezi.xml
when I want to install Luckpermsweb this error comes when I enter npm run serve. What can I do ?

@earnest mango @wanton fern
sry for ping but u are only guys with green circle

Hey ! jesse! Please don't tag helpful/staff members directly.

#rules

I guess I did shut up https://github.com/LuckPerms/LuckPermsWeb/issues/343

I guess you did... Usually you put up more of a fight.

lmao

cba with web dev

Lol, I tried to get into web-dev but meh.

i mean it's just JS logic, hardly web dev lol

even worse!

it's like java but more chill

Like Java but more annoying

it's like java but no java and type coercion everywhere

how do you print logs again?

okay how about you shut up now

UE_LOG(LogTemp, Warning, TEXT("Log Message"));

ohh, you didn't mean for Unreal Engine and C++ 😛

btw I added netlify back for you @stoic current ^^

👏 this 👏 is 👏 not 👏 a 👏 commands 👏 channel 👏

re ^: how are we deciding which language to use?

probably need some sort of selector? until that's a thing I'm not sure there's much point -- but up to you

true, we can default it to the client's locale but a selector is definitely needed as well

i think for now we can merge this and it will at least be very useful for people running it locally

Hi, once it’s merged it should be easy to add a language selector (just a dropdown with links that calls this.$i18n.locale = newLocale; on click). I can also add one but I think it wouldn’t make much sense until others translations are added

fair point :)

@stoic current scam

Hey Oha_Der_Erste! Please don't tag helpful/staff members directly.

Still scam

no u

wow cool thanks cloudflare

good comment

lmao did you really just tag your own PR as hacktoberfest accepted?

of course

all of my hacktober PRs are just PRs to my own repos lol

and now the deployments aren't working lol

I see myself having to redo what im working on rn

Luckily merging exists

Luckily, i used github only once in my life so i really know tf you talking about

I'll slap my translations into your face anyway, tobi. Someone needs to proof read it. Why not you :P

I can't wait!

oh erm, I remember now

cloudflare only does previews for branches within the repo

i'll re-enable netlify

🎉

🥳

@stoic current

makes nice comment
doesn't merge
??????

i forgot to confirm it lol

it's a 2 click process

ah yes

I'm used to clicking only once on bitbucket

it's ok! confusing, but okay!

plus i have a million other things going on right now i'm a little bit insane 🤪

best of luck!

thanks!

Hello, how to create a ticket, I want to talk to you personally, this is important

If you can explain why you'd like to talk to Turbotailz personally, here, in public, perhaps I can arrange a meeting @tough cypress

Can I contact you in private messages on discord please?

Absolutely, but you must first provide a reason that isn't "i need support with LuckPerms"

anything, however vague, will do

I need help I want to remove the link to the lp editor and this is important

!editorsafety

are you aware of this? ^

nevertheless, shoot me a DM - they're open now

That is, it is not possible to delete a purely theoretical link?

It is impossible for anyone without high-level permissions on your server to do anything with it

Deleting a link is theoretically possible but there must be a valid reason and it's a pain to do. Feel free to provide the reason in DMs if it's sensitive

Yes, but using this data, they can find out the accounts on which the rights are located, with which you can crash the server

Knowing account names should in no circumstances permit anything malicious from happening

you could find those accounts simply by being on the server and watching who joins

How long does it take for links to be deleted? or are they stored indefinitely in the database?

with which you can crash the server

I believe they last a week

after 7 days the link will be deleted or what?

Yes

How would they manage to crash the server just by knowing what groups have what permissions? I don't understand

Are you aware of an exploit or anything of the like?

Having recognized the player who has high rights, you can easily hack the account with various checkers using the merged databases that are in the public domain

no

What?

That doesn't make any sense, unless you server authentication is straight up disabled or improperly set up, account authentication is handled by Microsoft, I'd be astonished if something happened there

I have a pirate server where the minecraft record is not used, but only the / register and login command

Stop using offline mode and you'll be fine.

