alicezetion 1.0.1 → 1.0.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (63) hide show
  1. package/.cache/replit/__replit_disk_meta.json +1 -1
  2. package/.cache/replit/nix/env.json +1 -1
  3. package/alice/addExternalModule.js +19 -19
  4. package/alice/addUserToGroup.js +113 -113
  5. package/alice/changeAdminStatus.js +79 -79
  6. package/alice/changeArchivedStatus.js +55 -55
  7. package/alice/changeBio.js +77 -77
  8. package/alice/changeBlockedStatus.js +47 -47
  9. package/alice/changeGroupImage.js +129 -129
  10. package/alice/changeNickname.js +59 -59
  11. package/alice/changeThreadColor.js +71 -71
  12. package/alice/changeThreadEmoji.js +55 -55
  13. package/alice/{sendMessage.js → chat.js} +459 -459
  14. package/alice/createNewGroup.js +86 -86
  15. package/alice/createPoll.js +71 -71
  16. package/alice/deleteMessage.js +56 -56
  17. package/alice/deleteThread.js +56 -56
  18. package/alice/forwardAttachment.js +60 -60
  19. package/alice/getCurrentUserID.js +7 -7
  20. package/alice/getEmojiUrl.js +29 -29
  21. package/alice/getFriendsList.js +84 -84
  22. package/alice/getThreadHistory.js +645 -645
  23. package/alice/getThreadHistoryDeprecated.js +93 -93
  24. package/alice/getThreadInfo.js +206 -206
  25. package/alice/getThreadInfoDeprecated.js +80 -80
  26. package/alice/getThreadList.js +238 -238
  27. package/alice/getThreadListDeprecated.js +75 -75
  28. package/alice/getThreadPictures.js +79 -79
  29. package/alice/getUserID.js +66 -66
  30. package/alice/getUserInfo.js +72 -72
  31. package/alice/handleFriendRequest.js +61 -61
  32. package/alice/handleMessageRequest.js +65 -65
  33. package/alice/httpGet.js +52 -52
  34. package/alice/httpPost.js +52 -52
  35. package/alice/listenMqtt.js +789 -789
  36. package/alice/logout.js +75 -75
  37. package/alice/markAsDelivered.js +58 -58
  38. package/alice/markAsRead.js +80 -80
  39. package/alice/markAsSeen.js +59 -59
  40. package/alice/muteThread.js +52 -52
  41. package/alice/{setMessageReaction.js → react.js} +117 -117
  42. package/alice/removeUserFromGroup.js +79 -79
  43. package/alice/resolvePhotoUrl.js +45 -45
  44. package/alice/searchForThread.js +53 -53
  45. package/alice/{markAsReadAll.js → seen.js} +49 -49
  46. package/alice/sendTypingIndicator.js +103 -103
  47. package/alice/setPostReaction.js +76 -76
  48. package/alice/setTitle.js +86 -86
  49. package/alice/threadColors.js +57 -57
  50. package/alice/unfriend.js +52 -52
  51. package/alice/unsendMessage.js +49 -49
  52. package/index.js +604 -604
  53. package/package.json +74 -77
  54. package/test/data/shareAttach.js +146 -0
  55. package/test/data/something.mov +0 -0
  56. package/test/data/test.png +0 -0
  57. package/test/data/test.txt +7 -0
  58. package/test/example-config.json +18 -0
  59. package/test/test-page.js +140 -0
  60. package/test/test.js +385 -0
  61. package/utils.js +1357 -1359
  62. package/.cache/replit/modules.stamp +0 -0
  63. package/.travis.yml +0 -6
package/index.js CHANGED
@@ -1,604 +1,604 @@
1
- "use strict";
2
-
3
- var utils = require("./utils");
4
- var cheerio = require("cheerio");
5
- var log = require("npmlog");
6
-
7
- var checkVerified = null;
8
-
9
- var defaultLogRecordSize = 100;
10
- log.maxRecordSize = defaultLogRecordSize;
11
-
12
- function setOptions(globalOptions, options) {
13
- Object.keys(options).map(function (key) {
14
- switch (key) {
15
- case 'online':
16
- globalOptions.online = Boolean(options.online);
17
- break;
18
- case 'logLevel':
19
- log.level = options.logLevel;
20
- globalOptions.logLevel = options.logLevel;
21
- break;
22
- case 'logRecordSize':
23
- log.maxRecordSize = options.logRecordSize;
24
- globalOptions.logRecordSize = options.logRecordSize;
25
- break;
26
- case 'selfListen':
27
- globalOptions.selfListen = Boolean(options.selfListen);
28
- break;
29
- case 'listenEvents':
30
- globalOptions.listenEvents = Boolean(options.listenEvents);
31
- break;
32
- case 'pageID':
33
- globalOptions.pageID = options.pageID.toString();
34
- break;
35
- case 'updatePresence':
36
- globalOptions.updatePresence = Boolean(options.updatePresence);
37
- break;
38
- case 'forceLogin':
39
- globalOptions.forceLogin = Boolean(options.forceLogin);
40
- break;
41
- case 'userAgent':
42
- globalOptions.userAgent = options.userAgent;
43
- break;
44
- case 'autoMarkDelivery':
45
- globalOptions.autoMarkDelivery = Boolean(options.autoMarkDelivery);
46
- break;
47
- case 'autoMarkRead':
48
- globalOptions.autoMarkRead = Boolean(options.autoMarkRead);
49
- break;
50
- case 'listenTyping':
51
- globalOptions.listenTyping = Boolean(options.listenTyping);
52
- break;
53
- case 'proxy':
54
- if (typeof options.proxy != "string") {
55
- delete globalOptions.proxy;
56
- utils.setProxy();
57
- } else {
58
- globalOptions.proxy = options.proxy;
59
- utils.setProxy(globalOptions.proxy);
60
- }
61
- break;
62
- case 'autoReconnect':
63
- globalOptions.autoReconnect = Boolean(options.autoReconnect);