Hello

Quick question

I can make my own template for editor?

Are you referring to this?

https://luckperms.net/wiki/Self-hosting-the-web-interfaces

I think yes

“Think”?

I tidied up metadata-api (and made it typescript in the process lol) so it's no longer a big blob of sad

https://github.com/LuckPerms/metadata-api/tree/master/src/fetchers

a bit nicer I think!

typescript!!

😬

You not a fan?!

i have a terrible experience with it lol

Aw no

I think it depends a lot on what libraries you’re trying to use and the extent to which they support ts

i also just don't understand half the syntax so it leaves me like when i try to read it haha

really should make an effort to learn it better

but i get by just fine with regular js

How remove evereone people from website editor without permissions (only group.default)

Yeah there isn't really any way to do that

can you help me on #support-1 ?

:/

ree it's not building

09:57:21.264 Failed due to an internal error

I'll restart it

ty

looks like it worked that time :)

How can I get a web with all members like this
Sorry Raymano

limit 500 how I good remember

/lp editor

I'll try thx

If you have that many people you should probably learn the commands aha

Why learn command when gui do everything for me

Why use a gui when it takes 10 seconds to type a command

please helpme

@wanton fern@plush oracle

Hey The WinnerTeam! Please don't tag helpful/staff members directly.

nah

lmao

what

just read what it tells you lol

lmao works fine for me, are you runnin latest lpb version?

try executing it from bungee console

LP was unable to connect to the backend service that powers the editor. it looks like a connection issue.

How's your server hosted?

(Homehosted, hosting company, VPS / dedi, etc)

build pls

./gradlew build

i hate not having access to see if anything is building or not lol

evid-

lol

RIP

should i remove the random people who are not discord staff while im at it

you fucked the JSON format lol

oh nice

?

explain?

is it the comma on line 526 ?

netlify thinks otherwise

5:35:19 PM:  error  in ./src/data/editor-demo.json
5:35:19 PM: Module parse failed: Unexpected token ] in JSON at position 11265 while parsing near '... }
      ]
5:35:19 PM:     },
5:35:19 PM:   ],
5:35:19 PM:   "tracks": [
5:35:19 PM:    ...'```

i think it's the trailing comma which your parser warned about

Yeah pretty sure it would be that

i hate that json doesn't support trailing commas

ok PLEASE merge

now is cloudflare gonna build it

Probably not

^

Everyone knows Murphys Law: Everything that can go wrong, will.

sounds like my afternoon at work today

do tell

who broke prod

was it you?

it's always turbo

not prod thankfully

oh it built, maybe it only works when you merge?

and not committing directly

shh

Add me as well while you are there please :)

assuming it's ANutley as well?

Yeah

we should make this a part of Helper onboarding

and a part of staff demotion 😂

Lmao

Lol so true

Thanks

what a pristine PR

i love that emoji

https://tenor.com/view/ali-g-gaming-cool-gangsta-hello-gif-19091513

so many stars lately

https://tenor.com/view/stars-gif-7707346

yeah cuz no one dares to fork and work on in

ill open a PR rn

nevermind, the last merged pr is mine anyways

Is this what the channel is becoming

Yep

c-c-c-combo breaker

turbo

So i tried to follow the installation and do i need to do anything?

npm fund only says stuff about sponsor

s

luckperms-web@2.0.1
├── https://github.com/spons ors/isaacs
│ └── glob@7.1.6
├── https://github.com/sponso rs/feross
│ └── safe-buffer@5.2.1
└── https://github.com/sponso rs/jonschlinkert
└── picomatch@2.2.3

oops

didnt mean to send links

crap

no

ok

ty

do i just need to take the output of dist after doing npm install and move it into my web direcots_

after running npm build and opening the web file, i just get a white site with nothing on it.

https://github.com/LuckPerms/web-installer

check this out if you are set on self hosting, 99% of the time its a waste of time to self host tho tbh 😛

nope, i just figured out that i need to do stuff on the config

also i run on linux and do not have an gui activated rn

so ill try it, if it doesent work, ill ask u again

if you do require the app to be hosted under a directory (e.g. domain.com/luckperms/<here>) then you will need to edit the base property in config.json to match the directory

where / how can i access the config?

found it

idk what fork means but ok

well

now its not white anymore, its blue

but still no content

i found this in the dev menu from chrome

<strong>We're sorry but LuckPermsWeb doesn't work properly without JavaScript enabled. Please enable it to continue.</strong>

do i need to enable it on my client or on the server?

you probably have JavaScript enabled

ok

well

but make sure you actually do

https://support.google.com/admanager/answer/12654?hl=de

is enabled on my browser

so i changed the directory of the web file and i set the directory in the config

there was something with redirecting but i am hosting multiple websites on that server so i think its goint to send everything to there or?

You will also need to setup your webserver correctly to redirect any of the pages to the single index.html file that is generated under the /dist folder

doesent that send me to the webpage when i try to open any site on my webserver?

and how do i set it to /luckperms/index.html?

the redirecting is as far as I know for routing things, and can be done later

It should look something like this for you

make sure the script files actually point to a valid file

(click on the /js/... portion and "open in new tab")

it brings me to bunch of random code

that is good 👍

ok

But I am still getting a blue site with nothing on it

ah

the second one is not being found

js/app.3627e7b4.js

in the folder is only app.3627e7b4.js.map

but not .js

do i need to remove the ".map"?

could try, but probably won't help

its still a bunch of code

well at least it finds it now

But its still a blue page with nothing on it

wierd

i found the file in the dist folder

it seems like it didnt download

that seems like it could've been the issue

ok

now

there should be lots of other .js files aswell, which you may not have copied. that may be the issue

no i just downloaded the dist folder and uploaded the content in the luckperms folder

that looks good ig

what does ig mean?

"i guess"

ah ok

i set "selfhost" to true btw

now its working

i was using "index.html" before

now i pressed on the luckperms icon and now it works

I made that option ^^ so I'm always feeling good when someone uses it

ok

but good for you, if everything works

well it gets rid of ads, i hate ads

Well

now

i have the editor

but i didnt even need to login

How can I secure it? o_o

it is secured by default

i didnt need to login

so everyone can just edit it?

there is no login function

you ran /lp editor and that gave you a link, right?

no

So i need to enter that command and that only unlocks it?

and where can i set the server path? i forgot to do that

What do you mean by "server path"?

well i installed the web editor onto my webserver

and do I need to set the path to the server somewhere?

You mean like you have to give the editor your server ip address?

no the path to the server file

Where luckperms database is stored or smth

so the editor can access the files

So what I tough was, I install the editor onto my server,
login in the editor and just start editing my permissions

and the stuff will be locally changed on the server

It works like this:

1. You do the command, this uploads your data to bytebin and you get a link.
2. You go to the editor using the link.
3. The editor reads the data from bytebin.
4. You edit things how you like.
5. You click on the save button.
6. The editor uploads your changes to bytebin and gives you a command
7. You enter that command (for which you already need to have permissions) and that applies your changes

ok?

what is the point in installing the webeditor then?

it is still way faster than commands, you see way more. it offers you more functions.

but if i enter /lp web it sends me to luckperms.net to their editor

But i have an installed editor

can we talk over dm?
i dont wanna spam the support chat

there's literally no one else here

um ok

there should be some config option to change the url

there it is on the wiki:
https://luckperms.net/wiki/Self-hosting-the-web-interfaces#step-3-configuring-the-plugin-to-use-your-custom-bytebin--site

So what I tought was:
You install the web editor on the web server
You set login data somewhere

Then when I am not home and need to do something:
I open my web editor over the domain
like webeditor .minecraftserver. lol

login with my data
the permissions etc are already loaded and i can just begin editiong,
then when i click save the data gets saved in the database file on my server
and its done.