64
- break;
65
- case 'emitReady':
66
- globalOptions.emitReady = Boolean(options.emitReady);
67
- break;
68
- default:
69
- log.warn("setOptions", "Unrecognized option given to setOptions: " + key);
70
- break;
71
- }
72
- });
73
- }
74
-
75
- function buildAPI(globalOptions, html, jar) {
76
- var maybeCookie = jar.getCookies("https://www.facebook.com").filter(function (val) {
77
- return val.cookieString().split("=")[0] === "c_user";
78
- });
79
-
80
- if (maybeCookie.length === 0) {
81
- throw { error: "Error retrieving userID. This can be caused by a lot of things, including getting blocked by Facebook for logging in from an unknown location. Try logging in with a browser to verify." };
82
- }
83
-
84
- if (html.indexOf("/checkpoint/block/?next") > -1) {
85
- log.warn("login", "Checkpoint detected. Please log in with a browser to verify.");
86
- }
87
-
88
- var userID = maybeCookie[0].cookieString().split("=")[1].toString();
89
- log.info("login", `Logged in as ${userID}`);
90
-
91
- try {
92
- clearInterval(checkVerified);
93
- } catch (_) { }
94
-
95
- var clientID = (Math.random() * 2147483648 | 0).toString(16);
96
-
97
-
98
- let oldFBMQTTMatch = html.match(/irisSeqID:"(.+?)",appID:219994525426954,endpoint:"(.+?)"/);
99
- let mqttEndpoint = null;
100
- let region = null;
101
- let irisSeqID = null;
102
- var noMqttData = null;
103
-
104
- if (oldFBMQTTMatch) {
105
- irisSeqID = oldFBMQTTMatch[1];
106
- mqttEndpoint = oldFBMQTTMatch[2];
107
- region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
108
- log.info("login", `Got this account's message region: ${region}`);
109
- } else {
110
- let newFBMQTTMatch = html.match(/{"app_id":"219994525426954","endpoint":"(.+?)","iris_seq_id":"(.+?)"}/);
111
- if (newFBMQTTMatch) {
112
- irisSeqID = newFBMQTTMatch[2];
113
- mqttEndpoint = newFBMQTTMatch[1].replace(/\\\//g, "/");
114
- region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
115
- log.info("login", `Got this account's message region: ${region}`);
116
- } else {
117
- let legacyFBMQTTMatch = html.match(/(\["MqttWebConfig",\[\],{fbid:")(.+?)(",appID:219994525426954,endpoint:")(.+?)(",pollingEndpoint:")(.+?)(3790])/);
118
- if (legacyFBMQTTMatch) {
119
- mqttEndpoint = legacyFBMQTTMatch[4];
120
- region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
121
- log.warn("login", `Cannot get sequence ID with new RegExp. Fallback to old RegExp (without seqID)...`);
122
- log.info("login", `Got this account's message region: ${region}`);
123
- log.info("login", `[Unused] Polling endpoint: ${legacyFBMQTTMatch[6]}`);
124
- } else {
125
- log.warn("login", "Cannot get MQTT region & sequence ID.");
126
- noMqttData = html;
127
- }
128
- }
129
- }
130
-
131
- // All data available to api functions
132
- var ctx = {
133
- userID: userID,
134
- jar: jar,
135
- clientID: clientID,
136
- globalOptions: globalOptions,
137
- loggedIn: true,
138
- access_token: 'NONE',
139
- clientMutationId: 0,
140
- mqttClient: undefined,
141
- lastSeqId: irisSeqID,
142
- syncToken: undefined,
143
- mqttEndpoint,
144
- region,
145
- firstListen: true
146
- };
147
-
148
- var api = {
149
- setOptions: setOptions.bind(null, globalOptions),
150
- getAppState: function getAppState() {
151
- return utils.getAppState(jar);
152
- }
153
- };
154
-
155
- if (noMqttData) {
156
- api["htmlData"] = noMqttData;
157
- }
158
-
159
- const apiFuncNames = [
160
- 'addExternalModule',
161
- 'addUserToGroup',
162
- 'changeAdminStatus',
163
- 'changeArchivedStatus',
164
- 'changeBio',
165
- 'changeBlockedStatus',
166
- 'changeGroupImage',
167
- 'changeNickname',
168
- 'changeThreadColor',
169
- 'changeThreadEmoji',
170
- 'createNewGroup',
171
- 'createPoll',
172
- 'deleteMessage',
173
- 'deleteThread',
174
- 'forwardAttachment',
175
- 'getCurrentUserID',
176
- 'getEmojiUrl',
177
- 'getFriendsList',
178
- 'getThreadHistory',
179
- 'getThreadInfo',
180
- 'getThreadList',
181
- 'getThreadPictures',
182
- 'getUserID',
183
- 'getUserInfo',
184
- 'handleMessageRequest',
185
- 'listenMqtt',
186
- 'logout',
187
- 'markAsDelivered',
188
- 'markAsRead',
189
- 'markAsReadAll',
190
- 'markAsSeen',
191
- 'muteThread',
192
- 'removeUserFromGroup',
193
- 'resolvePhotoUrl',
194
- 'searchForThread',
195
- 'sendMessage',
196
- 'sendTypingIndicator',
197
- 'setMessageReaction',
198
- 'setTitle',
199
- 'threadColors',
200
- 'unsendMessage',
201
-
202
- // HTTP
203
- 'httpGet',
204
- 'httpPost',
205
-
206
- // Deprecated features
207
- "getThreadListDeprecated",
208
- 'getThreadHistoryDeprecated',
209
- 'getThreadInfoDeprecated',
210
- ];
211
-
212
- var defaultFuncs = utils.makeDefaults(html, userID, ctx);
213
-
214
- // Load all api functions in a loop
215
- apiFuncNames.map(function (v) {
216
- api[v] = require('./alice/' + v)(defaultFuncs, api, ctx);
217
- });
218
-
219
- //Removing original `listen` that uses pull.
220
- //Map it to listenMqtt instead for backward compatibly.