So I dont need to start minecraft, login and get the link

if you thought that, I'm sorry, but you thought wrong. you cannot directly edit permissions from the editor.

you need to have some transfer process

You can install discordsrv and make a console channel in your discord server, link the channel, and grab lp editors from there. I used to do that a while ago

that process though can also happen trough the console, so if you can access your server console it is no problem

yes but i dont always wanna login to my console

i have an 30+ password

ok, im sorry for wasting your time :/

It would be cool it you would add that feature in the future tho:

You install the web editor on you webserver
Set the path to the servers permission file
Set an login username and password (you could also add users with different permissions)

Then you can login using the username and password
The permissions are being locally loaded out of the database
You can do your stuff

And when you are done, you click save
The database gets updated
And you logout.

That would be cool if you are travelling a lot and dont want to login to the console every time.

Ok, thanks for helping tho.

nah no, if my discord gets griefed or smth then someone has access on my console.

You can set permissions yk

You do you

Or, don’t use console in discord.

Please do not advertise @spark moss , take this as a warning

what is weight?

so higher the number so higher in the tablist?

The higher the priority of the group in permission calculation

ok

where can i set the prefix?

in the editor?

you can use a permission! prefix.[priority].[prefix]
so for example prefix.100.&cOwner

found it

ok

cool

thanks!

and parent does just apply the permissions from an another group?

yes, exactly

ok so, lets say i have set default as parent from VIP.
but on VIP I dont want to have an permission that default has.

Can I somehow remove the permission from VIP, but keep default as parent?

like:

default:

• home.max.3

vip:

• parent: default
• ignore perm from parent: home.max.3
• home.max.6

this is where weights come in!
if there is a conflict, the group with the higher weight will decide the thing. so in your case you would give default for example weight 1 (weight.1 node) and vip a higher weight, like weight 10 (weight.10 node)

LuckPerms will then see vip has higher weight, so vip is more important, so vip will override default

ok

Because i have an scoreboard plugin

and there is an permission for each group so it can show wich rank you have

and it always only functioned up to VIP, but MVP didnt work anymore because it
took the perms from VIP and didnt know what to use, and you still saw VIP

Thank you so much, you saved me a lot of time 😄

ok

and

can we move this to support-2 if it has nothing to do with the web editor directly please

sorry but this is very unlikely to happen. this will make your server even less secure if it's not done properly.

well thats the problem of the owner

it's not much of a jump from a usability point of view, but is a huge regression in terms of security

and it is also a lot of work for us to implement, when realistically the current system (where self-hosting is not required) is perfect for most users

yeah but maybe someone can create an another version of the web client parallel to it?

ok, thanks tho

Hello, I have a bungee network, and luckperms appear this

even though I don't have operator

Read it

It tells you what to do

non operator players can access /lp

ik how to give perms..

So? They can't do anything with /lp it only shows the plugin version number

yes

and the bottom text

It only shows the bottom text because nothing has been setup

oh I see

Once you start setting up LP that message will go away

alright, thx

is there a way to alphabetically sort perms in the web editor? feels like such a handy QOL thing

click the permissions tab, it will sort them

ty LOL

moved the webhook to #github-spam-web

was getting a bit much 😅

may want to deny speak permissions if that wasnt intentional

I've added LPW translations to the metadata-api

• https://metadata.luckperms.net/data/translations now has a progressWeb field
• for anything with a progressWeb > 0, the bundle can be downloaded from https://metadata.luckperms.net/translation/web/${id} where id is the key in the /data/translations response, e.g. https://metadata.luckperms.net/translation/web/fr
• returns json data in the same format as en.json in the repo

automatically exports from crowdin every 6 hours or so, same as the plugin

cc @stoic current

Awesome! Ty

Got something working :D
https://i.imgur.com/dgXNrNz.png

Need to spend a bit more fine tuning it but it's functional for now

one issue @rotund sluice
because crowdin gives us empty strings for missing translations, the vue-i18n plugin picks it up as a valid translation and doesn't fallback to english
there's a github issue about it here - https://github.com/kazupon/vue-i18n/issues/563
one of the comments suggests to turn on Skip untranslated strings which could be useful, is it possible to turn that on?

alright made some good progress on this today
it's working pretty well!
please test it out here:
https://deploy-preview-393--luckperms.netlify.app/

note that some languages don't have full translations and will make the site appear blank (see my comment above for the reason why)

I guess it should be on the contrary here, right?
Current:

<template v-if="options.unsupported">
    <h1 v-if="options.bungee">{{ $t('quiz.outdated', { serverType }) }}</h1>
    <h1 v-if="!options.bungee">{{ $t('quiz.travertine') }}</h1>
</template>

Correct (maybe):

<template v-if="options.unsupported">
    <h1 v-if="!options.bungee">{{ $t('quiz.outdated', { serverType }) }}</h1>
    <h1 v-if="options.bungee">{{ $t('quiz.travertine') }}</h1>
</template>

Now the quiz.travertine line always appears, regardless of the platform chosen.

e.g. for Single server -> CraftBukkit / Spigot / ... -> 1.7.9 or older

Thanks for pointing that out :)

Those lines can be simplified into one anyway

Should I create PR or something? 😄

skipUntranslatedStrings was on already, so https://github.com/LuckPerms/metadata-api/commit/b9a0bbe8b607efecbefb65f5d61511075315a236

should be sorted

Hey, I tested your dev version and it looks very nice. The language is switched automatically. There are only 2 things that looked weird.
First the current language name is not displayed & the flag of pirate English is invalid

Thanks! Yeah I still need to adjust things for the mobile view. And Pirate flag is already noted for a fix.

Brilliant, thank yoouu

In the normal web-view I see why the current language doesn't have the name

whit self hosting web editor can I edit my permissions directly? without /lp editor?

Turbs

No

So no benefits at all lol

you can change the style

that's about the only reason I can think of

This is convenient if LP services won't be available for some time, haha

True

That may be a feature request.
A front end self hosted web edition that connects directly to the luckperms SQL database, Whit permissions autocompletition.

How is this different from the current impl? Sessions existence?

I suppose sessions allow you to opt out of password authentication, for example, because every session has validity time (not sure btw :) and unique link

Just no have to use /lp editor, realtime sync, no need to enter the panel

And no need to /lp aply etc

But it needs serious security measures

<opinion> having to self-host is a big barrier to entry for most users, which is why the current system is great.
additionally, a system that links directly to the db introduces a lot of security headaches, which for the benefit it would give, isn't worth it </opinion>

that's why it is the way it is, and why it's unlikely to change :)

😄

Is not a change actually, it's an addition

Luck, can you tell me how sessions work, please? 🙂 Do they have validity time or how session closes?

and optional

is an addition not also a change? :P

no need to change the current web edition based on sessions

there is some info here: https://luckperms.net/wiki/External-connections#web-apps-lp-editor-etc
currently:

• the session data sent from the server --> viewer lasts 7 days
• the session data sent from the viewer --> server lasts about 1 hour

I'm just saying, not pressuring

I understand how it works.

I wasn't replying to you :)

thanks
just forgot about applying command as a final stage of editing, so even valid sessions without access to the server are useless

I know

With time and knowledge I can make it myself, the web editor is open source anyway. 🤔

I've thought before about a system identical to the current one, but using websockets instead of http requests (instead of bytebin we have bytesockets :p) so the communication can be two way between the server and the viewer without a requirement for a direct connection
unfortunately there are still the security concerns, so I didn't bother taking it much further

The benefit would be time saving, that's all 😅

I don't know if id would work same as dynmap, and similar.

Yeah I'm completely ignorant of the security issues it may bring right now. 🥴

Thank you for hearing me!