221
- api.listen = api.listenMqtt;
222
-
223
- return [ctx, defaultFuncs, api];
224
- }
225
-
226
- function makeLogin(jar, email, password, loginOptions, callback, prCallback) {
227
- return function (res) {
228
- var html = res.body;
229
- var $ = cheerio.load(html);
230
- var arr = [];
231
-
232
- // This will be empty, but just to be sure we leave it
233
- $("#login_form input").map(function (i, v) {
234
- arr.push({ val: $(v).val(), name: $(v).attr("name") });
235
- });
236
-
237
- arr = arr.filter(function (v) {
238
- return v.val && v.val.length;
239
- });
240
-
241
- var form = utils.arrToForm(arr);
242
- form.lsd = utils.getFrom(html, "[\"LSD\",[],{\"token\":\"", "\"}");
243
- form.lgndim = Buffer.from("{\"w\":1440,\"h\":900,\"aw\":1440,\"ah\":834,\"c\":24}").toString('base64');
244
- form.email = email;
245
- form.pass = password;
246
- form.default_persistent = '0';
247
- form.lgnrnd = utils.getFrom(html, "name=\"lgnrnd\" value=\"", "\"");
248
- form.locale = 'en_PH';
249
- form.timezone = '240';
250
- form.lgnjs = ~~(Date.now() / 1000);
251
-
252
-
253
- // Getting cookies from the HTML page... (kill me now plz)
254
- // we used to get a bunch of cookies in the headers of the response of the
255
- // request, but FB changed and they now send those cookies inside the JS.
256
- // They run the JS which then injects the cookies in the page.
257
- // The "solution" is to parse through the html and find those cookies
258
- // which happen to be conveniently indicated with a _js_ in front of their
259
- // variable name.
260
- //
261
- // ---------- Very Hacky Part Starts -----------------
262
- var willBeCookies = html.split("\"_js_");
263
- willBeCookies.slice(1).map(function (val) {
264
- var cookieData = JSON.parse("[\"" + utils.getFrom(val, "", "]") + "]");
265
- jar.setCookie(utils.formatCookie(cookieData, "facebook"), "https://www.facebook.com");
266
- });
267
- // ---------- Very Hacky Part Ends -----------------
268
-
269
- log.info("login", "Logging in...");
270
- return utils
271
- .post("https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110", jar, form, loginOptions)
272
- .then(utils.saveCookies(jar))
273
- .then(function (res) {
274
- var headers = res.headers;
275
- if (!headers.location) {
276
- throw { error: "Wrong username/password." };
277
- }
278
-
279
- // This means the account has login approvals turned on.
280
- if (headers.location.indexOf('https://www.facebook.com/checkpoint/') > -1) {
281
- log.info("login", "You have login approvals turned on.");
282
- var nextURL = 'https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php';
283
-
284
- return utils
285
- .get(headers.location, jar, null, loginOptions)
286
- .then(utils.saveCookies(jar))
287
- .then(function (res) {
288
- var html = res.body;
289
- // Make the form in advance which will contain the fb_dtsg and nh
290
- var $ = cheerio.load(html);
291
- var arr = [];
292
- $("form input").map(function (i, v) {
293
- arr.push({ val: $(v).val(), name: $(v).attr("name") });
294
- });
295
-
296
- arr = arr.filter(function (v) {
297
- return v.val && v.val.length;
298
- });
299
-
300
- var form = utils.arrToForm(arr);
301
- if (html.indexOf("checkpoint/?next") > -1) {
302
- setTimeout(() => {
303
- checkVerified = setInterval((_form) => {
304
- /* utils
305
- .post("https://www.facebook.com/login/approvals/approved_machine_check/", jar, form, loginOptions, null, {
306
- "Referer": "https://www.facebook.com/checkpoint/?next"
307
- })
308
- .then(utils.saveCookies(jar))
309
- .then(res => {
310
- try {
311
- JSON.parse(res.body.replace(/for\s*\(\s*;\s*;\s*\)\s*;\s*()/, ""));
312
- } catch (ex) {
313
- clearInterval(checkVerified);
314
- log.info("login", "Verified from browser. Logging in...");
315
- return loginHelper(utils.getAppState(jar), email, password, loginOptions, callback);
316
- }
317
- })
318
- .catch(ex => {
319
- log.error("login", ex);
320
- }); */
321
- }, 5000, {
322
- fb_dtsg: form.fb_dtsg,
323
- jazoest: form.jazoest,
324
- dpr: 1
325
- });
326
- }, 2500);
327
- throw {
328
- error: 'login-approval',
329
- continue: function submit2FA(code) {
330
- form.approvals_code = code;
331
- form['submit[Continue]'] = $("#checkpointSubmitButton").html(); //'Continue';
332
- var prResolve = null;
333
- var prReject = null;
334
- var rtPromise = new Promise(function (resolve, reject) {
335
- prResolve = resolve;
336
- prReject = reject;
337
- });
338
- if (typeof code == "string") {
339
- utils
340
- .post(nextURL, jar, form, loginOptions)
341
- .then(utils.saveCookies(jar))
342
- .then(function (res) {
343
- var $ = cheerio.load(res.body);
344
- var error = $("#approvals_code").parent().attr("data-xui-error");
345
- if (error) {
346
- throw {
347
- error: 'login-approval',
348
- errordesc: "Invalid 2FA code.",
349
- lerror: error,
350
- continue: submit2FA
351
- };
352
- }
353
- })
354
- .then(function () {
355
- // Use the same form (safe I hope)
356
- delete form.no_fido;
357
- delete form.approvals_code;
358
- form.name_action_selected = 'dont_save'; //'save_device';
359
-
360
- return utils
361
- .post(nextURL, jar, form, loginOptions)
362
- .then(utils.saveCookies(jar));
363
- })
364
- .then(function (res) {
365
- var headers = res.headers;
366
- if (!headers.location && res.body.indexOf('Review Recent Login') > -1) {
367
- throw { error: "Something went wrong with login approvals." };
368
- }
369
-
370
- var appState = utils.getAppState(jar);
371
-
372
- if (callback === prCallback) {
373