Bytesockets
😆

tbh if we did public/priv key auth & made it opt-in.. it could work

not a priority tho haha

Yeah, it has been something that's interested me

It would require a bit of work from the web side i think

Completely hypothetically speaking, if I selfhosted an editor, could i remove the hard-cap of 500 users being displayed?

the limit is in LP, I don't think LPW has any restrictions

Hmm, okay. i would have guessed it's lpw's side.

well at least a limit is in LP's side

yeah doesn't appear to be a limit on LPW side https://f.u11.io/fpmrB7

Just the one in the plugin: https://github.com/LuckPerms/LuckPerms/blob/master/common/src/main/java/me/lucko/luckperms/common/webeditor/WebEditorRequest.java#L76

Mfw GitHub repo search has a use

time to fork lp

Yeah the editor imposes no limits, just gives you what the plugin sends

its a limit in the plugin because it's a lot to upload to bytebin

@stoic current ur not accessible

i know :(

Jk

If you want I can use checkbox input, and I hope my comment didn’t seem sassy haha

nah leave it as is

will fix it up when the re-factor eventually happens

"if" it happens

instead of passive aggressive emojis you should share a link to the PR saying "can you please review my PR"

you little shit

I want to host it on my own hosting server

Is this possible?

!selfhost

there is something missing

looks like you already have something listening on the port you gave it

How can I set up bytebin to my subdomain?

I can't see anywhere

You need to configure a reverse proxy most likely

I use nginx

But setting that up is way outside the scope of luckperms

I did

I followed all the steps but the site did not open

https://bytebin.rivanetwork.com.tr/

That’s not a problem with bytebin or luckpermsweb but rather with your nginx configuration then

this way isn't it right

I didn't quite understand

I did all the steps on the wiki

I didn't understand step 3 and couldn't

Copy that and paste it at the end of of the config.yml of luckperms

okay

It is not happening

why is it giving error

luck

This is support for LuckPermsWeb

do i need to upload hosting files

Should I upload the files I build to the httpdocs folder?

¯_(ツ)_/¯

you don't help at all i try for hours

Did you reload nginx ?

this is not webhosting support, sorry you haven't been able to get it to work, but frankly, it's got nothing to do with LuckPerms

We've gone to a lot of trouble to ensure that everyone can use the plugin and web tools without having to do the complicated setup themselves

I encourage you to take advantage of that

How of I add people to a group using luck perms

!usage

Yes

super web app

LuckPerms

have you checked the logs?

yes editor won't open

...

'-'

emily

im trying to transfer perms from my spigot server to my bungee server how do i go that?

!bungee

How can I copy and paste all ranks and perms between 2 servers

because im not using bungeecord

please don't cross post

what are you doing?
https://github.com/LuckPerms/LuckPerms/tree/feature/editor-socket

I thought there was no plan to make LP web able to communicate directly with the server? @stoic current (pretty sure you are the one who coded the current website)

Hey Itzdlg! Please don't tag helpful/staff members directly.

ah okay I see

lucko created a socket version of bytebin for constant communication

thats insane because I was thinking of actually doing that a while back

wasnt for luckperms though

Is lucko community-hosting bytesocks like he does bytebin I wonder?

Also sorry for tagging you turbo, was wondering what it was and couldnt find an issue on it 😔

afaik its still very much undecided whether itll be used or not - mostly due to the obvious security risk it could be

What if, alongside the web socket key, there is a few character alphanumerical encryption code (where an AES encryption key is derived using PBKDF2) known by the server and the browser only

This means malicious users without that code can’t do shit even if they have the editor link

then of course if you selfhost Bytesocks and the panel you could disable that extra encryption part

🤷‍♂️ just an idea, could be inconvenient

How does the browser get that key though?