- callback = function (err, api) {
374
- if (err) {
375
- return prReject(err);
376
- }
377
- return prResolve(api);
378
- };
379
- }
380
-
381
- // Simply call loginHelper because all it needs is the jar
382
- // and will then complete the login process
383
- return loginHelper(appState, email, password, loginOptions, callback);
384
- })
385
- .catch(function (err) {
386
- // Check if using Promise instead of callback
387
- if (callback === prCallback) {
388
- prReject(err);
389
- } else {
390
- callback(err);
391
- }
392
- });
393
- } else {
394
- utils
395
- .post("https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php", jar, form, loginOptions, null, {
396
- "Referer": "https://www.facebook.com/checkpoint/?next"
397
- })
398
- .then(utils.saveCookies(jar))
399
- .then(res => {
400
- try {
401
- JSON.parse(res.body.replace(/for\s*\(\s*;\s*;\s*\)\s*;\s*/, ""));
402
- } catch (ex) {
403
- clearInterval(checkVerified);
404
- log.info("login", "Verified from browser. Logging in...");
405
- if (callback === prCallback) {
406
- callback = function (err, api) {
407
- if (err) {
408
- return prReject(err);
409
- }
410
- return prResolve(api);
411
- };
412
- }
413
- return loginHelper(utils.getAppState(jar), email, password, loginOptions, callback);
414
- }
415
- })
416
- .catch(ex => {
417
- log.error("login", ex);
418
- if (callback === prCallback) {
419
- prReject(ex);
420
- } else {
421
- callback(ex);
422
- }
423
- });
424
- }
425
- return rtPromise;
426
- }
427
- };
428
- } else {
429
- if (!loginOptions.forceLogin) {
430
- throw { error: "Couldn't login. Facebook might have blocked this account. Please login with a browser or enable the option 'forceLogin' and try again." };
431
- }
432
- if (html.indexOf("Suspicious Login Attempt") > -1) {
433
- form['submit[This was me]'] = "This was me";
434
- } else {
435
- form['submit[This Is Okay]'] = "This Is Okay";
436
- }
437
-
438
- return utils
439
- .post(nextURL, jar, form, loginOptions)
440
- .then(utils.saveCookies(jar))
441
- .then(function () {
442
- // Use the same form (safe I hope)
443
- form.name_action_selected = 'save_device';
444
-
445
- return utils
446
- .post(nextURL, jar, form, loginOptions)
447
- .then(utils.saveCookies(jar));
448
- })
449
- .then(function (res) {
450
- var headers = res.headers;
451
-
452
- if (!headers.location && res.body.indexOf('Review Recent Login') > -1) {
453
- throw { error: "Something went wrong with review recent login." };
454
- }
455
-
456
- var appState = utils.getAppState(jar);
457
-
458
- // Simply call loginHelper because all it needs is the jar
459
- // and will then complete the login process
460
- return loginHelper(appState, email, password, loginOptions, callback);
461
- })
462
- .catch(function (e) {
463
- callback(e);
464
- });
465
- }
466
- });
467
- }
468
-
469
- return utils
470
- .get('https://www.facebook.com/', jar, null, loginOptions)
471
- .then(utils.saveCookies(jar));
472
- });
473
- };
474
- }
475
-
476
- // Helps the login
477
- function loginHelper(appState, email, password, globalOptions, callback, prCallback) {
478
- var mainPromise = null;
479
- var jar = utils.getJar();
480
-
481
- // If we're given an appState we loop through it and save each cookie
482
- // back into the jar.
483
- if (appState) {
484
- appState.map(function (c) {
485
- var str = c.key + "=" + c.value + "; expires=" + c.expires + "; domain=" + c.domain + "; path=" + c.path + ";";
486
- jar.setCookie(str, "http://" + c.domain);
487
- });
488
-
489
- // Load the main page.
490
- mainPromise = utils
491
- .get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true })
492
- .then(utils.saveCookies(jar));
493
- } else {
494
- // Open the main page, then we login with the given credentials and finally
495
- // load the main page again (it'll give us some IDs that we need)
496
- mainPromise = utils
497
- .get("https://www.facebook.com/", null, null, globalOptions, { noRef: true })
498
- .then(utils.saveCookies(jar))
499
- .then(makeLogin(jar, email, password, globalOptions, callback, prCallback))
500
- .then(function () {
501
- return utils
502
- .get('https://www.facebook.com/', jar, null, globalOptions)
503
- .then(utils.saveCookies(jar));
504
- });
505
- }
506
-
507
- var ctx = null;
508
- var _defaultFuncs = null;
509
- var api = null;
510
-
511
- mainPromise = mainPromise
512
- .then(function (res) {
513
- // Hacky check for the redirection that happens on some ISPs, which doesn't return statusCode 3xx
514
- var reg = /<meta http-equiv="refresh" content="0;url=([^"]+)[^>]+>/;
515
- var redirect = reg.exec(res.body);
516
- if (redirect && redirect[1]) {
517
- return utils
518
- .get(redirect[1], jar, null, globalOptions)
519
- .then(utils.saveCookies(jar));
520
- }
521
- return res;
522
- })
523
- .then(function (res) {
524
- var html = res.body;
525
- var stuff = buildAPI(globalOptions, html, jar);
526
- ctx = stuff[0];
527
- _defaultFuncs = stuff[1];
528
- api = stuff[2];
529
- return res;
530
- });
531
-
532
- // given a pageID we log in as a page
533
- if (globalOptions.pageID) {
534
- mainPromise = mainPromise
535
- .then(function () {
536
- return utils
537
- .get('https://www.facebook.com/' + ctx.globalOptions.pageID + '/messages/?section=messages&subsection=inbox', ctx.jar, null, globalOptions);
538
- })
539
- .then(function (resData) {
540
- var url = utils.getFrom(resData.body, 'window.location.replace("https:\\/\\/www.facebook.com\\', '");').split('\\').join('');
541
- url = url.substring(0, url.length - 1);
542
-
543
- return utils
544
- .get('https://www.facebook.com' + url, ctx.jar, null, globalOptions);
545
- });
546
- }
547
-
548
- // At the end we call the callback or catch an exception
549
- mainPromise
550
- .then(function () {
551
- log.info("login", 'Done logging in.');
552
- return callback(null, api);
553
- })
554
- .catch(function (e) {
555
- log.error("login", e.error || e);
556
- callback(e);
557
- });
558
- }
559
-
560
- function login(loginData, options, callback) {
561
- if (utils.getType(options) === 'Function' || utils.getType(options) === 'AsyncFunction') {
562
- callback = options;
563
- options = {};
564
- }
565
-
566
- var globalOptions = {
567
- selfListen: false,
568
- listenEvents: false,
569
- listenTyping: false,
570
- updatePresence: false,
571
- forceLogin: false,
572
- autoMarkDelivery: true,
573
- autoMarkRead: false,
574
- autoReconnect: true,
575
- logRecordSize: defaultLogRecordSize,
576
- online: true,
577
- emitReady: false,
578
- userAgent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8"
579
- };
580
-
581
- setOptions(globalOptions, options);
582
-
583
- var prCallback = null;
584
- if (utils.getType(callback) !== "Function" && utils.getType(callback) !== "AsyncFunction") {
585
- var rejectFunc = null;
586
- var resolveFunc = null;
587
- var returnPromise = new Promise(function (resolve, reject) {
588
- resolveFunc = resolve;
589
- rejectFunc = reject;
590
- });
591
- prCallback = function (error, api) {
592
- if (error) {
593
- return rejectFunc(error);
594
- }
595
- return resolveFunc(api);
596
- };
597
- callback = prCallback;
598
- }
599
- loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
600
- return returnPromise;
601
- }
602
-
603
- module.exports = login;
604
-
1
+ "use strict";
2
+
3
+ var utils = require("./utils");
4
+ var cheerio = require("cheerio");
5
+ var log = require("npmlog");
6
+
7
+ var checkVerified = null;
8
+
9
+ var defaultLogRecordSize = 100;
10
+ log.maxRecordSize = defaultLogRecordSize;
11
+
12
+ function setOptions(globalOptions, options) {
13
+ Object.keys(options).map(function (key) {
14
+ switch (key) {
15
+ case 'online':
16
+ globalOptions.online = Boolean(options.online);
17
+ break;
18
+ case 'logLevel':
19
+ log.level = options.logLevel;
20
+ globalOptions.logLevel = options.logLevel;
21
+ break;
22
+ case 'logRecordSize':
23
+ log.maxRecordSize = options.logRecordSize;
24
+ globalOptions.logRecordSize = options.logRecordSize;
25
+ break;
26
+ case 'selfListen':
27
+ globalOptions.selfListen = Boolean(options.selfListen);
28
+ break;
29
+ case 'listenEvents':
30
+ globalOptions.listenEvents = Boolean(options.listenEvents);
31
+ break;
32
+ case 'pageID':
33
+ globalOptions.pageID = options.pageID.toString();
34
+ break;
35
+ case 'updatePresence':
36
+ globalOptions.updatePresence = Boolean(options.updatePresence);
37
+ break;
38
+ case 'forceLogin':
39
+ globalOptions.forceLogin = Boolean(options.forceLogin);
40
+ break;
41
+ case 'userAgent':
42
+ globalOptions.userAgent = options.userAgent;
43
+ break;
44
+ case 'autoMarkDelivery':
45
+ globalOptions.autoMarkDelivery = Boolean(options.autoMarkDelivery);
46
+ break;
47
+ case 'autoMarkRead':
48
+ globalOptions.autoMarkRead = Boolean(options.autoMarkRead);
49
+ break;
50
+ case 'listenTyping':
51
+ globalOptions.listenTyping = Boolean(options.listenTyping);
52
+ break;
53
+ case 'proxy':
54
+ if (typeof options.proxy != "string") {
55
+ delete globalOptions.proxy;
56
+ utils.setProxy();
57
+ } else {
58
+ globalOptions.proxy = options.proxy;
59
+ utils.setProxy(globalOptions.proxy);
60
+ }
61
+ break;
62
+ case 'autoReconnect':
63
+ globalOptions.autoReconnect = Boolean(options.autoReconnect);
64
+ break;
65
+ case 'emitReady':
66
+ globalOptions.emitReady = Boolean(options.emitReady);
67
+ break;
68
+ default:
69
+ log.warn("setOptions", "Unrecognized option given to setOptions: " + key);
70
+ break;
71
+ }
72
+ });
73
+ }
74
+
75
+ function buildAPI(globalOptions, html, jar) {
76
+ var maybeCookie = jar.getCookies("https://www.facebook.com").filter(function (val) {
77
+ return val.cookieString().split("=")[0] === "c_user";
78
+ });
79
+
80
+ if (maybeCookie.length === 0) {
81
+ throw { error: "Error retrieving userID. This can be caused by a lot of things, including getting blocked by Facebook for logging in from an unknown location. Try logging in with a browser to verify." };
82
+ }
83
+
84
+ if (html.indexOf("/checkpoint/block/?next") > -1) {
85
+ log.warn("login", "Checkpoint detected. Please log in with a browser to verify.");
86
+ }
87
+
88
+ var userID = maybeCookie[0].cookieString().split("=")[1].toString();
89
+ log.info("login", `Logged in as ${userID}`);
90
+
91
+ try {
92
+ clearInterval(checkVerified);
93
+ } catch (_) { }
94
+
95
+ var clientID = (Math.random() * 2147483648 | 0).toString(16);
96
+
97
+
98
+ let oldFBMQTTMatch = html.match(/irisSeqID:"(.+?)",appID:219994525426954,endpoint:"(.+?)"/);
99
+ let mqttEndpoint = null;
100
+ let region = null;
101
+ let irisSeqID = null;
102
+ var noMqttData = null;
103
+
104
+ if (oldFBMQTTMatch) {
105
+ irisSeqID = oldFBMQTTMatch[1];
106
+ mqttEndpoint = oldFBMQTTMatch[2];
107
+ region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
108
+ log.info("login", `Got this account's message region: ${region}`);
109
+ } else {
110
+ let newFBMQTTMatch = html.match(/{"app_id":"219994525426954","endpoint":"(.+?)","iris_seq_id":"(.+?)"}/);
111
+ if (newFBMQTTMatch) {
112
+ irisSeqID = newFBMQTTMatch[2];