The user enters it

It isn’t a part of query parameters

It’d be something simple like 3A5 7G8

easy to remember and quick to type in, still secure because you have 36 possibilities per character (36^6, 2.1 billion possibilities) + the web socket key

if we want to use it with the reconnect feature, then keep the encryption key in like local storage keyed by the web socket key, albeit storing secrets in the local storage isn’t a great option, it’s highly unlikely to be a problem

I've created these functions to use PBKDF2 in javascript (on the browser) and Java a while back for something else, feel free to use

function deriveKey(passphrase) {
  return crypto.subtle.importKey('raw', passphrase.toUpperCase(), {name: 'PBKDF2'}, false, ['deriveBits', 'deriveKey']).then(function(key) {
    return window.crypto.subtle.deriveKey(
      { 
        "name": 'PBKDF2',
        "salt": new Uint8Array(8),
        "iterations": 100000,
        "hash": 'SHA-256'
      },
      key,
      { "name": 'AES-CBC', "length": 256 },
      true,
      [ "encrypt", "decrypt" ]
    );
  });
}

import org.bouncycastle.crypto.digests.SHA256Digest;
import org.bouncycastle.crypto.generators.PKCS5S2ParametersGenerator;
import org.bouncycastle.crypto.params.KeyParameter;
import java.nio.charset.StandardCharsets;

public byte[] deriveKey(String passphrase) {
  PKCS5S2ParametersGenerator gen = new PKCS5S2ParametersGenerator(new SHA256Digest());
  gen.init(passphrase.toUpperCase().getBytes(StandardCharsets.UTF_8), new byte[8], 100000);
  byte[] derivedKey = ((KeyParameter) gen.generateDerivedParameters(256)).getKey();

  return derivedKey;
}
``` Java requires bouncy castle @ maven central `org.bouncycastle.bcprov-jdk15on:1.70` (the artifact id "jdk15on" is misleading but it is for anything 1.5+)

The security may increase if you are using a container like pterodactyl wings and nginx proxy pass.

A vulnerability on the server itself isn’t something we can really protect for, I’m assuming the security threat is a bad actor getting your editor key and posting malicious permissions, or the Bytesocks server being compromised; in that case, encrypting transactions would prevent both problems

Hello I add antiaura.bypass to rank after that i save and load in my server but [LP] No changes were applied from the web editor, the returned data didn't contain any edits.

and i make new link editor but don't see antiaura.bypass

hello i have problem with luckperms bungeecord when i give helper (and moderator by group.helper) permission to staffchat.join and .read (with message [SC] [+] Nick join the lobby) but they didn't see it
but when i give permission to see afk message they can read it

!colour

Sorry! I do not understand the command colour Did you mean colours?
Type !help for a list of commands

!colours

No changes were applied from the web editor, the returned data didn't contain any edits

someone brooked que web editorr

luck

Oh no

Oh no indeed

Hey I'm Mccaf and I have a question. So I used "lp editor" in my console, and I was applying permissions to my group. After I did that, I logged on and specified my self to a group "/lp user "mccaf" parent set {rank}". When I deopped myself and was trying to access to /kits it says "you do not have permission for this command".

#support-1 for LP usage issues, this channel is for discussing LPWeb

nice, is there a 5.3.108.jar.zip for velocity?

Wie kann ich mir in der Tablist und im Chat den Prefix anzeigen lassen mit luckPerms`?

https://luckperms.net/wiki/Placeholders

maybe I should test with a test database

Someone say me how set a ranks on tablist?

hello igot certbot error when tied to install editor from auto script
https://bytebin.lucko.me/A6YncIUbc3

https://stackoverflow.com/questions/60249177/e-the-repository-http-ppa-launchpad-net-certbot-certbot-ubuntu-focal-release

its done but again got another https://bytebin.lucko.me/dYlmujQ8oI

can you send that paste again? It’s not working

https://pastes.dev/dYlmujQ8oI shows it

https://pastebin.com/rSzA9PdQ

https://i.imgur.com/yirYEjd.png

oops

also someone pls translate web to pirate k thx

:o

Any know why my LuckPerms is defaulting to Chinese?
When I click "English" it goes back to chinese
https://gyazo.com/cde0893a04982d46bb2f7649e7650dc7