113
+ mqttEndpoint = newFBMQTTMatch[1].replace(/\\\//g, "/");
114
+ region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
115
+ log.info("login", `Got this account's message region: ${region}`);
116
+ } else {
117
+ let legacyFBMQTTMatch = html.match(/(\["MqttWebConfig",\[\],{fbid:")(.+?)(",appID:219994525426954,endpoint:")(.+?)(",pollingEndpoint:")(.+?)(3790])/);
118
+ if (legacyFBMQTTMatch) {
119
+ mqttEndpoint = legacyFBMQTTMatch[4];
120
+ region = new URL(mqttEndpoint).searchParams.get("region").toUpperCase();
121
+ log.warn("login", `Cannot get sequence ID with new RegExp. Fallback to old RegExp (without seqID)...`);
122
+ log.info("login", `Got this account's message region: ${region}`);
123
+ log.info("login", `[Unused] Polling endpoint: ${legacyFBMQTTMatch[6]}`);
124
+ } else {
125
+ log.warn("login", "Cannot get MQTT region & sequence ID.");
126
+ noMqttData = html;
127
+ }
128
+ }
129
+ }
130
+
131
+ // All data available to api functions
132
+ var ctx = {
133
+ userID: userID,
134
+ jar: jar,
135
+ clientID: clientID,
136
+ globalOptions: globalOptions,
137
+ loggedIn: true,
138
+ access_token: 'NONE',
139
+ clientMutationId: 0,
140
+ mqttClient: undefined,
141
+ lastSeqId: irisSeqID,
142
+ syncToken: undefined,
143
+ mqttEndpoint,
144
+ region,
145
+ firstListen: true
146
+ };
147
+
148
+ var api = {
149
+ setOptions: setOptions.bind(null, globalOptions),
150
+ getAppState: function getAppState() {
151
+ return utils.getAppState(jar);
152
+ }
153
+ };
154
+
155
+ if (noMqttData) {
156
+ api["htmlData"] = noMqttData;
157
+ }
158
+
159
+ const apiFuncNames = [
160
+ 'addExternalModule',
161
+ 'addUserToGroup',
162
+ 'changeAdminStatus',
163
+ 'changeArchivedStatus',
164
+ 'changeBio',
165
+ 'changeBlockedStatus',
166
+ 'changeGroupImage',
167
+ 'changeNickname',
168
+ 'changeThreadColor',
169
+ 'changeThreadEmoji',
170
+ 'createNewGroup',
171
+ 'createPoll',
172
+ 'deleteMessage',
173
+ 'deleteThread',
174
+ 'forwardAttachment',
175
+ 'getCurrentUserID',
176
+ 'getEmojiUrl',
177
+ 'getFriendsList',
178
+ 'getThreadHistory',
179
+ 'getThreadInfo',
180
+ 'getThreadList',
181
+ 'getThreadPictures',
182
+ 'getUserID',
183
+ 'getUserInfo',
184
+ 'handleMessageRequest',
185
+ 'listenMqtt',
186
+ 'logout',
187
+ 'markAsDelivered',
188
+ 'markAsRead',
189
+ 'seen',
190
+ 'markAsSeen',
191
+ 'muteThread',
192
+ 'removeUserFromGroup',
193
+ 'resolvePhotoUrl',
194
+ 'searchForThread',
195
+ 'chat',
196
+ 'sendTypingIndicator',
197
+ 'react',
198
+ 'setTitle',
199
+ 'threadColors',
200
+ 'unsendMessage',
201
+
202
+ // HTTP
203
+ 'httpGet',
204
+ 'httpPost',
205
+
206
+ // Deprecated features
207
+ "getThreadListDeprecated",
208
+ 'getThreadHistoryDeprecated',
209
+ 'getThreadInfoDeprecated',
210
+ ];
211
+
212
+ var defaultFuncs = utils.makeDefaults(html, userID, ctx);
213
+
214
+ // Load all api functions in a loop
215
+ apiFuncNames.map(function (v) {
216
+ api[v] = require('./alice/' + v)(defaultFuncs, api, ctx);
217
+ });
218
+
219
+ //Removing original `listen` that uses pull.
220
+ //Map it to listenMqtt instead for backward compatibly.
221
+ api.listen = api.listenMqtt;
222
+
223
+ return [ctx, defaultFuncs, api];
224
+ }
225
+
226
+ function makeLogin(jar, email, password, loginOptions, callback, prCallback) {
227
+ return function (res) {
228
+ var html = res.body;
229
+ var $ = cheerio.load(html);
230
+ var arr = [];
231
+
232
+ // This will be empty, but just to be sure we leave it
233
+ $("#login_form input").map(function (i, v) {
234
+ arr.push({ val: $(v).val(), name: $(v).attr("name") });
235
+ });
236
+
237
+ arr = arr.filter(function (v) {
238
+ return v.val && v.val.length;
239
+ });
240
+
241
+ var form = utils.arrToForm(arr);
242
+ form.lsd = utils.getFrom(html, "[\"LSD\",[],{\"token\":\"", "\"}");
243
+ form.lgndim = Buffer.from("{\"w\":1440,\"h\":900,\"aw\":1440,\"ah\":834,\"c\":24}").toString('base64');
244
+ form.email = email;
245
+ form.pass = password;
246
+ form.default_persistent = '0';
247
+ form.lgnrnd = utils.getFrom(html, "name=\"lgnrnd\" value=\"", "\"");
248
+ form.locale = 'en_US';
249
+ form.timezone = '240';
250
+ form.lgnjs = ~~(Date.now() / 1000);
251
+
252
+
253
+ // Getting cookies from the HTML page... (kill me now plz)
254
+ // we used to get a bunch of cookies in the headers of the response of the
255
+ // request, but FB changed and they now send those cookies inside the JS.
256
+ // They run the JS which then injects the cookies in the page.
257
+ // The "solution" is to parse through the html and find those cookies
258
+ // which happen to be conveniently indicated with a _js_ in front of their
259
+ // variable name.
260
+ //
261
+ // ---------- Very Hacky Part Starts -----------------
262
+ var willBeCookies = html.split("\"_js_");
263
+ willBeCookies.slice(1).map(function (val) {
264
+ var cookieData = JSON.parse("[\"" + utils.getFrom(val, "", "]") + "]");
265
+ jar.setCookie(utils.formatCookie(cookieData, "facebook"), "https://www.facebook.com");
266
+ });
267
+ // ---------- Very Hacky Part Ends -----------------
268
+
269
+ log.info("login", "Logging in...");
270
+ return utils
271
+ .post("https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110", jar, form, loginOptions)
272
+ .then(utils.saveCookies(jar))
273
+ .then(function (res) {
274
+ var headers = res.headers;
275
+ if (!headers.location) {
276
+ throw { error: "Wrong username/password." };
277
+ }
278
+
279
+ // This means the account has login approvals turned on.
280
+ if (headers.location.indexOf('https://www.facebook.com/checkpoint/') > -1) {
281
+ log.info("login", "You have login approvals turned on.");
282
+ var nextURL = 'https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php';
283
+
284
+ return utils
285
+ .get(headers.location, jar, null, loginOptions)
286
+ .then(utils.saveCookies(jar))
287
+ .then(function (res) {
288
+ var html = res.body;
289
+ // Make the form in advance which will contain the fb_dtsg and nh
290
+ var $ = cheerio.load(html);
291
+ var arr = [];
292
+ $("form input").map(function (i, v) {
293
+ arr.push({ val: $(v).val(), name: $(v).attr("name") });
294
+ });
295
+
296
+ arr = arr.filter(function (v) {
297
+ return v.val && v.val.length;
298
+ });
299
+
300
+ var form = utils.arrToForm(arr);
301
+ if (html.indexOf("checkpoint/?next") > -1) {
302
+ setTimeout(() => {
303
+ checkVerified = setInterval((_form) => {
304
+ /* utils
305
+ .post("https://www.facebook.com/login/approvals/approved_machine_check/", jar, form, loginOptions, null, {
306
+ "Referer": "https://www.facebook.com/checkpoint/?next"
307
+ })
308
+ .then(utils.saveCookies(jar))
309
+ .then(res => {
310
+ try {
311
+ JSON.parse(res.body.replace(/for\s*\(\s*;\s*;\s*\)\s*;\s*()/, ""));
312
+ } catch (ex) {
313
+ clearInterval(checkVerified);
314
+ log.info("login", "Verified from browser. Logging in...");
315
+ return loginHelper(utils.getAppState(jar), email, password, loginOptions, callback);
316
+ }
317
+ })
318
+ .catch(ex => {
319
+ log.error("login", ex);
320
+ }); */
321
+ }, 5000, {
322
+ fb_dtsg: form.fb_dtsg,
323
+ jazoest: form.jazoest,
324
+ dpr: 1
325
+ });
326
+ }, 2500);
327
+ throw {
328
+ error: 'login-approval',
329
+ continue: function submit2FA(code) {
330
+ form.approvals_code = code;
331
+ form['submit[Continue]'] = $("#checkpointSubmitButton").html(); //'Continue';
332
+ var prResolve = null;
333
+ var prReject = null;
334
+ var rtPromise = new Promise(function (resolve, reject) {
335
+ prResolve = resolve;
336
+ prReject = reject;
337
+ });
338
+ if (typeof code == "string") {
339
+ utils
340
+ .post(nextURL, jar, form, loginOptions)
341
+ .then(utils.saveCookies(jar))
342
+ .then(function (res) {
343
+ var $ = cheerio.load(res.body);
344
+ var error = $("#approvals_code").parent().attr("data-xui-error");
345
+ if (error) {
346
+ throw {
347
+ error: 'login-approval',
348
+ errordesc: "Invalid 2FA code.",
349
+ lerror: error,
350
+ continue: submit2FA
351
+ };
352
+ }
353
+ })
354
+ .then(function () {
355
+ // Use the same form (safe I hope)
356
+ delete form.no_fido;
357
+ delete form.approvals_code;
358
+ form.name_action_selected = 'dont_save'; //'save_device';
359
+
360
+ return utils
361
+ .post(nextURL, jar, form, loginOptions)
362
+ .then(utils.saveCookies(jar));
363
+ })
364
+ .then(function (res) {
365
+ var headers = res.headers;
366
+ if (!headers.location && res.body.indexOf('Review Recent Login') > -1) {
367
+ throw { error: "Something went wrong with login approvals." };
368
+ }
369
+
370
+ var appState = utils.getAppState(jar);
371
+
372
+ if (callback === prCallback) {
373
+ callback = function (err, api) {
374
+ if (err) {
375
+ return prReject(err);
376
+ }
377
+ return prResolve(api);
378
+ };
379
+ }
380
+
381
+ // Simply call loginHelper because all it needs is the jar
382
+ // and will then complete the login process
383
+ return loginHelper(appState, email, password, loginOptions, callback);
384
+ })
385
+ .catch(function (err) {
386
+ // Check if using Promise instead of callback
387
+ if (callback === prCallback) {
388
+ prReject(err);
389
+ } else {
390
+ callback(err);
391
+ }
392
+ });
393
+ } else {
394
+ utils
395
+ .post("https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php", jar, form, loginOptions, null, {
396
+ "Referer": "https://www.facebook.com/checkpoint/?next"
397
+ })
398
+ .then(utils.saveCookies(jar))
399
+ .then(res => {
400
+ try {
401
+ JSON.parse(res.body.replace(/for\s*\(\s*;\s*;\s*\)\s*;\s*/, ""));
402
+ } catch (ex) {
403
+ clearInterval(checkVerified);
404
+ log.info("login", "Verified from browser. Logging in...");
405
+ if (callback === prCallback) {
406
+ callback = function (err, api) {
407
+ if (err) {
408
+ return prReject(err);
409
+ }
410
+ return prResolve(api);
411
+ };
412
+ }
413
+ return loginHelper(utils.getAppState(jar), email, password, loginOptions, callback);
414
+ }
415
+ })
416
+ .catch(ex => {
417
+ log.error("login", ex);
418
+ if (callback === prCallback) {
419
+ prReject(ex);
420
+ } else {
421
+ callback(ex);
422
+ }
423
+ });
424
+ }
425
+ return rtPromise;
426
+ }
427
+ };
428
+ } else {
429
+ if (!loginOptions.forceLogin) {
430
+ throw { error: "Couldn't login. Facebook might have blocked this account. Please login with a browser or enable the option 'forceLogin' and try again." };
431
+ }
432
+ if (html.indexOf("Suspicious Login Attempt") > -1) {
433
+ form['submit[This was me]'] = "This was me";
434
+ } else {
435
+ form['submit[This Is Okay]'] = "This Is Okay";
436
+ }
437
+
438
+ return utils
439
+ .post(nextURL, jar, form, loginOptions)
440
+ .then(utils.saveCookies(jar))
441
+ .then(function () {
442
+ // Use the same form (safe I hope)
443
+ form.name_action_selected = 'save_device';
444
+
445
+ return utils
446
+ .post(nextURL, jar, form, loginOptions)
447
+ .then(utils.saveCookies(jar));
448
+ })
449
+ .then(function (res) {
450
+ var headers = res.headers;
451
+
452
+ if (!headers.location && res.body.indexOf('Review Recent Login') > -1) {
453
+ throw { error: "Something went wrong with review recent login." };
454
+ }
455
+
456
+ var appState = utils.getAppState(jar);
457
+
458
+ // Simply call loginHelper because all it needs is the jar
459
+ // and will then complete the login process
460
+ return loginHelper(appState, email, password, loginOptions, callback);
461
+ })
462
+ .catch(function (e) {
463
+ callback(e);
464
+ });
465
+ }
466
+ });
467
+ }
468
+
469
+ return utils
470
+ .get('https://www.facebook.com/', jar, null, loginOptions)
471
+ .then(utils.saveCookies(jar));
472
+ });
473
+ };
474
+ }
475
+
476
+ // Helps the login
477
+ function loginHelper(appState, email, password, globalOptions, callback, prCallback) {
478
+ var mainPromise = null;
479
+ var jar = utils.getJar();
480
+
481
+ // If we're given an appState we loop through it and save each cookie
482
+ // back into the jar.
483
+ if (appState) {
484
+ appState.map(function (c) {
485
+ var str = c.key + "=" + c.value + "; expires=" + c.expires + "; domain=" + c.domain + "; path=" + c.path + ";";
486
+ jar.setCookie(str, "http://" + c.domain);
487
+ });
488
+
489
+ // Load the main page.
490
+ mainPromise = utils
491
+ .get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true })
492
+ .then(utils.saveCookies(jar));
493
+ } else {
494
+ // Open the main page, then we login with the given credentials and finally
495
+ // load the main page again (it'll give us some IDs that we need)
496
+ mainPromise = utils
497
+ .get("https://www.facebook.com/", null, null, globalOptions, { noRef: true })
498
+ .then(utils.saveCookies(jar))
499
+ .then(makeLogin(jar, email, password, globalOptions, callback, prCallback))
500
+ .then(function () {
501
+ return utils
502
+ .get('https://www.facebook.com/', jar, null, globalOptions)
503
+ .then(utils.saveCookies(jar));
504
+ });
505
+ }
506
+
507
+ var ctx = null;
508
+ var _defaultFuncs = null;
509
+ var api = null;
510
+
511
+ mainPromise = mainPromise
512
+ .then(function (res) {
513
+ // Hacky check for the redirection that happens on some ISPs, which doesn't return statusCode 3xx
514
+ var reg = /<meta http-equiv="refresh" content="0;url=([^"]+)[^>]+>/;
515
+ var redirect = reg.exec(res.body);
516
+ if (redirect && redirect[1]) {
517
+ return utils
518
+ .get(redirect[1], jar, null, globalOptions)
519
+ .then(utils.saveCookies(jar));
520
+ }
521
+ return res;
522
+ })
523
+ .then(function (res) {
524
+ var html = res.body;
525
+ var stuff = buildAPI(globalOptions, html, jar);
526
+ ctx = stuff[0];
527
+ _defaultFuncs = stuff[1];
528
+ api = stuff[2];
529
+ return res;
530
+ });
531
+
532
+ // given a pageID we log in as a page
533
+ if (globalOptions.pageID) {
534
+ mainPromise = mainPromise
535
+ .then(function () {
536
+ return utils
537
+ .get('https://www.facebook.com/' + ctx.globalOptions.pageID + '/messages/?section=messages&subsection=inbox', ctx.jar, null, globalOptions);
538
+ })
539
+ .then(function (resData) {
540
+ var url = utils.getFrom(resData.body, 'window.location.replace("https:\\/\\/www.facebook.com\\', '");').split('\\').join('');
541
+ url = url.substring(0, url.length - 1);
542
+
543
+ return utils
544
+ .get('https://www.facebook.com' + url, ctx.jar, null, globalOptions);
545
+ });
546
+ }
547
+
548
+ // At the end we call the callback or catch an exception
549
+ mainPromise
550
+ .then(function () {
551
+ log.info("login", 'Done logging in.');
552
+ return callback(null, api);
553
+ })
554
+ .catch(function (e) {
555
+ log.error("login", e.error || e);
556
+ callback(e);
557
+ });
558
+ }
559
+
560
+ function login(loginData, options, callback) {
561
+ if (utils.getType(options) === 'Function' || utils.getType(options) === 'AsyncFunction') {
562
+ callback = options;
563
+ options = {};
564
+ }
565
+
566
+ var globalOptions = {
567
+ selfListen: false,
568
+ listenEvents: false,
569
+ listenTyping: false,
570
+ updatePresence: false,
571
+ forceLogin: false,
572
+ autoMarkDelivery: true,
573
+ autoMarkRead: false,
574
+ autoReconnect: true,
575
+ logRecordSize: defaultLogRecordSize,
576
+ online: true,
577
+ emitReady: false,
578
+ userAgent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_2) AppleWebKit/600.3.18 (KHTML, like Gecko) Version/8.0.3 Safari/600.3.18"
579
+ };
580
+
581
+ setOptions(globalOptions, options);
582
+
583
+ var prCallback = null;
584
+ if (utils.getType(callback) !== "Function" && utils.getType(callback) !== "AsyncFunction") {
585
+ var rejectFunc = null;
586
+ var resolveFunc = null;
587
+ var returnPromise = new Promise(function (resolve, reject) {
588
+ resolveFunc = resolve;
589
+ rejectFunc = reject;
590
+ });
591
+ prCallback = function (error, api) {
592
+ if (error) {
593
+ return rejectFunc(error);
594
+ }
595
+ return resolveFunc(api);
596
+ };
597
+ callback = prCallback;
598
+ }
599
+ loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
600
+ return returnPromise;
601
+ }
602
+
603
+ module.exports = login;
604
+